Projects. Papers. Honeynet Project Blog. Honeyd - Virtual Honeypot. Kojoney - Honeypot for SSH (in Python) Kippo - SSH Honeypot. Kippo is a medium interaction SSH honeypot designed to log brute force attacks and, most importantly, the entire shell interaction performed by the attacker. Kippo is inspired, but not based on Kojoney. Demo Some interesting logs from a live Kippo installation below (viewable within a web browser with the help of Ajaxterm). Note that some commands may have been improved since these logs were recorded.
Features Some interesting features: Fake filesystem with the ability to add/remove files. Requirements Software required: An operating system (tested on Debian, CentOS, FreeBSD and Windows 7) Python 2.5+ Twisted 8.0+ PyCrypto Zope Interface See Wiki for some installation instructions. How to run it? Edit kippo.cfg to your liking and start the honeypot by running: . start.sh is a simple shell script that runs Kippo in the background using twistd. Twistd -y kippo.tac -n By default Kippo listens for ssh connections on port 2222. Files of interest: Is it secure? Maybe. I have some questions! Project Honey Pot. Project Honey Pot is the first and only distributed system for identifying spammers and the spambots they use to scrape addresses from your website. Using the Project Honey Pot system you can install addresses that are custom-tagged to the time and IP address of a visitor to your site.
If one of these addresses begins receiving email we not only can tell that the messages are spam, but also the exact moment when the address was harvested and the IP address that gathered it. To participate in Project Honey Pot, webmasters need only install the Project Honey Pot software somewhere on their website. We handle the rest — automatically distributing addresses and receiving the mail they generate. We collate, process, and share the data generated by your site with you. Additionally, we will periodically collate the email messages we receive and share the resulting corpus with anti-spam developers and researchers.