Getting started
Discover GitGuardian's Honeytoken
Honeytoken is a new module in the GitGuardian platform. You can request a live demo!
The Honeytoken module is reserved for users with a "Manager" access level on the GitGuardian workspace. This will evolve in the future when we will support roles to create and manage honeytokens.
Create and deploy your first honeytoken
In the Honeytoken module, click “Create honeytoken”. Enter a name for the honeytoken, and optionally a description. The description may contain more detail about where and how exactly you will place this honeytoken. You can also select or create some labels to define your honeytoken in a more structured way.
Note: For now, we are only proposing AWS keys, but we are exploring other types of honeytokens.
Congratulations! Your honeytoken creation is confirmed, and you get your honeytoken key.
Insert this key in the asset you want to protect! If an attacker ever trips on the honeytoken, you'll get an instant alert letting you know that it has happened.
This method allows you to decide exactly where and how your honeytoken will be inserted, but is quite manual. If you seek a more automated and effortless solution for deploying honeytokens across numerous repositories, explore our Deployment Jobs feature.
Test your honeytoken
If you want to test the triggering and alerting mechanism, you can trigger your own honeytoken.
To use the following method, ensure that the AWS CLI is installed on your system. If not, refer to the official AWS CLI documentation for instructions on how to install it.
In the honeytoken detail page, click “How to test your honeytoken”.
Copy the AWS “get-caller-identity” command and run it in your terminal or command prompt.
This will generate an event and thus trigger the honeytoken.
Don’t forget to reset your honeytoken afterward to be alerted of any “real” trigger on it.
