bap Logo

bap

0
Free
Visit Website

bap is a webservice honeypot that logs HTTP basic authentication credentials in a 'parser friendly format'. The webservice responds with 401 WWW-Authenticate: Basic realm='ADMIN' for HEAD and GET requests, and generates an error response for other HTTP methods. No valid username/password exists, only credentials are logged. Configuration involves setting HTTP_ADDR and HTTP_PORT in bap.py, with default binding to *:8080. Running bap.py starts the service, while start-bap-debian.sh and stop-bap-debian.sh manage background execution. Logging occurs in pot.log in the same directory as bap.py, with entries in the format: [Date Time] Client_address:Client_port Auth_method Decoded_auth_string.

FEATURES

ALTERNATIVES

Beelzebub is an advanced honeypot framework for detecting and analyzing cyber attacks, with integration options for OpenAI GPT-3 and deployment on Kubernetes using Helm.

A subset of the Modern Honey Network project set up to run in docker, including hpfeeds broker, cowrie honeypot, and dionaea honeypot.

Honeypot for Telnet service with configurable settings.

Ansible role for deploying and managing Bifrozt honeypots

A honeypot tool that simulates an open relay to capture and analyze spam

Honeypot platform for tracking and monitoring UDP-based DDoS attacks with support for various honeypot services.

SSHoney is an SSH honeypot for logging SSH connection attempts.

A low-interaction SSH authentication logging honeypot that logs all authentication attempts in JSON format.