Kippo is a medium interaction SSH honeypot designed to log brute force attacks and the entire shell interaction performed by the attacker. It features a fake filesystem, the ability to add/remove files, storing session logs in a UML compatible format, and trickery like pretending to connect somewhere. It requires an operating system, Python 2.5+, Twisted 8.0 to 15.1.0, and PyCrypto.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A serverless application that creates and monitors fake HTTP endpoints as honeytokens to detect attackers, malicious insiders, and automated threats.
A combination of honeypot, monitoring tool, and alerting system for detecting insecure configurations.
A plugin repository that extends the Honeycomb honeypot framework with additional features and capabilities for enhanced threat detection and analysis.
An SDN honeypot tool for detecting and analyzing malicious activities in Software-Defined Networking environments.
A web-based visualization tool that displays statistics and generates charts from Shockpot honeypot data stored in PostgreSQL databases.
A low interaction honeypot to detect CVE-2018-2636 in Oracle Hospitality Applications.
A honeypot tool to detect and log CVE-2019-19781 scan and exploitation attempts.