rdppot Logo

rdppot

0
Free
Visit Website

Listens on port 3389, on a new connection it'll create a session & assign a virtual machine from a pool to that session. After 300 seconds (default) of the session being opened or 30 seconds (default) of no activity, the connection will be closed, and the session will be terminated. It stores a copy of the disk & a full pcap, runs Suricata against the pcap, and saves the output with the disk image and the pcap. Requirements: qemu, libvirt, Python3.7, Suricata, tcpdump. Suricata installation steps included.

FEATURES

ALTERNATIVES

WordPress honeypot tool running in a Docker container for monitoring access attempts.

A crawler-based low-interaction client honeypot for exposing website threats.

A low-interaction SSH honeypot tool for recording authentication attempts.

A subset of the Modern Honey Network project set up to run in docker, including hpfeeds broker, cowrie honeypot, and dionaea honeypot.

KFSensor is an advanced Windows honeypot system for detecting hackers and worms by simulating vulnerable system services.

HoneyDrive is the premier honeypot Linux distro with over 10 pre-installed honeypot software packages and numerous analysis tools.

A web application honeypot sensor attracting malicious traffic from the Internet

Parse Cowrie honeypot logs into a Neo4j database.