A low interaction honeypot with the capability to be more of a medium interaction honeypot. Project status: No longer in active development. Repository will remain for anyone wanting to use or contribute to HoneyPy. I recommend using the honeydb-agent instead: https://honeydb-agent-docs.readthedocs.io/ HoneyPy is written in Python2 and is intended to be easy to install and deploy, extend with plugins and loggers, and run with custom configurations. Feel free to follow the QuickStart Guide to dive in directly. The main documentation can be found at the HoneyPy Docs site. Live HoneyPy data gets posted to: Twitter: https://twitter.com/HoneyPyLog Web service endpoint and displayed via the HoneyDB web site: https://riskdiscovery.com/honeydb. Leave an issue or feature request! Use the GitHub issue tracker to tell us what's on your mind. Pull requests are welcome! If you would like to create new plugins or improve existing ones, please do. NOTE: HoneyPy has primarily been tested and run on Debian and Ubuntu using Python 2.7.9.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A honeypot tool to detect and log CVE-2019-19781 scan and exploitation attempts.
A subset of the Modern Honey Network project set up to run in docker, including hpfeeds broker, cowrie honeypot, and dionaea honeypot.
An SDN honeypot tool for detecting and analyzing malicious activities in Software-Defined Networking environments.
A low-interaction honeypot to detect and analyze attempts to exploit the CVE-2017-10271 vulnerability in Oracle WebLogic Server
An open-source Python software for creating honeypots and honeynets securely.
Apache 2 based honeypot for detecting and blocking Struts CVE 2017-5638 exploit with added support for content disposition filename parsing vulnerability.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.