gohoney
This SSH daemon will accept any username/password/key. It only allows 'session' channels (not port forwards or SFTP). It will present a fake shell and record any commands that people attempt to run, along with the date and their IP. It will log all sessions to: /var/log/gohoney/gohoney-yyyymmdd.log Build & Run First download and install Go. On OSX this is as easy as: $ brew install go For other linux/windows/freebsd check http://golang.org Then build it! # Clone this repo $ git clone https://github.com/PaulMaddox/gohoney.git # Fetch all of the Go module dependencies $ cd gohoney $ go get ./... # Build it! $ go build main.go Usage Usage: ./gohoney -b <bind address> -p <port>
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A web-based visualization tool that displays statistics and generates charts from Shockpot honeypot data stored in PostgreSQL databases.
A low interaction client honeypot that detects malicious websites using signature, anomaly and pattern matching techniques with automated URL collection and JavaScript analysis capabilities.
A serverless application that creates and monitors fake HTTP endpoints as honeytokens to detect attackers, malicious insiders, and automated threats.
A low-interaction honeypot to detect and analyze attempts to exploit the CVE-2017-10271 vulnerability in Oracle WebLogic Server
A Docker-based honeypot network implementation featuring cowrie and dionaea honeypots with centralized event collection, geolocation enrichment, and real-time attack visualization.
A low interaction honeypot to detect CVE-2018-2636 in Oracle Hospitality Applications.
PINNED
Proton Pass is a cross-platform password manager that provides encrypted storage, password generation, and security monitoring features with integrated 2FA and dark web monitoring capabilities.
NordVPN is a commercial VPN service that encrypts internet connections and hides IP addresses through a global network of servers, featuring integrated threat protection and multi-device support.
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.