![honeypot logo honeypot logo](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhrUVnK5ckDMkuVIbcWb8PF91rmwlb202CsV5COPsOlOiB9OW8Kf3estPjnnsJ6541JweeCI7JeDX-vx7oaPW0hMvub34spaMUEdGh-MXyBI-z7LolJEQMxbiOP3YbNt9dKiStrduzDLTvT/s200/honeypot_icon.jpg)
Kippo is a medium interaction SSH honeypot designed to log brute force attacks and, most importantly, the entire shell interaction performed by the attacker.
Features
Some interesting features:
- Fake filesystem with the ability to add/remove files. A full fake filesystem resembling a Debian 5.0 installation is included
- Possibility of adding fake file contents so the attacker can 'cat' files such as /etc/passwd. Only minimal file contents are included
- Session logs stored in an UML compatible format for easy replay with original timings
- Just like Kojoney, Kippo saves files downloaded with wget for later inspection
- Trickery; ssh pretends to connect somewhere, exit doesn't really exit, etc
Download Here :: Kippo v0.8.tar.gz
Source :: http://code.google.com/p/kippo/
0 comments :
Post a Comment