Honeypot-FTP
FTP Honeypot Features: FTP + SSL-FTP Catch used credentials Catch malware files distribute honeytoken files Dependencies: Twisted My site-packages(3) --> common-modules Usage: # Generate Config python ftp.py -d config.xml # Run python ftp.py TODO: retain and analyse Files (Hash, Clam, Virustotal, ...) Contribution welcome. FAQ Generate SSL-Certificates CA: openssl genrsa -out ca.private.key 4096 openssl req -new -x509 -days 4096 -key ca.private.key -out ca.public.key SRV: openssl genrsa -out smtp.private.key 4096 openssl req -new -key smtp.private.key -out smtp.csr openssl x509 -req -days 1024 -in smtp.csr -CA ca.public.key -CAkey ca.private.key -set_serial 01 -out smtp.public.key SSL Check Connection openssl s_client -quiet -connect 127.0.0.1:990 Known Errors OpenSSL.SSL.Error: [('system library', 'fopen', 'No such process'), ('BIO routines', 'FILE_CTRL', 'system lib'), ('SSL routines', 'SSL_CTX_use_certificate_file', 'system lib')] --> Certifcate Files not found (wrong path?) All rights reserved. (c) 2014 by Alexander Bredo
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A serverless application that creates and monitors fake HTTP endpoints as honeytokens to detect attackers, malicious insiders, and automated threats.
A web-based visualization tool that displays statistics and generates charts from Shockpot honeypot data stored in PostgreSQL databases.
A WordPress plugin that logs failed login attempts to help monitor unauthorized access attempts on WordPress websites.
A Docker-based honeypot network implementation featuring cowrie and dionaea honeypots with centralized event collection, geolocation enrichment, and real-time attack visualization.
A plugin repository that extends the Honeycomb honeypot framework with additional features and capabilities for enhanced threat detection and analysis.
A low interaction honeypot to detect CVE-2018-2636 in Oracle Hospitality Applications.
A low-interaction honeypot to detect and analyze attempts to exploit the CVE-2017-10271 vulnerability in Oracle WebLogic Server
PINNED
Proton Pass is a cross-platform password manager that provides encrypted storage, password generation, and security monitoring features with integrated 2FA and dark web monitoring capabilities.
NordVPN is a commercial VPN service that encrypts internet connections and hides IP addresses through a global network of servers, featuring integrated threat protection and multi-device support.
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.