Honeypots Detection – Using Nuclei Templates For Effective Detection

Nuclei templates for honeypots detection.

This repository contains Nuclei templates to detect several well-known open-source honeypots, such as: ADBHoney, Conpot, Cowrie, Dionaea (multiple services), ElasticPot, Mailoney, Redis Honeypot, Snare, among others.

Usage

Install Nuclei.
Clone this repository:
git clone https://github.com/UnaPibaGeek/honeypots-detection.git
Move into the templates folder:
cd honeypots-detection/templates
Run the desired template as follows:
sudo nuclei -u {target_IP} -t ./{template_name}.yaml

Example

For a more detailed output it is possible to use the -debug-resp parameter:

The requests will be sent to the honeypot’s default port if not specified.

Varshini

Varshini is a Cyber Security expert in Threat Analysis, Vulnerability Assessment, and Research. Passionate about staying ahead of emerging Threats and Technologies.

Next SharpVeeamDecryptor - Unlocking The Secrets Of Veeam »

Previous « Callstack Spoofing + Indirect Syscalls POC - Unmasking Evasion Techniques In A Proof Of Concept (POC) Scenario

Leave a Comment

Share

Published by

Varshini

Tags: cybersecurityHoneypotsinformationsecuritykalilinuxkalilinuxtools

1 year ago

Recent Posts

Vulnerability Analysis

garak, LLM Vulnerability Scanner : The Comprehensive Tool For Assessing Language Model Security

garak checks if an LLM can be made to fail in a way we don't…

16 hours ago

Post Exploitation

Vermilion : Mastering Linux Post-Exploitation For Red Team Success

Vermilion is a simple and lightweight CLI tool designed for rapid collection, and optional exfiltration…

16 hours ago

Exploitation Tools

AD-CS-Forest-Exploiter : Mastering Security Through PowerShell For AD CS Misconfiguration

ADCFFS is a PowerShell script that can be used to exploit the AD CS container…

16 hours ago

Hacking Tools

Usage Of Tartufo – A Comprehensive Guide To Securing Your Git Repositories

Tartufo will, by default, scan the entire history of a git repository for any text…

16 hours ago

software

Loco : A Rails-Inspired Framework For Rust Developers

Loco is strongly inspired by Rails. If you know Rails and Rust, you'll feel at…

2 days ago

Applications

Monolith : The Ultimate Tool For Storing Entire Web Pages As Single HTML Files

A data hoarder’s dream come true: bundle any web page into a single HTML file.…

2 days ago

L