Skip to content

PuTTY Enterprise

PuTTY stores SSH session details in the Windows Registry. Attackers enumerating sessions will find a saved connection pointing to your honeypot.

No stored password

PuTTY sessions do not store passwords by default. This breadcrumb captures the attacker when they attempt to connect, not when they read the config.

Generate from the SSH service row: Trapsters → device → ServicesGenerate breadcrumbPuTTY profile.

Installation

  1. Double-click the generated .reg file and agree to allow registry changes

    PuTTY registry import

  2. Confirm the import

    PuTTY import confirmation

    PuTTY import success

  3. The session is now visible in PuTTY and in the Registry Editor

    PuTTY saved session