Projects

This page contains a list of tools and services that we use on a regular basis. Most of these tools have been created by our members and GSoC students, but some are also external and not affiliated with the Honeynet Project. If you see that a specific tool is not listed, but should, feel free to email [email protected]. Projects are sorted by last commit date.

Active Projects

thug

Python low-interaction honeyclient

GitHub 1025 Python GPL-2.0

client-honeypot honeyclient low-interaction python security-tools shellcode virustotal

Intel Owl

IntelOwl: manage your Threat Intelligence at scale

Website GitHub 4560 Python AGPL-3.0

cyber-security cyber-threat-intelligence cybersecurity dfir enrichment hacktoberfest honeynet incident-response intel-owl ioc malware-analysis malware-analyzer osint osint-python python

GreedyBear

Threat Intel Platform for T-POTs

Website GitHub 198 Python MIT

cyber-threat-intelligence cybersecurity hacktoberfest honeypot ioc open-source python threat-intelligence threatintel tpot

mitmproxy

An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.

Website GitHub 43.3k Python MIT

debugging http http2 man-in-the-middle mitmproxy proxy python security ssl tls websocket

ochi

Website GitHub 36 Go GPL-3.0

honeypot visualization

Glutton

Generic Low Interaction Honeypot

GitHub 300 Go MIT

hacktoberfest honeypot

Conpot

ICS/SCADA honeypot

GitHub 1466 Python GPL-2.0

hacktoberfest honeypot ics python scada security

BuffaLogs

an Open Source Django App whose main purpose is to detect login anomalies

GitHub 62 Python

PcapMonkey

will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.

GitHub 166 Zeek

T-Pot

The All In One Multi Honeypot Platform 🐝

GitHub 9118 C GPL-3.0

deception docker elk honeypot network-security security t-pot

DRAKVUF

Black-box Binary Analysis

Website GitHub 1232 C++

introspection malware-analysis virtualization xen

honeyscanner

A vulnerability analyzer for honeypots

Website GitHub 63 Python MIT

cybersecurity cybersecurity-assessments dos-attack exploitation fuzzing honeypots passive-vulnerability-scanner ssh-honeypot vulnerability-scanner

Old Projects

TANNER

He who flays the hide

GitHub 231 Python GPL-3.0

honeypot security

DroidBot

A lightweight test input generator for Android. Similar to Monkey, but with more intelligence and cool features!

GitHub 956 Python MIT

dionaea

Home of the dionaea honeypot

Website GitHub 801 Python GPL-2.0

dionaea honeypot security

Glastopf

Web Application Honeypot

Website GitHub 599 Python

SNARE

Super Next generation Advanced Reactive honEypot

Website GitHub 479 Python GPL-3.0

hacktoberfest honeypot security

WhisperPot

VoIP honeypot system

GitHub 22 Python MIT

honeypot voip

RIoTPot

the IoT and OT (Operational Technology) Honeypot

GitHub 30 Go MIT

Kippo

SSH Honeypot

GitHub 1711 Python

Droidbox

Dynamic analysis of Android apps

GitHub 797 Python

cuckoo

Sandbox is an automated dynamic malware analysis system

Website GitHub 5957 JavaScript

dockpot

GitHub 52 Python

Google Hack Honeypot

GitHub 7 PHP GPL-2.0

honeypot security

Honeytrap

a low-interaction honeypot

GitHub 96 C GPL-2.0

GVol

GitHub 20 Java MIT

Capture-HPC

A high interaction client honeypot

GitHub 31 C

Capture BAT

a behavioral analysis tool of applications for the Win32 operating system family.

GitHub 32 C++ GPL-2.0

honeysnap

GitHub 13 Python

honeyc

GitHub 8 Ruby

HFlow2

GitHub 5 C++ GPL-2.0

APKinspector

a powerful GUI tool for analysts to analyze the Android applications.

GitHub 854 Java

HoneyBow

A high-interaction malware collection toolkit

Website

Honeyd

A low-interaction honeypot

Honeystick

A portable honeynet demonstration and incident response tool

Latest Activity

georgeglarson opened a pull request in mitmproxy/mitmproxy. · at April 29, 2026

#8199 fix(flow): kill() wakes wait_for_resume so proxy teardown closes the client connection

23 additions and 0 deletions in 3 changed files.

buffer pushed to buffer/thug · at April 29, 2026

2 commits to buffer/thug

0b88a9d Update requirements: Bump zope-interface from 8.3 to 8.4 ab7c0b7 Merge pull request #454 from …

buffer pushed to buffer/thug · at April 29, 2026

2 commits to buffer/thug

166f461 Update requirements: Bump cssutils from 2.14.0 to 2.15.0 7837af1 Merge pull request #453 from …

RamboV opened a pull request in intelowlproject/IntelOwl. · at April 29, 2026

#3678 Ipqs new features

829 additions and 36 deletions in 9 changed files.

MotherFraggr opened a pull request in mushorg/conpot. · at April 28, 2026

#613 Implemented fix proposed by Kevalz95, Issue #564, in modbus_server.py

11 additions and 0 deletions in 1 changed files.

mhils pushed to mitmproxy/mitmproxy · at April 28, 2026

1 commit to mitmproxy/mitmproxy

ab470e5 Fix IP blocking and merge additional DoH blocklists (#8197)

glaslos pushed to honeynet/ochi · at April 27, 2026

1 commit to honeynet/ochi

aa0146d Bump go.opentelemetry.io/otel from 1.39.0 to 1.41.0 (#134)

github-actions opened a pull request in intelowlproject/IntelOwl. · at April 27, 2026

#3667 Update pycti from 6.8.8 to 7.260423.0

2 additions and 2 deletions in 2 changed files.

furusiyya pushed to mushorg/glutton · at April 26, 2026

14 commits to mushorg/glutton

c9c7764 feat: introduces Spicy runtime bridge and initial Spicy-HTTP … d9a6e3b feat: adds basic and relevant function documentation for … 722a49e chore: hardens Spicy bridge - OOM-safe growth, parse …

furusiyya pushed to mushorg/glutton · at April 26, 2026

1 commit to mushorg/glutton

20d95ae refactor: improve naming, logging, and connection handling