bap Logo

bap

0
Free
Visit Website

bap is a webservice honeypot that logs HTTP basic authentication credentials in a 'parser friendly format'. The webservice responds with 401 WWW-Authenticate: Basic realm='ADMIN' for HEAD and GET requests, and generates an error response for other HTTP methods. No valid username/password exists, only credentials are logged. Configuration involves setting HTTP_ADDR and HTTP_PORT in bap.py, with default binding to *:8080. Running bap.py starts the service, while start-bap-debian.sh and stop-bap-debian.sh manage background execution. Logging occurs in pot.log in the same directory as bap.py, with entries in the format: [Date Time] Client_address:Client_port Auth_method Decoded_auth_string.

FEATURES

ALTERNATIVES

A tool for generating permutations, alterations and mutations of subdomains and resolving them

A tool to generate a PNG image containing a XSS payload

A webapp for displaying statistics about your kippo SSH honeypot.

A FTP honeypot tool for detecting and capturing malicious file upload attempts.

A hybrid honeypot framework that combines low and high interaction honeypots for network security

Honeytrap is a low-interaction honeypot and network security tool with various modes of operation and plugin support for catching attacks against TCP and UDP services.

A project providing honeypots for embedded device vulnerabilities with support for AWS integration and JSON output.

Honeypot for Telnet service with configurable settings.

PINNED