Cyber security

Honeypots Detection – Using Nuclei Templates For Effective Detection

Nuclei templates for honeypots detection.

This repository contains Nuclei templates to detect several well-known open-source honeypots, such as: ADBHoney, Conpot, Cowrie, Dionaea (multiple services), ElasticPot, Mailoney, Redis Honeypot, Snare, among others.

Usage

  1. Install Nuclei.
  2. Clone this repository:
    git clone https://github.com/UnaPibaGeek/honeypots-detection.git
  3. Move into the templates folder:
    cd honeypots-detection/templates
  4. Run the desired template as follows:
    sudo nuclei -u {target_IP} -t ./{template_name}.yaml

Example

For a more detailed output it is possible to use the -debug-resp parameter:

The requests will be sent to the honeypot’s default port if not specified.

Varshini

Varshini is a Cyber Security expert in Threat Analysis, Vulnerability Assessment, and Research. Passionate about staying ahead of emerging Threats and Technologies.

Leave a Comment
Share
Published by
Varshini
Tags: cybersecurityHoneypotsinformationsecuritykalilinuxkalilinuxtools
2 years ago

Recent Posts

The Evolution of Cloud Technology: Where We Started and Where We’re Headed

Image credit:pexels.com If you think back to the early days of personal computing, you probably…

3 days ago

The Evolution of Online Finance Tools In a Tech-Driven World

In an era defined by technological innovation, the way people handle and understand money has…

3 days ago

A Complete Guide to Lenso.ai and Its Reverse Image Search Capabilities

The online world becomes more visually driven with every passing year. Images spread across websites,…

4 days ago

How Web Application Firewalls (WAFs) Work

General Working of a Web Application Firewall (WAF) A Web Application Firewall (WAF) acts as…

1 month ago

How to Send POST Requests Using curl in Linux

How to Send POST Requests Using curl in Linux If you work with APIs, servers,…

1 month ago

What Does chmod 777 Mean in Linux

If you are a Linux user, you have probably seen commands like chmod 777 while…

1 month ago