Projects

This page contains a list of tools and services that we use on a regular basis. Most of these tools have been created by our members and GSoC students, but some are also external and not affiliated with the Honeynet Project. If you see that a specific tool is not listed, but should, feel free to email [email protected]. Projects are sorted by last commit date.

Active Projects

ochi

Website GitHub 36 Go GPL-3.0
honeypot visualization

GreedyBear

Threat Intel Platform for T-POTs

GitHub 188 Python MIT
cyber-threat-intelligence cybersecurity hacktoberfest honeypot ioc open-source python threat-intelligence threatintel tpot

Intel Owl

IntelOwl: manage your Threat Intelligence at scale

Website GitHub 4505 Python AGPL-3.0
cyber-security cyber-threat-intelligence cybersecurity dfir enrichment hacktoberfest honeynet incident-response intel-owl ioc malware-analysis malware-analyzer osint osint-python python

mitmproxy

An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.

Website GitHub 42.7k Python MIT
debugging http http2 man-in-the-middle mitmproxy proxy python security ssl tls websocket

thug

Python low-interaction honeyclient

GitHub 1021 Python GPL-2.0
client-honeypot honeyclient low-interaction python security-tools shellcode virustotal

T-Pot

The All In One Multi Honeypot Platform ๐Ÿ

GitHub 8856 C GPL-3.0
deception docker elk honeypot network-security security t-pot

DRAKVUF

Black-box Binary Analysis

Website GitHub 1212 C++
introspection malware-analysis virtualization xen

BuffaLogs

an Open Source Django App whose main purpose is to detect login anomalies

GitHub 64 Python

honeyscanner

A vulnerability analyzer for honeypots

Website GitHub 62 Python MIT
cybersecurity cybersecurity-assessments dos-attack exploitation fuzzing honeypots passive-vulnerability-scanner ssh-honeypot vulnerability-scanner

Glutton

Generic Low Interaction Honeypot

GitHub 298 Go MIT
hacktoberfest honeypot

PcapMonkey

will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.

GitHub 165 Zeek

Old Projects

Conpot

ICS/SCADA honeypot

GitHub 1438 Python GPL-2.0
hacktoberfest honeypot ics python scada security

TANNER

He who flays the hide

GitHub 231 Python GPL-3.0
honeypot security

DroidBot

A lightweight test input generator for Android. Similar to Monkey, but with more intelligence and cool features!

GitHub 944 Python MIT

dionaea

Home of the dionaea honeypot

Website GitHub 790 Python GPL-2.0
dionaea honeypot security

Glastopf

Web Application Honeypot

Website GitHub 597 Python

SNARE

Super Next generation Advanced Reactive honEypot

Website GitHub 478 Python GPL-3.0
hacktoberfest honeypot security

WhisperPot

VoIP honeypot system

GitHub 22 Python MIT
honeypot voip

RIoTPot

the IoT and OT (Operational Technology) Honeypot

GitHub 30 Go MIT

Kippo

SSH Honeypot

GitHub 1712 Python

Droidbox

Dynamic analysis of Android apps

GitHub 797 Python

cuckoo

Sandbox is an automated dynamic malware analysis system

Website GitHub 5927 JavaScript

dockpot

GitHub 52 Python

Google Hack Honeypot

Google Hack Honeypot

GitHub 7 PHP GPL-2.0
honeypot security

Honeytrap

a low-interaction honeypot

GitHub 95 C GPL-2.0

GVol

GitHub 20 Java MIT

Capture-HPC

A high interaction client honeypot

GitHub 31 C

Capture BAT

a behavioral analysis tool of applications for the Win32 operating system family.

GitHub 32 C++ GPL-2.0

honeysnap

GitHub 13 Python

honeyc

GitHub 8 Ruby

HFlow2

GitHub 5 C++ GPL-2.0

APKinspector

a powerful GUI tool for analysts to analyze the Android applications.

GitHub 853 Java

HoneyBow

A high-interaction malware collection toolkit

Website

Honeyd

A low-interaction honeypot

Honeystick

A portable honeynet demonstration and incident response tool

Latest Activity

@regulartim
regulartim pushed to intelowlproject/GreedyBear ยท at March 18, 2026
17 commits to intelowlproject/GreedyBear
870ff77 feat: allow querying CowrieSession API by password. Closes โ€ฆ 97ac79a feat(pipeline/api): replace IOC.asn with AutonomousSystem โ€ฆ 489f070 perf: bulk-prefetch extraction data. Closes #1008 (#1020)
@regulartim
regulartim pushed to intelowlproject/GreedyBear ยท at March 18, 2026
1 commit to intelowlproject/GreedyBear
7e29ceb enh: Log feature importances after Random Forest training. โ€ฆ
@carellamartina
carellamartina opened a pull request in intelowlproject/IntelOwl. ยท at March 18, 2026
#3496 Frontend - Added user existing evaluations to the UserEventModal
1662 additions and 1247 deletions in 12 changed files.
@carellamartina
carellamartina pushed to intelowlproject/IntelOwl ยท at March 18, 2026
1 commit to intelowlproject/IntelOwl
a3406a6 changes
@mhils
mhils pushed to mitmproxy/mitmproxy ยท at March 18, 2026
1 commit to mitmproxy/mitmproxy
b5d1444 cleanup: removed unused functions/classes and scripts โ€ฆ
@duriantaco
duriantaco opened a pull request in mitmproxy/mitmproxy. ยท at March 17, 2026
#8136 cleanup: removed unused functions/classes and scripts
2 additions and 44 deletions in 8 changed files.
@t3chn0m4g3
t3chn0m4g3 pushed to telekom-security/tpotce ยท at March 14, 2026
1 commit to telekom-security/tpotce
e7b42bd Fix conditional check in uninstall.sh using assignment โ€ฆ
@am-periphery
am-periphery opened a pull request in telekom-security/tpotce. ยท at March 14, 2026
#1872 Fix conditional check in uninstall.sh using assignment
1 additions and 1 deletions in 1 changed files.
@psolvx
psolvx opened a pull request in tklengyel/drakvuf. ยท at March 12, 2026
#1868 improve memdump dotnet
167 additions and 41 deletions in 15 changed files.
@buffer
buffer pushed to buffer/thug ยท at March 7, 2026
1 commit to buffer/thug
5281622 Minor change
@tklengyel
tklengyel pushed to tklengyel/drakvuf ยท at March 5, 2026
1 commit to tklengyel/drakvuf
cb62139 Update etwmon to support Windows 11 (#1867)
@buffer
buffer pushed to buffer/thug ยท at March 4, 2026
1 commit to buffer/thug
df6e0b0 Minor change
@lucaCigarini
lucaCigarini pushed to certego/BuffaLogs ยท at February 25, 2026
1 commit to certego/BuffaLogs
65ae3c3 fix: setup_config accepts multiple values for list fields โ€ฆ