Skip to content
/ slipm-honeypot Public

A simple low-interaction port monitoring honeypot.

17 stars 5 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

rshipp/slipm-honeypot

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

10 Commits
plugins
plugins
 
 
PKGBUILD
PKGBUILD
 
 
README
README
 
 
slipm-honeypot
slipm-honeypot
 
 
slipm.conf
slipm.conf
 
 

Repository files navigation

This is a simple low-interaction port monitoring honeypot, designed
primarily for research and detection purposes. It uses netcat as a
port listener, tshark to attempt to capture attack traffic, and (by
default) notify-send to alert the user when a possible attack is
detected. The honeypot itself is written in bash, and allows for easy
extension of emulated services with additional bash scripts. In order
to increase security, the script should NOT be run as root, or with
any elevated privelages. All it needs is the ability to run the
required programs, read permissions on its plugins and
configuration, and write permissions in whatever directory you 
choose to save the logs and in /tmp.

About

A simple low-interaction port monitoring honeypot.

Topics

notifications linux shell honeypot detection netcat ids low-interaction-honeypot

Resources

Readme
Activity

Stars

17 stars

Watchers

3 watching

Forks

5 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages