Tango is a set of scripts and Splunk apps designed to help organizations deploy honeypots easily. It includes scripts like uf_only.sh for installing Splunk Universal Forwarder and sensor.sh for installing Cowrie honeypot along with the forwarder. Version 2.0 supports Cowrie honeypot and updates Sensor forwarders to 6.3.0. Before installation, note that the input app communicates with ipv4.icanhazip.com to get the sensor's external IP address.
This tool is not verified yet and doesn't have listed features.
Did you submit the verified tool? Sign in to add features.
Are you the author? Claim the tool by clicking the icon above. After claiming, you can add features.
A honeypot mimicking Tomcat manager endpoints to log requests and save attacker's WAR files for analysis.
A low Interaction Client honeypot designed to detect malicious websites through signature, anomaly and pattern matching techniques.
A toolkit that transforms PHP applications into web-based high-interaction Honeypots for monitoring and analyzing attacks.
A honeypot for the Log4Shell vulnerability (CVE-2021-44228) with various detection and logging features.
A honeypot system that detects and identifies attack commands, recon attempts, and download commands, mimicking a vulnerable Elasticsearch instance.