.png)
Mimicry is a security tool developed by Chaitin Technology for active deception in exploitation and post-exploitation. Active deception can live migrate the attacker to the honeypot without awareness. We can achieve a higher security level at a lower cost with Active deception. Demo Quick Start 1. Make sure docker, docker-compose is installed correctly on the …
Tag Archives: Honeypot
ConfluencePot : Simple Honeypot For Atlassian Confluence (CVE-2022-26134)
.png)
ConfluencePot is a simple honeypot for the Atlassian Confluence unauthenticated and remote OGNL injection vulnerability (CVE-2022-26134). About the vulnerability You can find the official advisory by Atlassian to this vulerability here. For details about the inner workings and exploits in the wild you should refer to the reports by Rapid7 and Cloudflare. Affected but not yet patched systems should …
Continue reading “ConfluencePot : Simple Honeypot For Atlassian Confluence (CVE-2022-26134)”
Manuka : A Modular OSINT Honeypot For Blue Teamers
Manuka is an Open-source intelligence (OSINT) honeypot that monitors reconnaissance attempts by threat actors and generates actionable intelligence for Blue Teamers. It creates a simulated environment consisting of staged OSINT sources, such as social media profiles and leaked credentials, and tracks signs of adversary interest, closely aligning to MITRE’s PRE-ATT&CK framework. Manuka gives Blue Teams …
Continue reading “Manuka : A Modular OSINT Honeypot For Blue Teamers”
Kippo – SSH Honeypot
Kippo is a medium interaction SSH honeypot designed to log brute force attacks and, most importantly, the entire shell interaction performed by the attacker. Some interesting logs from a live Kippo installation below (viewable within a web browser with the help of Ajaxterm). Note that some commands may have been improved since these logs were …
Conpot – ICS/SCADA Honeypot
Conpot is an ICS honeypot with the goal to collect intelligence about the motives and methods of adversaries targeting industrial control systems. Also Read:BruteX – Automatically Brute Force All Services Running On A Target Conpot Installation Ubuntu You need to add multiverse to the source, like; $ sudo vim /etc/apt/sources.list Add the following line: deb …