ESPot Logo

ESPot

0
Free
Visit Website

An Elasticsearch honeypot written in NodeJS, designed to capture every attempt to exploit CVE-2014-3120. Prerequisite: NodeJS - v0.10.x, NodeJS Package Manager - npm v1.4.x. Install by downloading and extracting to /opt/espot, then running the following commands: $ cd /opt/espot $ npm install $ mv config.js-sample config.js. Configure config.js with default responses, logging settings, and timezone. ESPot can send a POST request with JSON data to a provided URL for logging purposes. To run as a daemon, use forever. Source code is released under the General Public License version 3.

FEATURES

ALTERNATIVES

A simple Elasticsearch honeypot to catch attackers exploiting RCE vulnerabilities.

A collection of scripts for debugging SSRF, blind XSS, and XXE vulnerabilities

OpenCanary is a multi-protocol network honeypot with low resource requirements and alerting capabilities.

A honeypot daemon project for processing, filtering, and redirecting incoming traffic to a sandbox environment.

An open source honeypot for NoSQL databases with support for Redis and additional features for detecting attackers and logging attack incidents.

GHH is a honeypot tool to defend against search engine hackers using Google as a hacking tool.

A comprehensive dashboard for managing and monitoring honeypots with detailed information on attack attempts and connections.

Medium interaction SSH honeypot for logging brute force attacks and shell interactions.

PINNED