Gopherus
A tool for exploiting SSRF and gaining RCE in various servers
This SSH daemon will accept any username/password/key. It only allows 'session' channels (not port forwards or SFTP). It will present a fake shell and record any commands that people attempt to run, along with the date and their IP. It will log all sessions to: /var/log/gohoney/gohoney-yyyymmdd.log Build & Run First download and install Go. On OSX this is as easy as: $ brew install go For other linux/windows/freebsd check http://golang.org Then build it! # Clone this repo $ git clone https://github.com/PaulMaddox/gohoney.git # Fetch all of the Go module dependencies $ cd gohoney $ go get ./... # Build it! $ go build main.go Usage Usage: ./gohoney -b <bind address> -p <port>
A tool for exploiting SSRF and gaining RCE in various servers
A simple Postgres honey pot inspired by Elastichoney.
A simple Elasticsearch honeypot to catch attackers exploiting RCE vulnerabilities.
A list of services and how to claim (sub)domains with dangling DNS records.
A honeypot tool with RDP and VNC feed support.
Distributed low interaction honeypot with Agent/Master design supporting various protocol handlers.