SSH-Honey-Gateway is a lightweight SSH proxy appliance that decides where to forward SSH connections based on the authentication credentials provided. It can forward connections to a honeypot server for specific credentials or to a real SSH server for other connections. Additionally, it supports allowlisting of IPs or IP ranges that bypass the validation and are forwarded directly to the real SSH server.
- Credential-Based Forwarding: Forward connections based on provided SSH keys.
- Allowlisting: Allow specific IPs or IP ranges to bypass validation.
- Configurable Port: Specify which port the SSH proxy server listens on.
- Easy Configuration: Simple YAML configuration file for setting up users, keys, and servers.
- Logging: Log all matched key connections, including datetime and source IP, to a file.
-
Clone the repository:
git clone https://github.com/referefref/ssh-honey-gateway.git cd ssh-honey-gateway -
Install dependencies: Ensure you have Go installed, then run:
go mod tidy
-
Build the application:
go build
-
Generate SSH Key Lure and update the config.yaml to point to the private key and public key content:
ssh-keygen -t rsa -b 2048 -f testkey