HoneyPots

< Securité < Administration Linux <
TwitterFacebook
Get flash to fully experience Pearltrees
http://www.honeynet.org/project This page contains a list of tools and services that we use on a regular basis. Most of these tools have been created by our members and participating GSoc students, but some are also external and not affiliated with the Honeynet Project. We hope you find the below link collection useful. If you see that a specific tool is not listed, but should, feel free to email projects@honeynet.org. APKinspector is a static analysis platform for android applications.

Projects | The Honeynet Project

We are a 501c3 non-profit, all volunteer organization. Consider donating to support our forensic challenges, tools development, and research.

Papers | The Honeynet Project

http://www.honeynet.org/papers

Honeynet Project Blog | The Honeynet Project

http://www.honeynet.org/ Earlier, we posted about our operation on the Kelihos.B/Hlux.B botnet takedown that was conducted with by security experts from Dell SecureWorks, CrowdStrike, Kaspersky, and the Honeynet Project. On initial view, the operation seems very clear cut: the bad guys are running a botnet that is doing havoc on the Internet; on the other side, are the good guys that have found a way to disable the botnet. The situation is much more nuanced.

Honeyd - Virtual Honeypot

http://www.honeyd.org/ Honeyd is a small daemon that creates virtual hosts on a network. The hosts can be configured to run arbitrary services, and their personality can be adapted so that they appear to be running certain operating systems. Honeyd enables a single host to claim multiple addresses - I have tested up to 65536 - on a LAN for network simulation. Honeyd improves cyber security by providing mechanisms for threat detection and assessment.
http://kojoney.sourceforge.net/ Kojoney is a mix of the spanish word cojon (s/c/k/) and honey. In the spanish language the sentence "estar hasta los cojon es" is used to express that you are cloyed . In the past I received many attacks against my SSH server and various of the attacks were very cool (i.e. using my name and sourname to brute force my SSH Server). In order to catch my attacker I decided to create a honeypot.

Kojoney - Honeypot for SSH (in Python)

Bon bah dommage, ça avait l'air sympa, mais pour l'installer avec les programmes requis déjà présents c'est vraiment trop galère (en supposant que c'est possible). by pandark Jun 9

Kippo is a medium interaction SSH honeypot designed to log brute force attacks and, most importantly, the entire shell interaction performed by the attacker. Some interesting logs from a live Kippo installation below (viewable within a web browser with the help of Ajaxterm). Note that some commands may have been improved since these logs were recorded. start.sh is a simple shell script that runs Kippo in the background using twistd. Detailed startup options can be given by running twistd manually. For example, to run Kippo in foreground: http://code.google.com/p/kippo/

kippo - SSH Honeypot - Google Project Hosting

Project Honey Pot is the first and only distributed system for identifying spammers and the spambots they use to scrape addresses from your website. Using the Project Honey Pot system you can install addresses that are custom-tagged to the time and IP address of a visitor to your site. If one of these addresses begins receiving email we not only can tell that the messages are spam, but also the exact moment when the address was harvested and the IP address that gathered it.

Project Honey Pot

http://www.projecthoneypot.org/about_us.php?vid=gmh1up1rh45op8ak3u7sl91s47