phpMyAdmin Honeypot
Probably one of the smallest and simplest web honeypots out there, requiring a web server running Apache, the ability to change file permissions, basic knowledge of HTML and PHP, and about 30 minutes of free time. For automated alert generation, access to a Log Manager / SIEM is recommended. Installation involves uploading the /phpmyadmin-interactive/ folder to the root of the web directory, changing the folder name to /phpmyadmin/, adjusting permissions on /phpmyadmin/log.txt, ensuring all contents are owned by the 'web user', and adding specific lines to the robots.txt file to prevent indexing.
FEATURES
SIMILAR TOOLS
A WordPress plugin that logs failed login attempts to help monitor unauthorized access attempts on WordPress websites.
A honeypot tool to detect and log CVE-2019-19781 scan and exploitation attempts.
A Docker-based honeypot network implementation featuring cowrie and dionaea honeypots with centralized event collection, geolocation enrichment, and real-time attack visualization.
A web-based visualization tool that displays statistics and generates charts from Shockpot honeypot data stored in PostgreSQL databases.
A low interaction honeypot to detect CVE-2018-2636 in Oracle Hospitality Applications.
A plugin repository that extends the Honeycomb honeypot framework with additional features and capabilities for enhanced threat detection and analysis.
An Apache 2 based honeypot with detection capabilities specifically designed to identify and analyze Struts CVE-2017-5638 exploitation attempts.
PINNED
Proton Pass is a cross-platform password manager that provides encrypted storage, password generation, and security monitoring features with integrated 2FA and dark web monitoring capabilities.
NordVPN is a commercial VPN service that encrypts internet connections and hides IP addresses through a global network of servers, featuring integrated threat protection and multi-device support.
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.