A cross-border community for researchers with openness, equality and inclusion
Authors: Nguyen Anh-Nhat, FPT University Tran Thi Thanh Tam, FPT University Tran Hai-Ha, FPT University Do Minh-Quan, FPT University Nguyen Nhat-Nam, FPT University Trinh Tung-Son, FPT University Luu Minh-Tri, FPT University Tung-Son Ngo, FPT University
This study focuses on the vulnerabilities and attack vectors connected with ransomware in Elastic Sky X integrated (ESXi) settings. We offer a novel technique to address these concerns by mimicking an ESXi environment, focusing on honeypot deployment and monitoring behaviours. Our strategy is creating a controlled emulation of ESXi in which we place honeypots to lure and capture ransomware activity. Furthermore, we use sophisticated monitoring methods to watch and evaluate ransomware behaviours in this simulated environment. Our approach’s effectiveness is tested using the simulated ESXi environment’s detection and response capabilities. The findings show that using honeypots in conjunction with careful behavioural monitoring can considerably improve the identification and mitigation of ransomware threats in virtualized environments.
Keywords: VMWare ESXi, Ransomware, Deception, Behavioral Monitoring
Published in: IEEE Transactions on Antennas and Propagation( Volume: 71, Issue: 4, April 2023)
Page(s): 2908 - 2921
Date of Publication: 2908 - 2921
DOI: 10.1109/TAP.2023.3240032
Publisher: UNITED SOCIETIES OF SCIENCE
