tpotce
cyberchef-recipes
tpotce | cyberchef-recipes | |
---|---|---|
31 | 4 | |
5,925 | 1,881 | |
1.7% | - | |
8.9 | 0.0 | |
3 days ago | over 1 year ago | |
C | ||
GNU General Public License v3.0 only | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
tpotce
-
Honeypot in a home lab
Have a look at tpot created by Deutsche Telekom. https://github.com/telekom-security/tpotce
-
Securely running a honeypot server in a homelab (VLAN, Switch, proxmox, etc)
After installing proxmox, I created a VM on it containing t-pot, an (.iso) packaged group of containerized honeypots with a compelling aggregation of logs, attack attempts, a heatmap showing attack/scan locations, ips, and numerous other criteria logged and viewable in pretty elasticsearch dashboards.
-
Update for your NginxProxyManager Logs Dashboard: npmGrafStats v2.2
The Data for https://www.sicherheitstacho.eu/start/main comes from their Honeypot Software https://github.com/telekom-security/tpotce
-
What project ideas are there for a cybersecurity homelab?
As for blue team, there is tpotce which is a fully integrated Linux distro that deploys multiple honeypot containers and connects them back up into Elastic Search, but you'd need a device with 8GB+ RAM facing the internet unrestricted in a DMZ or something similar - https://github.com/telekom-security/tpotce
-
Unorthodox Things to Self Host?
T-Pot - The All In One Honeypot Platform - T-Pot
-
Docker in Cyber Security
I use it to run Splunk at home for testing. You can also run honeypots or use TPot.
- How to make honeypots.
-
Does anyone have OpenCanary working in a docker container?
Check this https://github.com/telekom-security/tpotce
- Release T-Pot 22.04.0 ยท telekom-security/tpotce
-
Flashy Network Monitoring Product?
If you want a live threat map/Honeypot and get a feel for what's attacking your network while also looking amazing, set up the T-pot - https://github.com/telekom-security/tpotce
cyberchef-recipes
- mattnotmax/cyberchef-recipes - A list of cyber-chef recipes and curated links
-
The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis
A couple of recipes for Cyberchef are available in the following repository: mattnotmax/cyberchef-recipes
- 50 CyberChef recipes which show its application - from PoshC2 executable decoding through to deobfuscating encoded strings in a .NET binary and more
- 50 CyberChef recipes which show it's application - from PoshC2 executable decoding through to deobfuscating encoded strings in a .NET binary and more
What are some alternatives?
opencanary - Modular and decentralised honeypot
CyberChef - The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis
cowrie - Cowrie SSH/Telnet Honeypot https://cowrie.readthedocs.io
security-onion - Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management
tpotce - ๐ฏ T-Pot - The All In One Honeypot Platform ๐ [Moved to: https://github.com/telekom-security/tpotce]
awesome-incident-response - A curated list of tools for incident response
mhn - Modern Honey Network
FCL - FCL (Fileless Command Lines) - Known command lines of fileless malicious executions
Stirling-PDF - #1 Locally hosted web application that allows you to perform various operations on PDF files
ThreatHunting_with_Osquery - Threat Hunting & Incident Investigation with Osquery
awesome-honeypots - an awesome list of honeypot resources
smbeagle - SMBeagle - Fileshare auditing tool.