Tango is a set of scripts and Splunk apps designed to help organizations deploy honeypots easily. It includes scripts like uf_only.sh for installing Splunk Universal Forwarder and sensor.sh for installing Cowrie honeypot along with the forwarder. Version 2.0 supports Cowrie honeypot and updates Sensor forwarders to 6.3.0. Before installation, note that the input app communicates with ipv4.icanhazip.com to get the sensor's external IP address.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A low interaction honeypot to detect CVE-2018-2636 in Oracle Hospitality Applications.
A serverless application that creates and monitors fake HTTP endpoints as honeytokens to detect attackers, malicious insiders, and automated threats.
A honeypot tool to detect and log CVE-2019-19781 scan and exploitation attempts.
A low-interaction honeypot to detect and analyze attempts to exploit the CVE-2017-10271 vulnerability in Oracle WebLogic Server
An Apache 2 based honeypot with detection capabilities specifically designed to identify and analyze Struts CVE-2017-5638 exploitation attempts.
A low interaction client honeypot that detects malicious websites using signature, anomaly and pattern matching techniques with automated URL collection and JavaScript analysis capabilities.