This is a non-IMPACT record, meaning that access to the data is not controlled by IMPACT. For access, see the directions below.

Disclaimer:
This Resource is offered and provided outside of the IMPACT mediation framework. IMPACT and the IMPACT Coordination Council/Blackfire Technology, Inc. expressly disclaim all conditions, representations and warranties including but not limited to Resource availability, quality, accuracy, non-infringement, and non-interference. All Resource information and access is controlled by entities and under terms that are external to the IMPACT legal framework.

Summary

DS-1359
Honeytrap Opensource System
External Tool
External Data Source
GitHub
Unknown
Unknown
57 (lowest rank is 57)

Category & Restrictions

Other
cyber defense, honeypots
Unrestricted
true

Description


Honeytrap is an extensible and opensource system for running, monitoring and managing honeypots.

Features of HoneyTrap:

Combine multiple services to one honeypot, eg a LAMP server
Honeytrap Agent will download the configuration from the Honeytrap Server
Use the Honeytrap Agent to redirect traffic out of the network to a seperate network
Deploy a large amount agents while having one Honeytrap Server, configuration will be downloaded automatically and logging centralized
Payload detection to determine which service should handle the request, one port can handle multiple protocols
Monitor lateral movement within your network with the Sensor listener. The sensor will complete the handshake (in case of tcp), and store the payload
Create high interaction honeypots using the LXC or remote hosts directors, traffic will be man-in-the-middle proxied, while information will be extracted
Extend honeytrap with existing honeypots (like cowrie or glutton), while using the logging and listening framework of Honeytrap
Advanced logging system with filtering and logging to Elasticsearch, Kafka, Splunk, Raven, File or Console
Services are easily extensible and will extract as much information as possible
Low- to high interaction Honeypots, where connections will be upgraded seamless to high interaction

Additional Details

35.5MB
false
Unknown
honeytrap, system, opensource, honeytrap opensource system, 1359, inferlink, external, corporation, external data source, inferlink corporation, source, honeypots, extensible, monitoring, managing, running, logging, server, interaction, network, configuration, multiple, handle, sensor, services, payload, agent, traffic, store, extracted, monitor, lamp, lateral, deploy, raven, determine, middle, detection, amount, console, existing, proxied, movement, complete, splunk, advanced, seperate, listener, service, framework, features, honeypot, agents, remote, listening, cowrie, easily, glutton, protocols, kafka, port, extract, filtering, connections, extend, downloaded, combine, seamless, create, request, tcp, redirect, handshake, lxc, file, centralized, download, upgraded, directors, automatically, elasticsearch, other, hosts