This study focuses on the vulnerabilities and attack vectors connected with ransomware in Elastic Sky X integrated (ESXi) settings. We offer a novel technique to address these concerns by mimicking an ESXi environment, focusing on honeypot deployment and monitoring behaviours. Our strategy is creating a controlled emulation of ESXi in which we place honeypots to lure and capture ransomware activity. Furthermore, we use sophisticated monitoring methods to watch and evaluate ransomware behaviours in this simulated environment. Our approach’s effectiveness is tested using the simulated ESXi environment’s detection and response capabilities. The findings show that using honeypots in conjunction with careful behavioural monitoring can considerably improve the identification and mitigation of ransomware threats in virtualized environments.

VMWare ESXi, Ransomware, Deception, Behavioral Monitoring