YALIH YALIH Logo

YALIH YALIH

0
Free
Honeypots
appsec
blue-team
honeypot
low-interaction
malware-detection
anomaly-detection
pattern-matching
yara
Visit Website

YALIH YALIH (Yet Another Low Interaction Honeyclient) is a low Interaction Client honeypot designed to detect malicious websites through signature, anomaly and pattern matching techniques. * Suspecious URL collection from malicious website databases (three databases) * URL collection through Bing API * Suspecious URL collection from your inbox and SPAM folder through pop3 and IMAP protocol * Javascript extraction, de-obfuscation and de-minification of scripts embedded within a website * Referrer Emulation and redirection handling * Cookies and session handling * Browser and browser agent and OS emulation * Proxy capabilities to detect Geo-location and/or IP cloacking attacks * Signature detection using ClamAV antivirus database * Anomaly and pattern matching detection through Yara (http://plusvic.github.io/yara/) * Automated Yara signature generation =================================== Easy Installation and documentation ==================================== Authors/Contributors: * Victoria University of Wellington * Masood Mansoori - masood.mansoori@gmail.com * Singapore Polytechnic * Lai Qi Wei - laiqiwei30@hotmail.com

FEATURES

ALTERNATIVES

sshesame Logo
sshesame

An easy to set up SSH honeypot for logging SSH connections and activity.

Free
Honeypots
Glastopf Logo
Glastopf

Python web application honeypot with vulnerability type emulation and modular design.

Free
Honeypots
crtndstry Logo
crtndstry

A subdomain finder tool

Free
Honeypots
HoneyDrive Logo
HoneyDrive

HoneyDrive is the premier honeypot Linux distro with over 10 pre-installed honeypot software packages and numerous analysis tools.

Free
Honeypots
Gopherus Logo
Gopherus

A tool for exploiting SSRF and gaining RCE in various servers

Free
Honeypots
Subra Logo
Subra

A simple web-based interface for subdomain enumeration using the subfinder tool.

Free
Honeypots
Hornet Logo
Hornet

Medium interaction SSH Honeypot with multiple virtual hosts and sandboxed filesystems.

Free
Honeypots
LaBrea Logo
LaBrea

LaBrea is a 'sticky' honeypot and IDS tool that traps malicious actors by creating virtual servers on unused IP addresses.

Free
Honeypots

PINNED

Fabric Platform by BlackStork Logo

Fabric Platform by BlackStork

Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.

Free
Security Operations
Mandos Brief Newsletter Logo

Mandos Brief Newsletter

Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.

Free
Blogs and News
Wiz Logo

Wiz

Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.

Commercial
Cloud Security
Adversa AI Logo

Adversa AI

Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.

Commercial
AI Security
CyberSecTools logoCyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Copyright © 2024 - All rights reserved

LINKS
Blog
LEGAL
Terms of servicesPrivacy policy