Skip to main content

Analysis

The reviewed technologies demonstrate that existing honeypot frameworks provide important capabilities for monitoring malicious activities and collecting cybersecurity data. However, each framework primarily focuses on a limited scope of functionality.

Cowrie specializes in SSH and Telnet attack logging, while Dionaea focuses mainly on malware collection and network-based threats. T-Pot integrates multiple honeypot solutions into a centralized environment but requires advanced deployment and management knowledge. Elastic Stack (ELK) provides powerful log analysis and visualization features but lacks specialized honeypot simulation functionality.

The analysis indicates that current solutions are either highly technical, difficult to manage, or not specifically designed for modular web-based attack simulation and cybersecurity research workflows.

In addition, many existing frameworks focus on network-level attacks rather than modern web application vulnerabilities such as Information Disclosure and SQL Injection.

Therefore, there is a need for a lightweight and extensible framework capable of simulating vulnerable web environments, monitoring attacker behavior, and providing centralized attack analysis features within an organized research-oriented system.

WiseTrap is designed to address these challenges through a modular architecture that supports web-based honeypot deployment, centralized logging, attack visualization, and extensible vulnerability simulation modules.