SSH Honeypot is a low-interaction honeypot designed to monitor and log SSH connection attempts. The tool listens for incoming SSH connections and captures the IP address, username, and password credentials used by connecting clients. The honeypot operates as a deceptive service that mimics an SSH server but does not allow actual login access, preventing attackers or malware from gaining system access. It functions purely as a logging mechanism to gather intelligence on brute force attacks and unauthorized access attempts. The tool requires several development libraries including libssh, openssl, libjson-c, and libpcap for compilation. It generates RSA keys for SSH simulation and can be configured to run on specified ports. The honeypot outputs collected data in a structured format for analysis. Originally developed for gathering basic intelligence on SSH-based attacks, the tool is commonly deployed in capture-the-flag (CTF) competitions and educational environments. It can be paired with complementary tools like sshunt for enhanced functionality. The software supports Linux environments with full functionality and provides experimental support for macOS systems. Installation involves installing required dependencies, compiling the source code, generating SSH keys, and running the honeypot service.