Projects

This page contains a list of tools and services that we use on a regular basis. Most of these tools have been created by our members and GSoC students, but some are also external and not affiliated with the Honeynet Project. If you see that a specific tool is not listed, but should, feel free to email [email protected]. Projects are sorted by last commit date.

Active Projects

Intel Owl

IntelOwl: manage your Threat Intelligence at scale

Website GitHub 4114 Python AGPL-3.0
cyber-security cyber-threat-intelligence cybersecurity dfir enrichment hacktoberfest honeynet incident-response intel-owl ioc malware-analysis malware-analyzer osint osint-python python

thug

Python low-interaction honeyclient

GitHub 1010 Python GPL-2.0
client-honeypot honeyclient low-interaction python security-tools shellcode virustotal

GreedyBear

Threat Intel Platform for T-POTs

GitHub 147 Python MIT
cyber-threat-intelligence cybersecurity hacktoberfest honeypot ioc open-source python threat-intelligence threatintel tpot

mitmproxy

An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.

Website GitHub 38.9k Python MIT
debugging http http2 man-in-the-middle mitmproxy proxy python security ssl tls websocket

BuffaLogs

an Open Source Django App whose main purpose is to detect login anomalies

GitHub 45 Python

DRAKVUF

Black-box Binary Analysis

Website GitHub 1117 C++
introspection malware-analysis virtualization xen

ochi

Website GitHub 30 Go GPL-3.0
honeypot visualization

T-Pot

The All In One Multi Honeypot Platform 🐝

GitHub 7777 C GPL-3.0
deception docker elk honeypot network-security security t-pot

PcapMonkey

will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.

GitHub 153 Zeek

Glutton

Generic Low Interaction Honeypot

GitHub 276 Go MIT
hacktoberfest honeypot

Conpot

ICS/SCADA honeypot

GitHub 1322 Python GPL-2.0
hacktoberfest honeypot ics python scada security

honeyscanner

A vulnerability analyzer for honeypots

Website GitHub 38 Python MIT
cybersecurity cybersecurity-assessments dos-attack exploitation fuzzing honeypots passive-vulnerability-scanner ssh-honeypot vulnerability-scanner

TANNER

He who flays the hide

GitHub 226 Python GPL-3.0
honeypot security

DroidBot

A lightweight test input generator for Android. Similar to Monkey, but with more intelligence and cool features!

GitHub 864 Python MIT

dionaea

Home of the dionaea honeypot

Website GitHub 740 Python GPL-2.0
dionaea honeypot security

Glastopf

Web Application Honeypot

Website GitHub 574 Python

SNARE

Super Next generation Advanced Reactive honEypot

Website GitHub 462 Python GPL-3.0
hacktoberfest honeypot security

Old Projects

WhisperPot

VoIP honeypot system

GitHub 19 Python MIT
honeypot voip

RIoTPot

the IoT and OT (Operational Technology) Honeypot

GitHub 23 Go MIT

Kippo

SSH Honeypot

GitHub 1677 Python

Droidbox

Dynamic analysis of Android apps

GitHub 773 Python

cuckoo

Sandbox is an automated dynamic malware analysis system

Website GitHub 5670 JavaScript

dockpot

GitHub 52 Python

Google Hack Honeypot

Google Hack Honeypot

GitHub 7 PHP GPL-2.0
honeypot security

Honeytrap

a low-interaction honeypot

GitHub 94 C GPL-2.0

GVol

GitHub 20 Java MIT

Capture-HPC

A high interaction client honeypot

GitHub 31 C

Capture BAT

a behavioral analysis tool of applications for the Win32 operating system family.

GitHub 32 C++ GPL-2.0

honeysnap

GitHub 13 Python

honeyc

GitHub 8 Ruby

HFlow2

GitHub 5 C++ GPL-2.0

APKinspector

a powerful GUI tool for analysts to analyze the Android applications.

GitHub 840 Java

HoneyBow

A high-interaction malware collection toolkit

Website

Honeyd

A low-interaction honeypot

Honeystick

A portable honeynet demonstration and incident response tool

Latest Activity

@fgibertoni
fgibertoni pushed to intelowlproject/IntelOwl · at April 30, 2025
1 commit to intelowlproject/IntelOwl
0462023 Abuse.ch mandatory apy key (Closes #2840) (#2850)
@mhils
mhils pushed to mitmproxy/mitmproxy · at April 29, 2025
2 commits to mitmproxy/mitmproxy
aab2e6a mitmproxy 12.0.0 59eae83 reopen main for development
@github-actions
github-actions published mitmproxy v12.0.0. 🎉 · at April 29, 2025
@mlodic
mlodic opened a pull request in intelowlproject/GreedyBear. · at April 29, 2025
#508 1.6.1
333 additions and 107 deletions in 27 changed files.
@mlodic
mlodic pushed to intelowlproject/GreedyBear · at April 29, 2025
1 commit to intelowlproject/GreedyBear
02354b9 bump alpine to 3.21 and python to 3.13 (#498)
@mlodic
mlodic opened a pull request in intelowlproject/IntelOwl. · at April 29, 2025
#2849 v6.4.0
9534 additions and 3304 deletions in 362 changed files.
@rskbansal
rskbansal opened a pull request in certego/BuffaLogs. · at April 28, 2025
#274 Added support for custom dates in `impossible_travel` command
28 additions and 32 deletions in 2 changed files.
@Lorygold
Lorygold pushed to certego/BuffaLogs · at April 28, 2025
2 commits to certego/BuffaLogs
6ab38a0 Merge pull request #250 from certego/develop 695069b Merge branch 'main' into develop
@buffer
buffer pushed to buffer/thug · at April 27, 2025
1 commit to buffer/thug
eaa1505 Minor change
@buffer
buffer pushed to buffer/thug · at April 26, 2025
1 commit to buffer/thug
58b8e8e Enable pytest verbose mode
@tklengyel
tklengyel pushed to tklengyel/drakvuf · at April 19, 2025
1 commit to tklengyel/drakvuf
f46a733 win_get_object_type_index fix - it returned false for Windows version != 10 even …
@glaslos
glaslos pushed to honeynet/ochi · at April 17, 2025
1 commit to honeynet/ochi
0b9e962 Bump golang.org/x/net from 0.37.0 to 0.38.0 (#117)
@grzetzp
grzetzp opened a pull request in tklengyel/drakvuf. · at April 15, 2025
#1830 win_get_object_type_index fix
0 additions and 4 deletions in 1 changed files.