ssh-auth-logger Logo

ssh-auth-logger

0
Free
Visit Website

A low/zero interaction ssh authentication logging honeypot. Structured logging ssh-auth-logger logs all authentication attempts as json making it easy to consume in other tools. No more ugly openssh log parsing vulnerabilities. This is normally logged on one line { "client_version": "SSH-2.0-libssh2_1.4.3", "destinationServicename": "sshd", "dpt": "22", "dst": "192.168.1.2", "duser": "root", "level": "info", "msg": "Request with password", "password": "P@ssword1", "product": "ssh-auth-logger", "server_version": "SSH-2.0-OpenSSH_5.3", "spt": "38624", "src": "192.168.1.4", "time": "2017-11-17T19:16:37-05:00" }

FEATURES

ALTERNATIVES

Django App for the SSH Honeypot called 'kippo'

A multiarch honeypot platform supporting 20+ honeypots and offering visualization options and security tools.

Create and monitor fake HTTP endpoints automatically with Honeyku, deployable on Heroku or your own server.

GHH is a honeypot tool to defend against search engine hackers using Google as a hacking tool.

A subset of the Modern Honey Network project set up to run in docker, including hpfeeds broker, cowrie honeypot, and dionaea honeypot.

A low-interaction honeypot that simulates network services to detect and monitor potential intrusion attempts on internal networks.

A simple Postgres honey pot inspired by Elastichoney.

RDP based Honeypot that creates virtual machines for incoming connections and analyzes traffic with Suricata.