Skip to main content

Getting Started

What is AIDE?

AIDE is a comprehensive threat intelligence platform that provides researchers and security professionals access to billions of real-world attack records collected from our global honeyfarm network. Using our ProxyPot honeypot technology, we capture, decrypt, and analyze attack traffic across multiple protocols, providing unprecedented visibility into attacker behavior and techniques.

Data Collection

AIDE collects attack data across five key protocols:

  • FTP - File transfer attacks and bruteforce attempts
  • SSH - Shell access attacks and credential stuffing
  • TELNET - IoT and embedded system targeting
  • HTTP - Web-based attacks and vulnerability exploitation
  • HTTPS - TLS-encrypted web attacks (with full decryption)

For each protocol, we provide complete decrypted packet captures (PCAPs), allowing researchers to analyze the full attack lifecycle in detail.

Key Features

Massive Dataset

Access billions of real-world attack records collected from our global honeyfarm network. Our dataset grows continuously as new attacks are captured and processed.

Full Traffic Decryption

Unlike traditional honeypot solutions, ProxyPot technology enables us to capture and decrypt TLS/SSL traffic, providing visibility into encrypted attack patterns that are typically hidden.

Advanced Analytics

Leverage OpenSearch's powerful analytics capabilities to:

  • Analyze attack patterns and frequencies
  • Identify emerging threats
  • Track threat actor campaigns
  • Generate custom reports and visualizations
  • Perform complex queries across the entire dataset

Rich Attack Context

Every record includes:

  • Full decrypted packet captures
  • Attacker geolocation
  • Timestamp sequences
  • Session metadata
  • Command & control patterns
  • Protocol-specific indicators
  • Raw payloads

Use Cases

  • Threat Intelligence Research
  • Attack Pattern Analysis
  • Campaign Tracking
  • Protocol-specific Attack Research
  • Geographic Attack Trending
  • Threat Actor Profiling
  • Network Defense Enhancement

Access

Contact us to learn more about accessing the platform.