sshesame
acra
sshesame | acra | |
---|---|---|
3 | 17 | |
1,394 | 1,296 | |
- | 0.8% | |
0.0 | 6.4 | |
about 1 year ago | 8 days ago | |
Go | Go | |
Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
sshesame
- Reminder to secure your homelab: I forgot to turn off SSH on my NAS 5 days ago after using it briefly and had almost 900 attacks since then. Fortunately SSH was not running on default 22 port and access was blocked on the Synology and no passthrough to SSH from my router.
-
relationship goals
there's also this other thing called sshesame which gives the attacker a fake shell to run commands in. i ended up with a 30gb logfile within a few months lol
-
So I opened up one port on my network for an SFTP server, and in just the last 7 days there have been 611 attempts to log into it... It's always interesting to see the usernames that try to log in, so I pulled them and sorted them all out.
I started an SSH honeypot project with the goal of finding out what these attackers (bots mainly) would do if they did get in.
acra
- acra: NEW Data - star count:1212.0
-
Ask HN: How to encrypt data in a SQL database?
You want to look at acra which intercepts your postgres calls and adds encryption.
https://github.com/cossacklabs/acra
-
Launch HN: JumpWire (YC W22) – Easily encrypt customer data in your databases
So I've seen something like this before i.e. https://github.com/cossacklabs/acra
So for me everything has to be infrastructures as code. I don't want to log into a UI and start configuring connections etc.
Also not keen on giving you production accesses to my databases, but maybe I misunderstood your implementation.
So I like the idea of a docker container that does this as a proxy.
It's a tough market you're going into, $395 per database is a big ask.
- acra: NEW Data - star count:1066.0
What are some alternatives?
endlessh - SSH tarpit that slowly sends an endless banner
ACL - A simple but powerful Access Control List manager
pshitt - Passwords of SSH Intruders Transferred to Text
optimus-go - ID hashing and Obfuscation using Knuth's Algorithm
honeytrap - Advanced Honeypot framework.
lego - Let's Encrypt/ACME client and library written in Go
ipsum - Daily feed of bad IPs (with blacklist hit scores)
go-htpasswd - Apache htpasswd Parser for Go.
minerstat-os - msOS - Open Source Mining OS. Repository moved, no longer using github
go-acl - Go support for Access Control Lists
gnupg - Patches to GnuPG smartcard support (bigger keys, better error handling)
dongle - A simple, semantic and developer-friendly golang package for encoding&decoding and encryption&decryption