Thanks! Glad it was helpful. I didnt have any similar realization until I had worked in the field for awhile amd honestly didnt have anyone to tell so i probably rambled. Good summary. Lean more into WAF, EDR and observability before a honeypot but yeah both are valid.
Dude thank you for your detailed reply which I have been thinking about for a while.
I don’t want to mischaracterise what you’re saying but I want to try to summarise the lessons, which I think are super valid.
This is definitely a way to think about this that I haven’t distilled. Thanks!
Thanks! Glad it was helpful. I didnt have any similar realization until I had worked in the field for awhile amd honestly didnt have anyone to tell so i probably rambled. Good summary. Lean more into WAF, EDR and observability before a honeypot but yeah both are valid.
Hope your talk goes well!