Projects

This page contains a list of tools and services that we use on a regular basis. Most of these tools have been created by our members and GSoC students, but some are also external and not affiliated with the Honeynet Project. If you see that a specific tool is not listed, but should, feel free to email [email protected]. Projects are sorted by last commit date.

Active Projects

GreedyBear

Threat Intel Platform for T-POTs

GitHub 140 Python MIT

cyber-threat-intelligence cybersecurity hacktoberfest honeypot ioc open-source python threat-intelligence threatintel tpot

Intel Owl

IntelOwl: manage your Threat Intelligence at scale

Website GitHub 4007 Python AGPL-3.0

cyber-security cyber-threat-intelligence cybersecurity dfir enrichment hacktoberfest honeynet incident-response intel-owl ioc malware-analysis malware-analyzer osint osint-python python

Glutton

Generic Low Interaction Honeypot

GitHub 261 Go MIT

hacktoberfest honeypot

mitmproxy

An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.

Website GitHub 37.8k Python MIT

debugging http http2 man-in-the-middle mitmproxy proxy python security ssl tls websocket

thug

Python low-interaction honeyclient

GitHub 1005 Python GPL-2.0

client-honeypot honeyclient low-interaction python security-tools shellcode virustotal

BuffaLogs

an Open Source Django App whose main purpose is to detect login anomalies

GitHub 28 Python Apache-2.0

T-Pot

The All In One Multi Honeypot Platform 🐝

GitHub 7283 C GPL-3.0

deception docker elk honeypot network-security security t-pot

Conpot

ICS/SCADA honeypot

GitHub 1282 Python GPL-2.0

hacktoberfest honeypot ics python scada security

DRAKVUF

Black-box Binary Analysis

Website GitHub 1088 C++

introspection malware-analysis virtualization xen

ochi

Website GitHub 28 Go GPL-3.0

honeypot visualization

honeyscanner

A vulnerability analyzer for honeypots

Website GitHub 34 Python MIT

cybersecurity cybersecurity-assessments dos-attack exploitation fuzzing honeypots passive-vulnerability-scanner ssh-honeypot vulnerability-scanner

TANNER

He who flays the hide

GitHub 222 Python GPL-3.0

honeypot security

DroidBot

A lightweight test input generator for Android. Similar to Monkey, but with more intelligence and cool features!

GitHub 833 Python MIT

dionaea

Home of the dionaea honeypot

Website GitHub 727 Python GPL-2.0

dionaea honeypot security

Glastopf

Web Application Honeypot

Website GitHub 569 Python

SNARE

Super Next generation Advanced Reactive honEypot

Website GitHub 455 Python GPL-3.0

hacktoberfest honeypot security

WhisperPot

VoIP honeypot system

GitHub 17 Python MIT

honeypot voip

RIoTPot

the IoT and OT (Operational Technology) Honeypot

GitHub 22 Go MIT

PcapMonkey

will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.

GitHub 150 Zeek

Old Projects

Kippo

SSH Honeypot

GitHub 1644 Python

Droidbox

Dynamic analysis of Android apps

GitHub 763 Python

cuckoo

Sandbox is an automated dynamic malware analysis system

Website GitHub 5608 JavaScript

dockpot

GitHub 52 Python

Google Hack Honeypot

GitHub 6 PHP GPL-2.0

honeypot security

Honeytrap

a low-interaction honeypot

GitHub 94 C GPL-2.0

GVol

GitHub 20 Java MIT

Capture-HPC

A high interaction client honeypot

GitHub 31 C

Capture BAT

a behavioral analysis tool of applications for the Win32 operating system family.

GitHub 32 C++ GPL-2.0

honeysnap

GitHub 13 Python

honeyc

GitHub 8 Ruby

HFlow2

GitHub 4 C++ GPL-2.0

APKinspector

a powerful GUI tool for analysts to analyze the Android applications.

GitHub 835 Java

HoneyBow

A high-interaction malware collection toolkit

Website

Honeyd

A low-interaction honeypot

Honeystick

A portable honeynet demonstration and incident response tool

Latest Activity

mlodic pushed to intelowlproject/GreedyBear · at February 10, 2025

2 commits to intelowlproject/GreedyBear

57f078d removed limit_req_zone d2b7be1 removed limit_req_zone

github-actions published GreedyBear 1.4.1. 🎉 · at February 10, 2025

mlodic opened a pull request in intelowlproject/IntelOwl. · at February 10, 2025

#2722 remove drf_spectacular and not used add_docs

10 additions and 203 deletions in 5 changed files.

drosetti pushed to intelowlproject/IntelOwl · at February 10, 2025

1 commit to intelowlproject/IntelOwl

0630004 Improvement advanced search (#2721)

glaslos pushed to mushorg/glutton · at February 9, 2025

1 commit to mushorg/glutton

a285aea simplify id file creation logic

glaslos pushed to mushorg/glutton · at February 9, 2025

1 commit to mushorg/glutton

19c4227 stick with eth0

mhils pushed to mitmproxy/mitmproxy · at February 9, 2025

1 commit to mitmproxy/mitmproxy

3915c5a Revise Proxy Mode Docs (#7545)

mhils opened a pull request in mitmproxy/mitmproxy. · at February 8, 2025

#7545 Revise Proxy Mode Docs

169 additions and 152 deletions in 6 changed files.

Lorygold pushed to certego/BuffaLogs · at February 5, 2025

1 commit to certego/BuffaLogs

2c65c0b Refactored update_risk_level() function, in order that the new risk_score is …

buffer pushed to buffer/thug · at February 5, 2025

2 commits to buffer/thug

525d210 Update requirements: Bump pymongo from 4.10.1 to 4.11 e949b12 Merge pull request #390 from buffer/dependabot/pip/pymongo-4.11

kunalsz opened a pull request in honeynet/honeyscanner. · at February 4, 2025

#48 Feature : Added argument to choose the attack

209 additions and 9 deletions in 5 changed files.

kunalsz opened a pull request in honeynet/honeyscanner. · at February 3, 2025

#46 Fixed : Improved downloading of requirements.txt

32 additions and 71 deletions in 3 changed files.

t3chn0m4g3 pushed to telekom-security/tpotce · at February 3, 2025

1 commit to telekom-security/tpotce

6cda0fe Remove exa / eza and it aliases

Lorygold pushed to certego/BuffaLogs · at January 30, 2025

1 commit to certego/BuffaLogs

36ab4cc Added some debug loggers for Filter logic

buffer published thug v6.11. 🎉 · at January 22, 2025