Manuka by SpaceRaccoon Logo

Manuka by SpaceRaccoon

0
Free
Visit Website

Manuka is an Open-source intelligence (OSINT) honeypot that monitors reconnaissance attempts by threat actors and generates actionable intelligence for Blue Teamers. It creates a simulated environment consisting of staged OSINT sources, such as social media profiles and leaked credentials, and tracks signs of adversary interest, closely aligning to MITRE’s PRE-ATT&CK framework. Manuka gives Blue Teams additional visibility of the pre-attack reconnaissance phase and generates early-warning signals for defenders. Although they vary in scale and sophistication, most traditional honeypots focus on networks. These honeypots uncover attackers at Stage 2 (Weaponization) to 7 (Actions on Objectives) of the cyber kill chain, with the assumption that attackers are already probing the network. Manuka conducts OSINT threat detection at Stage 1 (Reconnaissance) of the cyber kill chain. Despite investing millions of dollars into network defenses, organisations can be easily compromised through a single Google search. One recent example is hackers exposing corporate meetings, therapy sessions, and college classes through Zoom calls left on the open Web. Enterprises need to detect and deter these types of attacks. Manuka is designed to help organisations stay ahead of the attackers by providing real-time insights into the reconnaissance phase of the cyber kill chain.

FEATURES

ALTERNATIVES

A tutorial on setting up Dionaea on an EC2 instance in 20 minutes

A low Interaction Client honeypot designed to detect malicious websites through signature, anomaly and pattern matching techniques.

A honeypot agent for running honeypots with service and data at threatwar.com.

A web application honeypot sensor attracting malicious traffic from the Internet

A crawler-based low-interaction client honeypot for exposing website threats.

Medium interaction SSH Honeypot with multiple virtual hosts and sandboxed filesystems.

Find domains and subdomains related to a given domain

Low interaction MySQL honeypot with various configuration options.