Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality. Learn more →
Top 23 Honeypot Open-Source Projects
-
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
-
pyrdp
RDP monster-in-the-middle (mitm) and library for Python with the ability to watch connections live or after the fact
-
sshesame
An easy to set up and use SSH honeypot, a fake SSH server that lets anyone in and logs their activity
-
acra
Database security suite. Database proxy with field-level encryption, search through encrypted data, SQL injections prevention, intrusion detection, honeypots. Supports client-side and proxy-side ("transparent") encryption. SQL, NoSQL. (by cossacklabs)
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
-
-
DDOS-RootSec
DDOS Archive by RootSec (Scanners, BotNets (Mirai and QBot Premium & Normal and more), Exploits, Methods, Sniffers)
-
chameleon
19 Customizable honeypots for monitoring network traffic, bots activities and username\password credentials (DNS, HTTP Proxy, HTTP, HTTPS, SSH, POP3, IMAP, STMP, RDP, VNC, SMB, SOCKS5, Redis, TELNET, Postgres, MySQL, MSSQL, Elastic and ldap) (by qeeqbox)
-
honeypots
30 different honeypots in one package! (dhcp, dns, elastic, ftp, http proxy, https proxy, http, https, imap, ipp, irc, ldap, memcache, mssql, mysql, ntp, oracle, pjl, pop3, postgres, rdp, redis, sip, smb, smtp, snmp, socks5, ssh, telnet, vnc)
-
secure-wireguard-implementation
A guide on implementing a secure Wireguard server on OVH (or any other Debian VPS) with DNSCrypt, Port Knocking & an SSH-Honeypot
-
-
web3-defi-honeypot-and-slippage-checker
Cross-chain deployed Smart-contract to detect Honeypot and Slippage for DeFi tokens.
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
Have a look at tpot created by Deutsche Telekom. https://github.com/telekom-security/tpotce
Project mention: Brute.Fail Watch brute force attacks in real time | news.ycombinator.com | 2023-06-02Thanks for the reference; after some link chasing I was able to end up on the project I believe you're thinking of: https://github.com/cowrie/cowrie#features (appears to be BSD-3-Clause: https://github.com/cowrie/cowrie/blob/master/LICENSE.rst )
Project mention: Researchers watched 100 hours of hackers hacking honeypot computers | news.ycombinator.com | 2023-08-10The RDP interception tool used by the researchers: https://github.com/gosecure/pyrdp
Project mention: Researchers watched 100 hours of hackers hacking honeypot computers | news.ycombinator.com | 2023-08-10Honeypots are fun. I documented how I ran one here: https://the-empire.systems/how-to-run-honeypot
The TL;DR is that I deployed heralding[0].
If I recall correctly, I think within two days of the server being online, there were over 50,000 attempts to login.
[0] https://github.com/johnnykv/Heralding
Sounds lovely. :)
You could also look for trespassers with: https://github.com/yunginnanet/HellPot
Project mention: Galah: An LLM-powered web honeypot using the OpenAI API | news.ycombinator.com | 2024-02-02
Project mention: Ask HN: Where and how do you blog? What platforms etc.? | news.ycombinator.com | 2023-04-26I use Hugo. A while back, I evolved a WordPress honeypot. The amount and variety of attacks that WordPress draws is just astonishing, I can't comprehend using it.
https://bruceediger.com/phparasites/
https://github.com/bediger4000/php-malware-analysis
As far as "why", Daniel Miessler convinced me with this: https://danielmiessler.com/blog/why-everyone-needs-a-blog/
NOTE:
The open source projects on this list are ordered by number of github stars.
The number of mentions indicates repo mentiontions in the last 12 Months or
since we started tracking (Dec 2020).
Honeypot related posts
- Galah: An LLM-powered web honeypot using the OpenAI API
- There Are Too Many Damn Honeypots
- mariocandela/beelzebub
- Honeypot in a home lab
- Researchers watched 100 hours of hackers hacking honeypot computers
- Securely running a honeypot server in a homelab (VLAN, Switch, proxmox, etc)
- A secure honeypot framework low code, with a layer system virtualization using GPT-3
-
A note from our sponsor - InfluxDB
www.influxdata.com | 26 Apr 2024
Index
What are some of the best open-source Honeypot projects? This list will help you:
| Project | Stars | |
|---|---|---|
| 1 | awesome-honeypots | 8,021 |
| 2 | tpotce | 5,872 |
| 3 | cowrie | 4,909 |
| 4 | malware-samples | 1,501 |
| 5 | pyrdp | 1,432 |
| 6 | sshesame | 1,394 |
| 7 | acra | 1,294 |
| 8 | honeytrap | 1,193 |
| 9 | conpot | 1,182 |
| 10 | invisible_captcha | 1,123 |
| 11 | DDOS-RootSec | 665 |
| 12 | chameleon | 638 |
| 13 | honeypots | 585 |
| 14 | beelzebub | 561 |
| 15 | heralding | 366 |
| 16 | django-honeypot | 352 |
| 17 | secure-wireguard-implementation | 342 |
| 18 | HellPot | 312 |
| 19 | spacesiren | 310 |
| 20 | galah | 259 |
| 21 | how-to-setup-a-honeypot | 139 |
| 22 | web3-defi-honeypot-and-slippage-checker | 131 |
| 23 | php-malware-analysis | 123 |
Sponsored
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com