how-to-setup-a-honeypot
tpotce
how-to-setup-a-honeypot | tpotce | |
---|---|---|
6 | 31 | |
139 | 5,925 | |
- | 2.2% | |
0.0 | 8.9 | |
almost 2 years ago | 7 days ago | |
C | ||
- | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
how-to-setup-a-honeypot
-
How do I ensure safety when making a honeypot?
To start off, I intend to follow this really detailed rundown of how to create and secure my own honeypot https://github.com/Nirusu/how-to-setup-a-honeypot. Something I continue to worry about is how do I guarantee the threat actors I catch snooping aren't able to pivot or move laterally? Another concern I have is making sure whatever malicious actors go through my router, aren't able to infect anything. Is that just the extra risk you take in doing this?
- How to setup a honeypot with an IDS, ELK and TLS traffic inspection
tpotce
-
Honeypot in a home lab
Have a look at tpot created by Deutsche Telekom. https://github.com/telekom-security/tpotce
-
Securely running a honeypot server in a homelab (VLAN, Switch, proxmox, etc)
After installing proxmox, I created a VM on it containing t-pot, an (.iso) packaged group of containerized honeypots with a compelling aggregation of logs, attack attempts, a heatmap showing attack/scan locations, ips, and numerous other criteria logged and viewable in pretty elasticsearch dashboards.
-
Update for your NginxProxyManager Logs Dashboard: npmGrafStats v2.2
The Data for https://www.sicherheitstacho.eu/start/main comes from their Honeypot Software https://github.com/telekom-security/tpotce
-
What project ideas are there for a cybersecurity homelab?
As for blue team, there is tpotce which is a fully integrated Linux distro that deploys multiple honeypot containers and connects them back up into Elastic Search, but you'd need a device with 8GB+ RAM facing the internet unrestricted in a DMZ or something similar - https://github.com/telekom-security/tpotce
-
Unorthodox Things to Self Host?
T-Pot - The All In One Honeypot Platform - T-Pot
-
Docker in Cyber Security
I use it to run Splunk at home for testing. You can also run honeypots or use TPot.
- How to make honeypots.
-
Does anyone have OpenCanary working in a docker container?
Check this https://github.com/telekom-security/tpotce
- Release T-Pot 22.04.0 ยท telekom-security/tpotce
-
Flashy Network Monitoring Product?
If you want a live threat map/Honeypot and get a feel for what's attacking your network while also looking amazing, set up the T-pot - https://github.com/telekom-security/tpotce
What are some alternatives?
elk-pi - Elk Audio OS binary images for Raspberry Pi
opencanary - Modular and decentralised honeypot
elkpi-sdk - Yocto cross-compiling toolchains for Elk on Raspberry Pi 3 32 bit
cowrie - Cowrie SSH/Telnet Honeypot https://cowrie.readthedocs.io
malware-samples - A collection of malware samples caught by several honeypots i manage
tpotce - ๐ฏ T-Pot - The All In One Honeypot Platform ๐ [Moved to: https://github.com/telekom-security/tpotce]
mhn - Modern Honey Network
SplunkDashboards - Collection of Dashboards for Threat Hunting and more!
cyberchef-recipes - A list of cyber-chef recipes and curated links
Stirling-PDF - #1 Locally hosted web application that allows you to perform various operations on PDF files
awesome-honeypots - an awesome list of honeypot resources