bap Logo

bap

0
Free
Honeypots
honeypot
http
logging
Visit Website

bap is a webservice honeypot that logs HTTP basic authentication credentials in a 'parser friendly format'. The webservice responds with 401 WWW-Authenticate: Basic realm='ADMIN' for HEAD and GET requests, and generates an error response for other HTTP methods. No valid username/password exists, only credentials are logged. Configuration involves setting HTTP_ADDR and HTTP_PORT in bap.py, with default binding to *:8080. Running bap.py starts the service, while start-bap-debian.sh and stop-bap-debian.sh manage background execution. Logging occurs in pot.log in the same directory as bap.py, with entries in the format: [Date Time] Client_address:Client_port Auth_method Decoded_auth_string.

FEATURES

ALTERNATIVES

WhiteFace HoneyPot Logo
WhiteFace HoneyPot

A honeypot tool with RDP and VNC feed support.

Free
Honeypots
SubOver Logo
SubOver

A powerful tool for finding and exploiting subdomain takeover vulnerabilities

Free
Honeypots
ThreatWar Honeypot Agent Logo
ThreatWar Honeypot Agent

A honeypot agent for running honeypots with service and data at threatwar.com.

Free
Honeypots
T-Pot - The All In One Multi Honeypot Platform Logo
T-Pot - The All In One Multi Honeypot Platform

A multiarch honeypot platform supporting 20+ honeypots and offering visualization options and security tools.

Free
Honeypots
Gitjacker Logo
Gitjacker

A tool to leak git repositories from misconfigured websites

Free
Honeypots
Honeybrid Logo
Honeybrid

A hybrid honeypot framework that combines low and high interaction honeypots for network security

Free
Honeypots
Dolos: SDN Honeypot Logo
Dolos: SDN Honeypot

An SDN honeypot tool for detecting and analyzing malicious activities in Software-Defined Networking environments.

Free
Honeypots
Dicompot Logo
Dicompot

A DICOM server with a twist, blocking C-STORE attempts for protection but logging them.

Free
Honeypots

PINNED

InfoSecHired Logo

InfoSecHired

An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.

Commercial
Resources
Mandos Brief Newsletter Logo

Mandos Brief Newsletter

A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.

Free
Resources
Kriptos Logo

Kriptos

An AI-driven data classification and governance platform that automatically discovers, analyzes, and labels sensitive information while providing risk management and compliance capabilities.

Commercial
Data Protection
System Two Security Logo

System Two Security

An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.

Commercial
Security Operations
Aikido Security Logo

Aikido Security

Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.

Commercial
Application Security
Permiso Logo

Permiso

Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.

Commercial
IAM
Wiz Logo

Wiz

Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.

Commercial
Cloud Security
Adversa AI Logo

Adversa AI

Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.

Commercial
AI Security