SSHHiPot
High-interaction SSH honeypot for logging SSH proxy with ongoing development.
This is a tutorial on setting up Dionaea on an EC2 instance. Amazon currently off a free EC2 Micro Instance so you should be able to do this too without any cost. Pre-requisites: * Amazon AWS account * EC2 Server Sign in to your Amazon AWS console, choose the EC2 tab and choose a Region (I have chosen 'Ascia Pacific (Singapore)'). Push Launch Instance and choose Classic Wizard and push Continue. Click on the Community AMIs tab. Here you need a AMI for Ubuntu 10.04, these vary between AWS Regions. A list of AMIs is available here. Pick an AMI with root store 'ebs' and arch '32-bit'. For Asia Pacific use the AMI ami-7289cd20 (Pick an AMI with root store 'ebs' and arch 32-bit), then push Select. Make sure to change the Instance Type to Micro (from Small), otherwise you will be charged, and push Continue. Continue until you are prompted to Create a Key Pair, choose a name and Create and Download Your Key Pair (save this file somewhere safe for later), push Continue. Choose to Create a New Security Group, for Create a new rule choose All TCP and Source choose 0.0.0.0/0. Enter whatever you like in Name/Description. Push Add Rule Push Continue. And then Launch. Your server has now been set up and will shortly launch. Note that you have allowed TCP access to all services on this machine so do not install
High-interaction SSH honeypot for logging SSH proxy with ongoing development.
A modified version of OpenSSH deamon forwarding commands to Cowrie for logging brute force attacks and shell interactions.
Honeytrap is a low-interaction honeypot and network security tool with various modes of operation and plugin support for catching attacks against TCP and UDP services.
An open-source Python software for creating honeypots and honeynets securely.
High interaction honeypot solution for Linux systems with data control and integrity features.
Python telnet honeypot for catching botnet binaries