OpenCanary Logo

OpenCanary

0
Free
Visit Website

OpenCanary is a multi-protocol network honeypot that runs as a daemon and implements multiple common network protocols. It has extremely low resource requirements and can be tweaked, modified, and extended. When attackers breach networks and interact with the honeypot, OpenCanary sends alerts via a variety of mechanisms. It is implemented in Python and is cross-platform, with certain features requiring specific OSes. Running on Linux provides the most options, and it can be deployed on devices like a Raspberry Pi or a VM with minimal resources. OpenCanary is the Open Source version of the commercial Thinkst Canary honeypot.

FEATURES

ALTERNATIVES

Building Honeypots for Industrial Networks using Honeyd and simulating SCADA, DCS, and PLC architectures.

A tool for embedding XXE/XML exploits into different filetypes

A powerful tool for finding and exploiting subdomain takeover vulnerabilities

A low-interaction honeypot that logs IP addresses, usernames, and passwords used by clients connecting via SSH, primarily used for gathering intelligence on brute force attacks.

An observation camera honeypot for proof-of-concept purposes

A low interaction honeypot for detecting CVE-2018-0101 vulnerability in Cisco ASA component.

Automated script to install and deploy a honeypot with kippo, dionaea, and p0f on Ubuntu 12.04.

The DShield Raspberry Pi Sensor is a tool that turns a Raspberry Pi into a honeypot to collect and submit security logs to the DShield project for analysis.