Security research homelab, made with <3

• cowrie

  15 4,909 9.3 Python

  Cowrie SSH/Telnet Honeypot https://cowrie.readthedocs.io

  

It's currently a cowrie (https://github.com/cowrie/cowrie) with ssh and telnet. For my use case a low interaction in enough, maybe I'll code my own in the future.

• logalert

  2 22 3.0 JavaScript

  Monitor logs (or any text files) and send alerts on specific changes.

For the honeypot the above command is used inside https://github.com/jhuckaby/logalert

• InfluxDB

  www.influxdata.com sponsored

  Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  

• antivmdetection

  1 686 0.0 Python

  Script to create templates to use with VirtualBox to make vm detection harder

To avoid detection of something like a cuckoo I would use https://github.com/nsmfoo/antivmdetection and test it with https://github.com/therealdreg/anticuckoo and https://github.com/LordNoteworthy/al-khaser

• anticuckoo

  1 284 3.0 C

  A tool to detect and crash Cuckoo Sandbox

To avoid detection of something like a cuckoo I would use https://github.com/nsmfoo/antivmdetection and test it with https://github.com/therealdreg/anticuckoo and https://github.com/LordNoteworthy/al-khaser

• al-khaser

  5 5,527 5.7 C++

  Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.

To avoid detection of something like a cuckoo I would use https://github.com/nsmfoo/antivmdetection and test it with https://github.com/therealdreg/anticuckoo and https://github.com/LordNoteworthy/al-khaser

• Tripwire

  1 3 0.0 Python

  Tripwire monitors ports and icmp to send the admin a message if somebody is scanning a machine that shouldn't be touched

I posted it on github if anybody else wants to try it.

Suggest a related project