Your first time on this page? Allow me to give some explanations.
an awesome list of honeypot resources
Here you can see meta information about this topic like the time we last updated this page, the original creator of the awesome list and a link to the original GitHub repository.
Thank you paralax & contributors
View Topic on GitHub:
Search for resources by name or description.
Simply type in what you are looking for and the results will be filtered on the fly.
Further filter the resources on this page by type (repository/other resource), number of stars on GitHub and time of last commit in months.
A collection of tools developed by other researchers in the Computer Science area to process network traces. All the right reserved for the original authors.
Defund the Police.
ESPot - ElasticSearch Honeypot
A Simple Elasticsearch Honeypot
A honeypot proxy for mongodb. When run, this will proxy and log all traffic to a dummy mongodb server.
The NoSQL Honeypot Framework
Low interaction MySQL honeypot written in C
A mysql honeypot, still very very early stage
Low-interaction Postgres Honeypot
medium interaction postgresql honeypot
Honeypot type for Symfony forms
Web Application Honeypot
HellPot is a portal to endless suffering meant to punish unruly HTTP bots.
Simple spam prevention package for Laravel applications
A nodejs web application honeypot
Struts Apache 2 based honeypot as well as a detection module for Apache 2 servers
This project is designed to create deceptive webpages to deceive and redirect attackers away from real websites.
bap - http Basic Authentication honeyPot
A fake Django admin login screen page.
HoneyHTTPD is a Python-based web server honeypot/service imitation builder. Great for honeypots or faking HTTP services.
An uploader honeypot designed to look like poor website security.
A simple and effective phpmyadmin honeypot
WebApp Honeypot for detecting Shell Shock exploit attempts
PHP Script demonstrating a smart honey pot.
Super Next generation Advanced Reactive honEypot
He who flays the hide
Inserts a trap for spam bots into responses.
Honeypot that mimics Tomcat manager endpoints. Logs requests and saves attacker's WAR file for later study
python based WordPress honeypot in a docker container
Wordpress plugin to reduce comment spam with a smarter honeypot.
A Wordpress Honeypot
Low interaction honeypot designed for Android Debug Bridge over TCP/IP
Honeypot for Intel's AMT Firmware Vulnerability CVE-2017-5689
A low to medium interaction honeypot.
A multi-purpose, modular medium-interaction honeypot based on Twisted.
Bash and Python Honeyport scripts
MICROS Honeypot is a low interaction honeypot to detect CVE-2018-2636 in the Oracle Hospitality Simphony component of Oracle Hospitality Applications (MICROS). This is a directory traversal vulnerability.
Remote Desktop Protocol in Twisted Python
Simple High Interaction Honeypot Solution for SMB protocol
Tom's Honey Pot as seen in Applied Network Security Monitoring.
WebLogic Honeypot is a low interaction honeypot to detect CVE-2017-10271 in the Oracle WebLogic Server component of Oracle Fusion Middleware. This is a Remote Code Execution vulnerability.
Twisted based HoneyPot for WhiteFace
Simple Docker Honeypot server emulating small snippets of the Docker HTTP API
The plugin repository for Honeycomb, the honeypot framework by Cymmetria
observation camera honeypot
Advanced Honeypot framework.
RDP monster-in-the-middle (mitm) and library for Python with the ability to watch connections live or after the fact
Troje is a honeypot built around lxc containers. It will run each connection with the service within a seperate lxc container.
Quick proof of concept to detect a Kippo SSH honeypot instance externally
GasPot Released at Blackhat 2015
Open source tools for realistic-behaving electric grid honeynets
damn simple honey pot
Repo for the Open Source version of NOVA
Modular and decentralised honeypot
A low interaction honeypot for the Cisco ASA component capable of detecting CVE-2018-0101, a DoS and remote code execution vulnerability.
A medium interaction printer honeypot 🍯
Botnet command & control monitor
Google Summer of Code 2012 project, supported by The Honeynet Project organization.
Modern Honey Network
Honeypot for router backdoor (TCP 32764)
A honeypot that can be used to observe traffic directed at home routers.
A modern tool for the Windows kernel exploration and tracing
A honeypot for malware that propagates via USB storage devices
Passive Network Audit Framework
Script to create templates to use with VirtualBox to make vm detection harder
Automated Virtual Machine Generation and Cloaking for Cuckoo Sandbox.
A debugger backend and LUA wrapper for PIN
A debugger frontend
Reverse engineering, Malware and goodware analysis of Android applications ... and more (ninja !)
APKinspector is a powerful GUI tool for analysts to analyze the Android applications.
🍯 T-Pot - The All In One Honeypot Platform 🐝
The Artillery Project is an open-source blue team tool designed to protect Linux and Windows operating systems through multiple methods.
Automatic deploy bifrozt with ansible. ALPHA
Credentials catching honeypot
Open Source Telnet Honeypot
Semi-Intelligent HoneyPot Network - Semi-Intelligent Reactive Environment Network
A simple telnet honeypot
Simple UDP honeypot script
Yet Another Fake Honeypot written in Go
a low interaction honeypot.
Fake Protocol Server
Generic Low Interaction Honeypot
A honeypot server written in Go.
honeypot go lang emulators
SMTP honeypot written in Golang
a low-interaction honeypot
IMAP honeypot written in Golang
A high scalable low to medium interactive SSH/TCP honeypot using Linux Namespaces, capabilities, seccomp, cgroups designed for OpenWrt and IoT devices.
Port listener / honeypot in Rust with protocol guessing and safe string display
A simple low-interaction port monitoring honeypot.
Python telnet honeypot for catching botnet binaries
Simulates enough of a Telnet connection in order to log failed login attempts.
Low-interaction VNC honeypot with a static challenge.
Honeynet Project generic authenticated datafeed protocol
HoneySpider Network version of Capture-HPC
Automatically exported from code.google.com/p/jsunpack-n
YALIH (Yet Another Low Interaction Honeyclient) is a low Interaction Client honeypot designed to detect malicious websites through signature, anomaly and pattern matching techniques
Instant messenger honeypot
Powerful Python tool to analyze PDF documents
Multi-head SSH honeypot system.
Cowrie SSH/Telnet Honeypot https://cowrie.readthedocs.io
Docker container running cowrie with DShield output enabled.
HonSSH is designed to log all SSH communications between a client and server.
Hudinx is a tiny interaction SSH honeypot engineered in Python to log brute force attacks and, most importantly, the entire shell interaction performed by the attacker.
Kippo - SSH Honeypot
Kippo configured to be a backdoored netscreen
Kojoney2 is a low interaction SSH honeypot written in Python. Based on Kojoney by Jose Antonio Coret
Simple TCP/UDP honeypot implemented in Perl
Mock an SSH server and define all commands it supports (Python, Twisted)
Parse cowrie honeypot logs into a neo4j database
A simple ssh honeypot in golang
A SSH honeypot written in Go
hived is a honeypot
A SSH Server in Go that logs username/password combos
SSH Honeypot written in Go
A credential dumping SSH honeypot with statistics
A low/zero interaction ssh authentication logging honeypot
Fake sshd that logs ip addresses, usernames, and passwords.
A low-interaction SSH honeypot written in C
framework for a high interaction SSH honeypot
An easy to set up and use SSH honeypot, a fake SSH server that lets anyone in and logs their activity
High-interaction MitM SSH honeypot
Yet another no-frills low-interaction ssh honeypot in Go.
A low-to-medium interaction SSH Honeypot with features to capture terminal activity and upload to asciinema.org
SSH, FTP and Telnet honeypots based on Twisted
An SMTP Honeypot
Fetch all Honeypot
Spam Honeypot with Intelligent Virtual Analyzer
Spam Honeypot Tool
The Project Honey Pot un-official PHP SDK
Docker configs and build scripts.
A docker based honeypot.
Docker based honeypot (Dionaea & Kippo)
Very simple but effective honeypot to detect port scanning on your network
Core elements of the Modern Honey Network implemented in Docker
Kako "IoT" honeypot framework.
Canarytokens helps track activity and actions on your network.
A PoC tool designed to enhance the effectiveness of your traps by spreading breadcrumbs & honeytokens across your systems to lure the attacker toward your honeypots
honeyλ - a simple, serverless application designed to create and monitor fake HTTP endpoints (i.e. URL honeytokens) automatically, on top of AWS Lambda and Amazon API Gateway
A tool for deploying and detecting use of Active Directory honeytokens
A Heroku-based web honeypot that can be used to create and monitor fake HTTP endpoints (i.e. honeytokens).
Network and Artifact Analysis
A Libemu Cython wrapper
A malware/botnet analysis framework written in Ruby.
Integrated MALware Simulator and Emulator
x86 emulation and shellcode detection
Dionaea Front Web
Django App for kippo SSH Honeypot: https://code.google.com/p/kippo/
Honeypot Intelligence with Splunk
Simplified UI for showing honeypot alarms
A flask website which displays data I've gathered with my SSH Honeypot
Attack Community Graphs through Event Clustering
AfterGlow Cloud is a security visualization tool which lets users upload data and visualize the data as graphs on-the-fly (part of Google Summer of Code 2012).
easy honeypot statistics
Maltego tranforms for mapping Honeypot systems.
Real-time websocket stream of GPS events on a fancy SVG world map
HpfeedsHoneyGraph is a visualization app to visualize hpfeeds logs
Mojolicious app to display statistics for your kippo SSH honeypot
The Intelligent Honey Net Project attempts to create actionable information from honeypots
Honeypot (Dionaea and kippo) setup script
Script for turning a Raspberry Pi into a Honey Pot Pi