Projects

nepenthes

Nepenthes is a versatile tool to collect malware. It acts passively by emulating known vulnerabilities and downloading malware trying to exploit these vulnerabilities.

honeyd

Honeyd is a small daemon that creates virtual hosts on a network. The hosts can be configured to run arbitrary services, and their TCP personality can be adapted so that they appear to be running certain versions of operating systems. Honeyd enables a single host to claim multiple addresses on a LAN ... [More] for network simulation. It is possible to ping the virtual machines, or to traceroute them. Any type of service on the virtual machine can be simulated according to a simple configuration file. Instead of simulating a service, it is also possible to proxy it to another machine. [Less]

cpg-dnsbl

This project implement two plugins to Coppermine Gallery, the objetive is block access to the Gallery. Bad-Behavior: Bad Behavior complements other link spam solutions by acting as a gatekeeper, preventing spammers from ever delivering their junk, and in many cases, from ever reading your site in ... [More] the first place. Project Honey Pot: Http:BL is a way for website administrators to take advantage of the data generated by Project Honey Pot and keep malicious or suspicious IPs off their websites. [Less]

wiki-httpbl

Http:BL is a way for website administrators to take advantage of the data generated by Project Honey Pot and keep malicious or suspicious IPs off their websites. The service works by publishing DNS records for IPs we have seen conducting suspicious or malicious behavior online. Website ... [More] administrators can then use this data in order to restrict access to their web servers for these IPs. This extension only implement the API to have in Mediawiki the possibility to block spammer's with data from "Project Honey Pot", you need get a key from "Project Honey Pot" website. [Less]

Labrea Tarpit Portal

This is a graphic way to show results from your labrea tarpit. It provides the ability to sort out based on IP's if you own your own ip space.

Nova Network Anti-reconnaissance System

Nova is a software application for preventing and detecting hostile Network Reconnaissance. It does this by first creating a large array of thin virtual machines on the target network. These VMs are created using an updated Honeyd to be extremely lightweight. They're not your typical VMs that ... [More] you might see from VirtualBox or VMWare. They just appear to be real from the perspective of the network, and run network "services" which are just shell scripts. Second, Nova uses machine learning algorithms to automatically detect and classify attempts at hostile reconnaissance, so there's no need to go searching manually through your honeypot's log files. [Less]

joomla-httpbl

What is http:BL?, Http:BL is a way for website administrators to take advantage of the data generated by Project Honey Pot and keep malicious or suspicious IPs off their websites. The service works by publishing DNS records for IPs we have seen conducting suspicious or malicious behavior online. ... [More] Website administrators can then use this data in order to restrict access to their web servers for these IPs. This extension only implement the API to have in Joomla! the possibility to block spammer's with data from "Project Honey Pot", you need get a key from "Project Honey Pot" website. [Less]

myvnet

What is myvnet?It's a virtual honeypot for GNU/Linux systems, written in Ruby. A C++ version is planned after the architecture is fully stable. DocumentationGo to the myvnet Wiki. DevelopersFilipe David Borba Manana, fdmanana (at) gmail (dot) com Development environmentDebian GNU/Linux ... [More] Ruby 1.8.7 NetBeans IDE 6.1 Getting myvnetMake sure you have the Subversion client installed on your machine. Then run: svn checkout https://myvnet.googlecode.com/svn/tags/myvnet-v0.0.6 myvnet All files (including sources) will then be located in the directory myvnet/ [Less]

http:BL WordPress Plugin

http:BL WordPress Plugin allows you to verify IP addresses of clients connecting to your blog against the Project Honey Pot database. Thanks to http:BL API you can quickly check whether your visitor is an email harvester, a comment spammer or any other malicious creature. Communication with ... [More] verification server is done via DNS request mechanism, which makes the query and response even quicker. Now, thanks to http:BL WordPress Plugin any potentially harmful clients are denied from accessing your blog and therefore abusing it. [Less]

xebek

Xebek is a Xen-based honeypot monitoring system. Xebek exploits the advantage introduced by Xen to make it more stealthy to the intruder. Xen is a modern Virtual Machine monitor developped by Cambridge people and open-source community