Sometimes (actually, most times) you don’t need advanced deception technology, but rather just a simple tool to answer some simple questions. I was recently in that situation, and needed the answers to the following questions:
To answer these questions, I needed a tool that would output something similar to:
2016-03-12 20:35:09.658593,192.168.2.129,51551,23,telnet,clark,[email protected]
To fulfill my requirements I forked and modified an existing open source project to facilitate the creation of a new simplistic honeypot:
Heralding – the credentials catching honeypot.
The source code and install instructions can be found in the Github repo here.
Key points: Simplicity works, open source rocks!