This is a non-IMPACT record, meaning that access to the data is not
controlled by IMPACT. For access, see the directions below.
Disclaimer:
This Resource is offered and provided outside of the IMPACT mediation framework. IMPACT and the IMPACT Coordination Council/Blackfire Technology, Inc. expressly disclaim all conditions, representations and warranties including but not limited to Resource availability, quality, accuracy, non-infringement, and non-interference. All Resource information and access is controlled by entities and under terms that are external to the IMPACT legal framework.
Disclaimer:
This Resource is offered and provided outside of the IMPACT mediation framework. IMPACT and the IMPACT Coordination Council/Blackfire Technology, Inc. expressly disclaim all conditions, representations and warranties including but not limited to Resource availability, quality, accuracy, non-infringement, and non-interference. All Resource information and access is controlled by entities and under terms that are external to the IMPACT legal framework.
Summary
DS-1359
Honeytrap Opensource System
External Tool
External Data Source
GitHub
Unknown
Unknown
56 (lowest rank is 56)
Description
Honeytrap is an extensible and opensource system for running, monitoring and managing honeypots.
Features of HoneyTrap:
Combine multiple services to one honeypot, eg a LAMP server
Honeytrap Agent will download the configuration from the Honeytrap Server
Use the Honeytrap Agent to redirect traffic out of the network to a seperate network
Deploy a large amount agents while having one Honeytrap Server, configuration will be downloaded automatically and logging centralized
Payload detection to determine which service should handle the request, one port can handle multiple protocols
Monitor lateral movement within your network with the Sensor listener. The sensor will complete the handshake (in case of tcp), and store the payload
Create high interaction honeypots using the LXC or remote hosts directors, traffic will be man-in-the-middle proxied, while information will be extracted
Extend honeytrap with existing honeypots (like cowrie or glutton), while using the logging and listening framework of Honeytrap
Advanced logging system with filtering and logging to Elasticsearch, Kafka, Splunk, Raven, File or Console
Services are easily extensible and will extract as much information as possible
Low- to high interaction Honeypots, where connections will be upgraded seamless to high interaction
Additional Details
35.5MB
false
Unknown
honeytrap, system, opensource, honeytrap opensource system, 1359, inferlink, external, corporation, external data source, inferlink corporation, source, honeypots, extensible, monitoring, managing, running, logging, server, interaction, network, configuration, multiple, handle, sensor, services, payload, agent, traffic, store, extracted, monitor, lamp, lateral, deploy, raven, determine, middle, detection, amount, console, existing, proxied, movement, complete, splunk, advanced, seperate, listener, service, framework, features, honeypot, agents, remote, listening, cowrie, easily, glutton, protocols, kafka, port, extract, filtering, connections, extend, downloaded, combine, seamless, create, request, tcp, redirect, handshake, lxc, file, centralized, download, upgraded, directors, automatically, elasticsearch, other, hosts