HoneyWin: High-Interaction Windows Honeypot in Enterprise Environment

Oct 26, 2023 · 1 min read

HoneyWin a high-interaction Windows honeypot that mimics an enterprise IT environment. The HoneyWin consists of three Windows 11 endpoints and an enterprise-grade gateway provisioned with comprehensive network traffic capturing, host-based logging, deceptive tokens, endpoint security and real-time alerts capabilities.

Last updated on Dec 21, 2025

Windows Honeypot

Authors

Yan Lin Aung

Lecturer in Cyber Security

I am a Lecturer in Cyber Security at the University of Derby (UoD), with a strong research background in Internet of Things (IoT) security and embedded systems. Prior to joining UoD, I held Post-Doctoral Research Fellow positions at Singapore University of Technology and Design (SUTD) and Nanyang Technological University (NTU), where I contributed to national-level cybersecurity projects. My work focuses on developing scalable honeypot infrastructures, anomaly detection systems, and machine learning-based threat intelligence solutions for critical infrastructure and cyber-physical systems.

← Generative AI for Internet of Things Security: Challenges and Opportunities Oct 26, 2023

Hybrid IoT Honeypot Infrastructure Oct 26, 2023 →

No results found

HoneyWin: High-Interaction Windows Honeypot in Enterprise Environment