We are very happy to announce The Honeynet Project Workshop 2025, scheduled to take place in Prague, Czech Republic, from June 2nd to 4th. The event will be hosted at the National Technical Library (NTK) and will feature a combination of cybersecurity briefings and advanced hands-on training sessions.
We are thrilled to announce The Honeynet Project Workshop 2024, scheduled to take place in Copenhagen, Denmark, from May 27th to 29th. The event will be hosted at the Mødecenter of the Technical University of Denmark and will feature a combination of cybersecurity briefings and hands-on training sessions.
For several years The Honeynet Project has operated a network of distributed honeypots. While operating a sensor network over multiple years, we’ve improved our ability to leverage orchestration to deploy in a variety of environments, manage the various sensors, and improve them over time.
An early problem was simply how to manage honeypots running the same sensor software but deployed in very different environments. Further, the sensors needed to be lightweight and require as few resources as possible (so that we could deploy as many as possible). Luckily this effort didn’t require very much net-new orchestration and started out by relying on what had already been developed for tpot. Putting it all together, Ansible has really served as the backbone for bringing up new systems, and making it very easy to customize the sensors and deploy changes. Better yet, the effort into orchestration efforts make the individual sensors semi-disposable; their data is valuable but the sensors themselves are disposable and easily replaced by spinning up more instances.
Contributor: Kunal Gurtatta Mentors: Lorena Goldoni, Federico Foschini
As a Python developer and security enthusiast, I always wanted to contribute to open-source security projects. When I learned about GSoC from one of my seniors, I started searching for security organizations and came across Honeynet. They had just announced their ideas for this year’s GSoC, and one of them was BuffaLogs, which matched my tech stack perfectly. I began contributing in late Feb'25, submitting PRs to implement alerters and making small refactors to get familiar with the codebase. Since my early contributions focused on alerters, I decided to continue working on integrating more of them and improving the alerting logic in my proposal.
Contributor: Onunwa Goodness Mentors: Lorena Goldoni, Federico Foschini
September 1, 2025 officially marks the end of the Google Summer of Code (GSoC) 2025 coding period. Over the past four months, I’ve had the privilege of contributing as a developer to The BuffaLogs Project under The Honeynet Project. It’s been four months of doing what I love most—building and shipping code.
We are happy to announce that we have been selected as an organization to participate in Google Summer of Code 2024! This will be the 15th time that Honeynet is participating in the Google Summer of Code program to accelerate the creation of information- and cyber security related tools that are free and open source software. We are now entering the community bonding phase during which students are encouraged to reach out and interact with organizations and start getting involved with potential projects. We strongly recommend to join our Discord.
I’d like to announce the 1.0 release of the server-side, low-interaction honeypot Glutton!
We have built Glutton as a versatile honeypot, capable of receiving any network traffic by accepting connections on any port. Being very easy to adapt and extend, Glutton is a fantastic tool to understand network threats.
Our dedicated Google Summer of Code (GSoC) participant, Abheek, has spent an impressive three-month duration program actively contributing to not one, but two distinct projects: IntelOwl and Buffalogs. Notably, Abheek undertook the responsibility of crafting the brand-new official website for IntelOwl throughout this period.
In light of this significant achievement, we believe it is only fitting to showcase his remarkable results and contributions within the official IntelOwl site, in which he discuses his journey as a designer/frontend developer, the tasks involved and the detailed contributions to both projects, including the revamping of IntelOwl’s website, implementing JWT authentication for Buffalogs, creating maps and graphs for BuffaLogs’ dashboard, and crafting a frontend guide for IntelOwl using react-joyride.
Our GSoC student Kumiszhan Dybyspayeva was working for three months under the supervision of Lukas Rist on Ochi, specifically on introducing new features such as event filtering using a DSL, persisting filters and sharing an event.
Read on for an overview of their achievements and how they successfully contributed towards Ochi and some considerations for the future.
It has been almost 15 years since Lance announced our new web site on August 12th 2008. While you are already enjoying the pleasures of our now home, read on for a quick tour…