├── .gitignore
├── doc
    └── HoneyBow：一个基于高交互式蜜罐技术的恶意代码自动捕获器.pdf
├── .gitmodules
└── README.md


/.gitignore:
--------------------------------------------------------------------------------
1 | /py2venv/
2 | /venv/
3 | 


--------------------------------------------------------------------------------
/doc/HoneyBow：一个基于高交互式蜜罐技术的恶意代码自动捕获器.pdf:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/qboy0000/honeypotcollection/HEAD/doc/HoneyBow：一个基于高交互式蜜罐技术的恶意代码自动捕获器.pdf


--------------------------------------------------------------------------------
/.gitmodules:
--------------------------------------------------------------------------------
 1 | [submodule "dionaea"]
 2 | 	path = dionaea
 3 | 	url = https://github.com/DinoTools/dionaea.git
 4 | [submodule "cowrie"]
 5 | 	path = cowrie
 6 | 	url = https://github.com/cowrie/cowrie.git
 7 | [submodule "p0f"]
 8 | 	path = p0f
 9 | 	url = https://github.com/p0f/p0f.git
10 | [submodule "conpot"]
11 | 	path = conpot
12 | 	url = https://github.com/mushorg/conpot.git
13 | [submodule "snare_tanner/phpox"]
14 | 	path = snare_tanner/phpox
15 | 	url = https://github.com/mushorg/phpox.git
16 | [submodule "snare_tanner/snare"]
17 | 	path = snare_tanner/snare
18 | 	url = https://github.com/mushorg/snare.git
19 | [submodule "snare_tanner/tanner"]
20 | 	path = snare_tanner/tanner
21 | 	url = https://github.com/mushorg/tanner.git
22 | [submodule "platform/mhn"]
23 | 	path = platform/mhn
24 | 	url = https://github.com/threatstream/mhn.git
25 | [submodule "opencanary"]
26 | 	path = opencanary
27 | 	url = https://github.com/thinkst/opencanary.git
28 | [submodule "beeswarm"]
29 | 	path = beeswarm
30 | 	url = https://github.com/honeynet/beeswarm.git
31 | [submodule "platform/spiderfoot"]
32 | 	path = platform/spiderfoot
33 | 	url = https://github.com/smicallef/spiderfoot.git
34 | [submodule "HoneyPy"]
35 | 	path = HoneyPy
36 | 	url = https://github.com/foospidy/HoneyPy.git
37 | [submodule "drupot"]
38 | 	path = drupot
39 | 	url = https://github.com/d1str0/drupot.git
40 | [submodule "Honeyd"]
41 | 	path = Honeyd
42 | 	url = https://github.com/DataSoft/Honeyd
43 | [submodule "miniprint"]
44 | 	path = miniprint
45 | 	url = https://github.com/sa7mon/miniprint.git
46 | [submodule "artillery"]
47 | 	path = artillery
48 | 	url = https://github.com/BinaryDefense/artillery.git
49 | [submodule "rdpy"]
50 | 	path = rdpy
51 | 	url = https://github.com/citronneur/rdpy.git
52 | [submodule "MongoDB-HoneyProxyPy"]
53 | 	path = MongoDB-HoneyProxyPy
54 | 	url = ../MongoDB-HoneyProxyPy.git
55 | [submodule "ciscoasa_honeypot"]
56 | 	path = ciscoasa_honeypot
57 | 	url = https://github.com/Cymmetria/ciscoasa_honeypot.git
58 | [submodule "mailoney"]
59 | 	path = mailoney
60 | 	url = https://github.com/awhitehatter/mailoney.git
61 | [submodule "honeything"]
62 | 	path = honeything
63 | 	url = https://github.com/omererdem/honeything.git
64 | [submodule "ADBHoney"]
65 | 	path = ADBHoney
66 | 	url = https://github.com/huuck/ADBHoney.git
67 | [submodule "platform/CHN-Server"]
68 | 	path = platform/CHN-Server
69 | 	url = https://github.com/CommunityHoneyNetwork/CHN-Server.git
70 | [submodule "platform/tpot"]
71 | 	path = platform/tpot
72 | 	url = https://github.com/EpistasisLab/tpot.git
73 | [submodule "elasticpot"]
74 | 	path = elasticpot
75 | 	url = https://gitlab.com/bontchev/elasticpot.git
76 | [submodule "sticky_elephant"]
77 | 	path = sticky_elephant
78 | 	url = https://github.com/betheroot/sticky_elephant.git
79 | [submodule "phpmyadmin_honeypot"]
80 | 	path = phpmyadmin_honeypot
81 | 	url = https://github.com/gfoss/phpmyadmin_honeypot
82 | [submodule "MysqlHoneypot"]
83 | 	path = MysqlHoneypot
84 | 	url = https://github.com/qigpig/MysqlHoneypot.git
85 | [submodule "HoneySMB"]
86 | 	path = HoneySMB
87 | 	url = https://gitee.com/qboy0000/HoneySMB.git
88 | [submodule "honeypot-ftp"]
89 | 	path = honeypot-ftp
90 | 	url = https://github.com/alexbredo/honeypot-ftp.git
91 | [submodule "RedisHoneyPot"]
92 | 	path = RedisHoneyPot
93 | 	url = https://github.com/cypwnpwnsocute/RedisHoneyPot.git
94 | 


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
 1 | 感谢[paralax/awesome-honeypots](https://github.com/paralax/awesome-honeypots.git) 提供了一个优秀的蜜罐列表，在工作中需要把每个需要用到的开源蜜罐下载下来，比较麻烦，因此创建此库是为了把所有相关的蜜罐都一次性下载下来并希望可以追踪其版本的变化。
 2 | [更多优秀的列表请参阅](https://github.com/sindresorhus/awesome.git)
 3 | 
 4 | 批量更新子模块脚本
 5 | ```
 6 | git submodule foreach git pull
 7 | ```
 8 | # 主要收集github上开源的蜜罐形成一个大集合
 9 | 
10 | 1. [dionaea](https://github.com/DinoTools/dionaea.git)
11 | 2. [cowire](https://github.com/cowrie/cowrie.git)已取代[kippo](https://github.com/desaster/kippo.git)
12 | 3. [p0f](https://github.com/p0f/p0f.git)
13 | 4. [conpot](https://github.com/mushorg/conpot.git)
14 | 5. snare/tanner
15 | > [Glastopf](https://github.com/mushorg/glastopf)替代者
16 | 	1. [phpox](https://github.com/mushorg/phpox.git)
17 | 	2. [snare](https://github.com/mushorg/snare.git)
18 | 	3. [tanner](https://github.com/mushorg/tanner.git) 
19 | 6. [opencanary](https://github.com/thinkst/opencanary.git)
20 | 7. [beeswarm](https://github.com/honeynet/beeswarm.git) [freebuf](https://www.freebuf.com/sectool/122214.html)
21 | 8. [HoneyPy](https://github.com/foospidy/HoneyPy) 低交互蜜罐，具有更多中等交互蜜罐的能力。
22 | 9. [Honeyd](https://github.com/DataSoft/Honeyd) Honeyd是一个小型守护进程，可以在网络上创建虚拟主机。该主机可以配置为运行任意服务及其TCP个性可以调整，使他们看起来运行确定操作系统的版本 [动态蜜罐发生器 - 基于honeyd](https://github.com/ppgirl/InfHoney)
23 | 10. [miniprint](https://github.com/sa7mon/miniprint) 打印机蜜罐
24 | 11. [Artillery](https://github.com/BinaryDefense/artillery) 炮兵监控工具和警报系统的组合
25 | 12. [rdpy](https://github.com/citronneur/rdpy) RDP
26 | 13. [MongoDB-HoneyProxyPy](https://github.com/jwxa2015/MongoDB-HoneyProxyPy) 自研的MongoDB蜜罐代理
27 | 14. [ciscoasa](https://github.com/cymmetria/ciscoasa_honeypot) Cisco ASA component capable of detecting CVE-2018-0101, a DoS and remote code execution vulnerability. [官网](https://community.cymmetria.com/)
28 | 15. [mailoney](https://github.com/awhitehatter/mailoney.git) SMTP蜜罐
29 | 16. [honeything](https://github.com/omererdem/honeything) 
30 | 17. [elasticpot](https://gitlab.com/bontchev/elasticpot) Elasticsearch 蜜罐
31 | 18. [sticky_elephant](https://github.com/betheroot/sticky_elephant.git) PostgreSQL
32 | 
33 | 
34 | # 平台
35 | 1. [MHN](https://github.com/threatstream/mhn)
36 | 2. [tpot](https://github.com/EpistasisLab/tpot.git)
37 | 3. [SpiderFoot](https://github.com/smicallef/spiderfoot) 一个开源智能（OSINT）自动化工具。其目标是自动收集有关给定目标的情报过程 [官网](http：//www.spiderfoot.net)
38 | 4. [CHN-Server](https://github.com/CommunityHoneyNetwork/CHN-Server)
39 | 
40 | ## 待合并的蜜罐有
41 | * [Nova](https://github.com/DataSoft/Nova.git)
42 | * [thug](https://github.com/buffer/thug.git)
43 | * [Honeysink](http://www.honeynet.org/node/773) - 开源网络陷阱，提供了检测与阻止指定网络上恶意流量的机制
44 | 
45 | * [D] [honeytrap](https://github.com/armedpot/honeytrap) 用于针对TCP或UDP服务的观察攻击的网络安全工具
46 | * [medpot](https://github.com/schmalle/medpot) 
47 | * Amun - 漏洞模拟蜜罐
48 | * SIREN - 半智能蜜罐网络 - 蜜网只能虚拟环境
49 | * Honeyd
50 | * UDPot Honeypot - 简单 UDP / DNS 蜜罐脚本
51 | * Honeycomb - 使用蜜罐自动创建签名
52 | * [D] hornet - 支持多虚拟主机的中交互 SSH 蜜罐
53 | * [sshd-honeypot](https://github.com/amv42/sshd-honeypot) sshd-honeypot旨在让Cowrie记录暴力攻击以及攻击者执行的shell交互。由于sshd-honeypot使用OpenSSH，因此无法根据协议偏差或错误消息的差异进行指纹识别
54 | * [HoneyBow](https://sourceforge.net/projects/honeybow/)  论文：[HoneyBow：一个基于高交互式蜜罐技术的恶意代码自动捕获器.pdf](./doc/HoneyBow：一个基于高交互式蜜罐技术的恶意代码自动捕获器.pdf)
55 | * [drupot](https://github.com/d1str0/drupot) Drupal Honeypot Drupal是使用PHP语言编写的开源内容管理框架（CMF）
56 | * [LaBrea](http://labrea.sourceforge.net/) - 接管未使用的 IP 地址，创建对蠕虫、黑客有吸引力的虚拟服务 [帮助](https://www.mankier.com/1/labrea#) 2003年后未更新
57 | * KFSensor - 基于 Windows 的入侵检测系统蜜罐(收费)
58 | * [glutton](https://github.com/mushorg/glutton) Glutton提供SSH和TCP代理。SSH代理在攻击者和服务器之间充当MITM，以纯文本形式记录所有内容。TCP代理尚未提供日志记录功能
59 | * [heralding](https://github.com/johnnykv/heralding)收集凭据的简单蜜罐,目前支持以下协议：ftp，telnet，ssh，http，https，pop3，pop3s，imap，imaps，smtp，vnc，postgresql和socks5
60 | 
61 | 网络地址变换:    
62 | * [OFPot](https://github.com/upa/ofpot)
63 |  
64 | 高交互蜜罐:
65 | 
66 | * [HIHAT](https://github.com/honeynet/HIHAT)
67 | 
68 | 其他:
69 | 
70 | * honeynet [git](https://github.com/honeynet)      [home](https://www.honeynet.org/)
71 | 
72 | * [SpiderFoot](https://github.com/smicallef/spiderfoot) 一个开源智能（OSINT）自动化工具。其目标是自动收集有关给定目标的情报过程 [官网](http：//www.spiderfoot.net)
73 | 
74 | hpfriends - real-time social data-sharing - HPFriends 订阅系统的展示
75 | 


--------------------------------------------------------------------------------