smart-honeypot PHP Script
PHP Script demonstrating a smart honey pot. Gettings Started Download the latest release. Choose one of the forms: simple-form.php, hardened-form.php or bootstrap-form.php (simple-form.php is intended as a simple way to understand the script only. It is not intended for use in production.) Set the contants Set the $salt. I recommend http://www.sethcardoza.com/tools/random-password-generator/ as a quick tool to get some random stuff to put in there. Set $recipients to a comma-separated list of emails (as accepted by PHP mail function) Set $senderName. This will be included in the from address of the email. Set $sender. This is the email address where the form originates. Typically something like noreply@example.com. Set $subject. This is the email subject. Modify the form to include the fields you need. action defaults to the current script address method should remain set at post. Changing this will cause the form not to send emails. fields is an array of inputs (and form elements) that you would like in your form. You can use the following form elements: text, url, email, number, phone/tel, checkbox, file, textarea, select, and submit The last form input should always
FEATURES
ALTERNATIVES
Introspy-Android is a blackbox tool for understanding Android app behavior and identifying security issues at runtime.
Android security virtual machine with updated tools and frameworks for reverse engineering and malware analysis.
Runtime Mobile Security (RMS) is a powerful web interface powered by FRIDA for manipulating Android and iOS Apps at Runtime.
Alternative marketplace for mobile applications with package ID metadata retrieval and APK download capabilities.
A spam prevention technique using hidden fields to detect and deter spam bots in Laravel applications.
Hashcat is a fast and advanced password recovery utility that supports various attack modes and hashing algorithms, and is open-source and community-driven.
NotRuler is a tool for Exchange Admins to detect client-side Outlook rules and VBScript enabled forms, aiding in the detection of attacks created through Ruler.
A Python tool for patching Dalvik bytecode in DEX files and assisting in Android application analysis
PINNED
ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Check Point CloudGuard WAF
A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.