ssh-auth-logger Logo

ssh-auth-logger

0
Free
Visit Website

A low/zero interaction ssh authentication logging honeypot. Structured logging ssh-auth-logger logs all authentication attempts as json making it easy to consume in other tools. No more ugly openssh log parsing vulnerabilities. This is normally logged on one line { "client_version": "SSH-2.0-libssh2_1.4.3", "destinationServicename": "sshd", "dpt": "22", "dst": "192.168.1.2", "duser": "root", "level": "info", "msg": "Request with password", "password": "P@ssword1", "product": "ssh-auth-logger", "server_version": "SSH-2.0-OpenSSH_5.3", "spt": "38624", "src": "192.168.1.4", "time": "2017-11-17T19:16:37-05:00" }

FEATURES

ALTERNATIVES

A honeypot agent for running honeypots with service and data at threatwar.com.

A tool for testing subdomain takeover possibilities at a mass scale.

Django App for the SSH Honeypot called 'kippo'

A tool for bruteforcing subdomains of a given domain

Automated script to install and deploy a honeypot with kippo, dionaea, and p0f on Ubuntu 12.04.

A correlated injection proxy tool for XSS Hunter

Medium interaction SSH Honeypot with multiple virtual hosts and sandboxed filesystems.

A tool to declutter URL lists for crawling and pentesting