I'm working on trappsec - an experimental open source framework that helps developers detect attackers who probe API business logic.
By embedding realistic decoy routes and honey fields that are difficult to distinguish from real API constructs, attackers are nudged to authenticate — converting reconnaissance into actionable security telemetry.
By embedding realistic decoy routes and honey fields that are difficult to distinguish from real API constructs, attackers are nudged to authenticate — converting reconnaissance into actionable security telemetry.
github: https://github.com/trappsec-dev/trappsec
docs: https://trappsec.dev
reply