Honeypot

A Go-based honeypot that mimics Intel's AMT management service to detect and log exploitation attempts targeting the CVE-2017-5689 firmware vulnerability.

Fake protocol server simulator supporting 50+ network protocols for deception

A Python web application that provides statistical analysis and visualization for Glastopf honeypot data by connecting to the honeypot's SQLite database.

SMTP Honeypot with custom modules for different modes of operation.

A Python-based honeypot service for SSH, FTP, and Telnet connections

LaBrea is a 'sticky' honeypot and IDS tool that traps malicious actors by creating virtual servers on unused IP addresses.

Ghost USB Honeypot emulates USB storage devices to detect and analyze malware that spreads via USB without requiring prior threat intelligence.

A honeypot installation for Drupal that supports Go modules and mimics different versions of Drupal.

MiniCPS is a framework for real-time Cyber-Physical Systems simulation that supports physical process and control device simulation along with network emulation capabilities.

Troje is a honeypot that creates dynamic LXC container environments to attract and monitor attackers while recording their activities and system changes.

A low-interaction SSH authentication logging honeypot that logs all authentication attempts in JSON format.

Multi-honeypot platform with various honeypots and monitoring tools.

Impost is a powerful network security auditing tool with honey pot and packet sniffer capabilities.

Syrup is a Go-based SSH honeypot that simulates SSH services with fake shells, session recording, and comprehensive logging to monitor and analyze unauthorized access attempts.

High-interaction SSH honeypot for logging SSH proxy with ongoing development.

Create and monitor fake HTTP endpoints automatically with Honeyku, deployable on Heroku or your own server.

An Apache 2 based honeypot with detection capabilities specifically designed to identify and analyze Struts CVE-2017-5638 exploitation attempts.

A multiarch honeypot platform supporting 20+ honeypots and offering visualization options and security tools.

An SDN honeypot tool for detecting and analyzing malicious activities in Software-Defined Networking environments.

An OpenFlow honeypot that detects unused IP addresses and simulates network traffic to attract and analyze potential threats

A high-interaction honeypot system supporting the Redis protocol.

HoneyDrive is the premier honeypot Linux distro with over 10 pre-installed honeypot software packages and numerous analysis tools.

A honeypot system designed to detect and analyze potential security threats

Distributed low interaction honeypot with Agent/Master design supporting various protocol handlers.