Honeypots

Introduction

Argos is a full and secure system emulator designed for use in honeypots. It is based on Qemu, an open source emulator that uses dynamic translation to achieve a fairly good emulation speed.

Argos extends Qemu to enable... more

Dionaea is meant to be a nepenthes successor, embedding python as scripting language, using libemu to detect shellcodes, supporting ipv6 and tls.
Dionaea intention is to trap malware exploiting vulnerabilities exposed by services offerd to... more

DTK

The Deception ToolKit (DTK) is a toolkit designed to give defenders a couple of orders of magnitude advantage over attackers.

The basic idea is not new. We use deception to counter attacks. In the case of DTK, the deception is intended to... more

Glastopf is a Honeypot which emulates thousands vulnerabilities to gather data from attacks targeting web applications. The principle behind it is very simple: Reply the correct response to the attacker exploiting the web application. The project... more

Features:

  • Virtual appliance based on Xubuntu 12.04 Desktop.
  • Distributed as a single OVA file, ready to be imported.
  • Full LAMP stack installed (Apache 2, MySQL 5), plus tools such as phpMyAdmin.
  • Kippo SSH... more

Kippo is a medium interaction SSH honeypot designed to log brute force attacks and, most importantly, the entire shell interaction performed by the attacker.
Some interesting features:

Fake filesystem with the ability to add/... more

NepenthesFE is a front-end to the Nepenthes Honeypot. It provides visualization of data captured from the honeypot. It also provides additional details like VirusTotal scans, Strings, Packer information, ASN details, Geo-Location, ObjDump.

Valhala Honeypot is an easy to use honeypot for the Windows System. The programe have the following services: http (web), ftp, tftp, finger, pop3, smtp, echo, daytime, telnet and port forwarding. Some services are real, others are a simulation.... more

Subscribe to Honeypots