This dataset contains network attack logs captured by a honeypot system between June 2025 and January 2026. It consists of four main CSV files providing different perspectives on the captured traffic:
- Geographical Distribution: Tracking attack frequencies across various origin countries.
- Port Analysis: Focus on attack counts targeting specific network services (e.g., SSH, Telnet, SMB, MSSQL, VNC).
- Honeypot Performance: Records of attack volumes distributed across individual honeypot nodes.
- IP Metrics: Detailed statistics on total attack counts versus the number of unique source IP addresses.
The data is highly suitable for analyzing cyber threat patterns, temporal attack distribution, and botnet behavior.