Skip to content
master
Switch branches/tags
Code

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
etc
 
 
lib
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Overview

Low interaction honeypot application that displays real time attacks in the web-interface. Made just for fun and it is not production ready.

Written in Node.js the application listens on 128 most common TCP ports and saves results to the MySQL Database for further analysis.

Demo

Web-interface demo available at https://tail-f.shmakov.net/

How to Deploy

We need nodejs, git and tcpdump

sudo yum install git nodejs tcpdump -y

Clone the repo, install dependencies and run the app.js. Please make sure that none of your own services are listening on the ports 21, 22, 80 and ~128 more ports.

git clone https://github.com/Shmakov/Honeypot.git
cd Honeypot/ && npm install
sudo node app.js # Please think twice before running random person's code with the sudo privileges

That is it. You should be able to access the app on the port 80 from your web-browser.

Monthly Statistics

Stats for the past 30 days are available at https://tail-f.shmakov.net/stats

Below example is custom-made and displays the data for the month of June 2018:

  • There were total of 69 074 requests to the server;
  • IP Geolocation based on 11 918 unique IP Addresses;
  • IP Geolocation Map is made with the help of Google Maps API and Google Fusion Tables.

About

Low interaction honeypot that displays real time attacks

Topics

Resources

Releases

No releases published

Packages

No packages published