See Cynet 360 AutoXDR™ in Action

Prefer a one-on-one demo? Click here

By clicking next I consent to the use of my personal data by Cynet in accordance with Cynet's Privacy Policy and by its partners

Request a Demo

Cynet Deception

Easily configure decoy files, users, hosts, and networks to expose malicious actors who have gained access to your environment.

Request a Demo
Request a Demo

Deceive attackers with various honeypots: decoy files, passwords and network connections.

Use off-the-shelf decoys or craft your own

Cynet deception supports various types of decoys, to detect threats in various stages of the attack’s lifecycle: data files, credentials and network connections.

In each type, the consumption action triggers the alert – login attempt with a decoy password, connection attempt with RDP or URL and opening a data file.

Detect attacks at different stages

Detect attacks at the credential theft stage with decoy passwords

Passwords are extremely valuable to attackers attempting to expand their foothold within a compromised environment. Cynet crafts and plants text files containing false passwords along attackers’ potential routes. Any attempt to log in with these passwords triggers an alert.

Detect attacks at the lateral movement stage with decoy connections

When seeking to expand compromise across the environment to access organizational resources, internal network shares and RDP connections are extremely attractive. Cynet’s decoy connections enable the reliable detection of attackers during the hard –to-detect lateral movement stage.

Detect attacks at the data exfiltration stage with decoy data files

The attacker’s top object is to get hold of sensitive data – IP, PII, business plans, etc. Cynet crafts and plants decoy data files and links – similar to what attackers would seek in the target organization – and plants them across endpoints and servers in the environment.

Detect attacks at the data exfilatration stage with decoy data files

When an attacker opens a decoy data file at its premise, an alert is triggered and the file sends Cynet the malicious IP address at which it resides.