Projects

This page contains a list of tools and services that we use on a regular basis. Most of these tools have been created by our members and GSoC students, but some are also external and not affiliated with the Honeynet Project. If you see that a specific tool is not listed, but should, feel free to email [email protected]. Projects are sorted by last commit date.

Active Projects

GreedyBear

Threat Intel Platform for T-POTs

GitHub 159 Python MIT
cyber-threat-intelligence cybersecurity hacktoberfest honeypot ioc open-source python threat-intelligence threatintel tpot

thug

Python low-interaction honeyclient

GitHub 1020 Python GPL-2.0
client-honeypot honeyclient low-interaction python security-tools shellcode virustotal

Intel Owl

IntelOwl: manage your Threat Intelligence at scale

Website GitHub 4319 Python AGPL-3.0
cyber-security cyber-threat-intelligence cybersecurity dfir enrichment hacktoberfest honeynet incident-response intel-owl ioc malware-analysis malware-analyzer osint osint-python python

mitmproxy

An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.

Website GitHub 40.7k Python MIT
debugging http http2 man-in-the-middle mitmproxy proxy python security ssl tls websocket

DRAKVUF

Black-box Binary Analysis

Website GitHub 1167 C++
introspection malware-analysis virtualization xen

BuffaLogs

an Open Source Django App whose main purpose is to detect login anomalies

GitHub 49 Python

T-Pot

The All In One Multi Honeypot Platform 🐝

GitHub 8332 C GPL-3.0
deception docker elk honeypot network-security security t-pot

Glutton

Generic Low Interaction Honeypot

GitHub 285 Go MIT
hacktoberfest honeypot

ochi

Website GitHub 32 Go GPL-3.0
honeypot visualization

PcapMonkey

will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.

GitHub 158 Zeek

Conpot

ICS/SCADA honeypot

GitHub 1388 Python GPL-2.0
hacktoberfest honeypot ics python scada security

Old Projects

honeyscanner

A vulnerability analyzer for honeypots

Website GitHub 49 Python MIT
cybersecurity cybersecurity-assessments dos-attack exploitation fuzzing honeypots passive-vulnerability-scanner ssh-honeypot vulnerability-scanner

TANNER

He who flays the hide

GitHub 228 Python GPL-3.0
honeypot security

DroidBot

A lightweight test input generator for Android. Similar to Monkey, but with more intelligence and cool features!

GitHub 906 Python MIT

dionaea

Home of the dionaea honeypot

Website GitHub 775 Python GPL-2.0
dionaea honeypot security

Glastopf

Web Application Honeypot

Website GitHub 586 Python

SNARE

Super Next generation Advanced Reactive honEypot

Website GitHub 469 Python GPL-3.0
hacktoberfest honeypot security

WhisperPot

VoIP honeypot system

GitHub 20 Python MIT
honeypot voip

RIoTPot

the IoT and OT (Operational Technology) Honeypot

GitHub 25 Go MIT

Kippo

SSH Honeypot

GitHub 1700 Python

Droidbox

Dynamic analysis of Android apps

GitHub 783 Python

cuckoo

Sandbox is an automated dynamic malware analysis system

Website GitHub 5812 JavaScript

dockpot

GitHub 52 Python

Google Hack Honeypot

Google Hack Honeypot

GitHub 7 PHP GPL-2.0
honeypot security

Honeytrap

a low-interaction honeypot

GitHub 94 C GPL-2.0

GVol

GitHub 20 Java MIT

Capture-HPC

A high interaction client honeypot

GitHub 31 C

Capture BAT

a behavioral analysis tool of applications for the Win32 operating system family.

GitHub 32 C++ GPL-2.0

honeysnap

GitHub 13 Python

honeyc

GitHub 8 Ruby

HFlow2

GitHub 5 C++ GPL-2.0

APKinspector

a powerful GUI tool for analysts to analyze the Android applications.

GitHub 845 Java

HoneyBow

A high-interaction malware collection toolkit

Website

Honeyd

A low-interaction honeypot

Honeystick

A portable honeynet demonstration and incident response tool

Latest Activity

@mlodic
mlodic pushed to intelowlproject/GreedyBear · at October 4, 2025
6 commits to intelowlproject/GreedyBear
301e841 Include mass scanners in advanced API by default. Closes #580 (#581) d7ad7e4 Upgrade Django to 5.2. Closes #502 (#579) edc9d5f Link to admin interface for staff users. Closes #529 (#582)
@mlodic
mlodic opened a pull request in intelowlproject/GreedyBear. · at October 4, 2025
#584 adjusting commit history
70 additions and 33 deletions in 11 changed files.
@buffer
buffer pushed to buffer/thug · at October 3, 2025
2 commits to buffer/thug
5fa8574 Update requirements: Bump pymongo from 4.15.1 to 4.15.2 4ca0ce5 Merge pull request #426 from buffer/dependabot/pip/pymongo-4.15.2
@fgibertoni
fgibertoni pushed to intelowlproject/IntelOwl · at October 2, 2025
1 commit to intelowlproject/IntelOwl
2da6268 Bump openjdk-21 in Malware Tools Analyzers Dockerfile (#3025)
@fgibertoni
fgibertoni opened a pull request in intelowlproject/IntelOwl. · at October 2, 2025
#3025 Bump openjdk-21 in Malware Tools Analyzers Dockerfile
1 additions and 1 deletions in 1 changed files.
@Noble-47
Noble-47 opened a pull request in certego/BuffaLogs. · at October 2, 2025
#448 Added Pagination to Alerts API using `limit` and `offset` as optional…
394 additions and 158 deletions in 6 changed files.
@Prinzhorn
Prinzhorn opened a pull request in mitmproxy/mitmproxy. · at October 1, 2025
#7894 Update docs for `dns_name_servers`
1 additions and 1 deletions in 1 changed files.
@tklengyel
tklengyel pushed to tklengyel/drakvuf · at October 1, 2025
1 commit to tklengyel/drakvuf
ba5302f Bump Xen to 4.20.1 (#1853)
@Lorygold
Lorygold pushed to certego/BuffaLogs · at September 29, 2025
1 commit to certego/BuffaLogs
bd6345f Refactor/test: centeralize load ingestion func (#447)
@tklengyel
tklengyel opened a pull request in tklengyel/drakvuf. · at September 29, 2025
#1853 Bump Xen to 4.20.1
1 additions and 1 deletions in 1 changed files.
@buffer
buffer pushed to buffer/thug · at September 29, 2025
1 commit to buffer/thug
b426e4e Update requirements
@t3chn0m4g3
t3chn0m4g3 pushed to telekom-security/tpotce · at September 23, 2025
1 commit to telekom-security/tpotce
b5a1c0b Add support for Red Hat Enterprise Linux - Thank you @plygrnd
@plygrnd
plygrnd opened a pull request in telekom-security/tpotce. · at September 22, 2025
#1843 feat(os): enable RHEL support
214 additions and 92 deletions in 5 changed files.