How to create a Custom Web Image Canarytoken by uploading an image to your Canary Console, generating a unique URL, and embedding it into your web page. This allows you to detect unauthorized access when the image is loaded. ([Canary][1]) [1]: https://help.canary.tools/hc/en-gb/articles/360021192598-How-do-I-create-a-Custom-Web-Image-Token?utm_source=chatgpt.com "How do I create a Custom Web Image Token?"
Tokens can be hidden as images on a webpage too.
The token works by uploading an image of your choice (GIFs supported too!) to your Console.
The image is then given a reference URL, and you can link to this image on your existing web page.
Once the image will be loaded alongside the page by a browser and you'll get an alert.
Use this to place a tripwire on a landing page after an admin login, and you'll know when someone has logged in.
The image is hosted externally to your web host, and will need to be referenced as a URL in your HTML file.
Step 1: Log in to your Console
Step 2: Add a New Token
Click Add a new Canarytoken.
Step 3: Choose the Web Image Token Type
Create a new token by selecting Custom Web Image from the drop-down list.
Step 4: Configure Your Token
Modify the reminder text to your desired scenario, upload the image you'd like to tokenize, and click on Create token.
Step 5: Download Your Token
Go ahead and copy your token for placement.
Step 6: Embed the Token in Your Webpage
Place the token in your HTML.
<!DOCTYPE html>
<html>
<head>
CANARYTOKEN IMAGES IN HTML.
</head>
<body>
<div>
<img src="ENTER LINK TO WEB IMAGE TOKEN HERE" width="256" height="256">
</div>
</body>
Alerts
An alert is created once the binary has been run.