Category Archive: Honeypots


DEFCON 17: Identifying, Exploring, and Predicting Threats in the Russian Hacker Community

Jun 25 2014

Kippo-Graph 1.1 released!

This is the release of another version of Kippo-Graph, reaching version 1.1! It wasn’t a long time ago that I deemed Kippo-Graph as “complete”. Turns out that Markus didn’t share the same view and so he decided to do something about it. Kippo-Graph 1.1 comes with added information about each session playing in Kippo-Playlog. Information includes: list of …

Continue reading »

Jun 08 2014

Kippo-Graph 1.0 released

This is the release of a new version of Kippo-Graph, incorporating various fixes. I decided to mark this as the first major release of Kippo-Graph as it seems mostly “complete”. Download: kippo-graph-1.0 or clone/pull from GitHub: MD5 Checksum: CDFD4D9ACC1B80475A5A2D009C79D262 SHA-1 Checksum: 5B7FE645223BFBD43BE66C51A3DC592B5178EF47 CHANGES: Version 1.0: + Various fixes and updates. For comments, suggestions, fixes, please use the Kippo-Graph page:

Mar 31 2014

Kippo attack heatmap in seconds using Kibana and Kippo2ElasticSearch

Continuing from my previous post, here is how to create an attack heat map in seconds using the same ElasticSearch + Kibana instance. First of all we have to download Maxmind’s GeoIP database. The general procedure is super easy (no need to do it): This will output a single GeoIP.dat file which is a binary …

Continue reading »

Mar 30 2014

Transferring Kippo’s data to ElasticSearch

I have been investigating ElasticSearch and Kibana for some projects lately and I’ve come to appreciate the easiness of using the two pieces of software together for storing and visualizing data. This will be an introductory post to something bigger, but I just want to throw the idea out there: let’s transfer honeypot data to …

Continue reading »

Mar 30 2014

Kippo-Graph 0.9.3 released, with new component: “Kippo-IP”

This is the release of a new version of Kippo-Graph, adding a new component: Kippo-IP. Using Kippo-IP you can get a table view of all attacks and inputs by IP address. Kippo-IP has been developed by s0rtega, so make sure to send him your thanks! Download: kippo-graph-0.9.3 or clone/pull from GitHub: MD5 Checksum: 30FDEC6F6F0F75689E776D61616CD18C SHA-1 Checksum: 6E31D17965E3DEDCAD5A123A2572EE04820E5FC1 CHANGES: Version …

Continue reading »

Mar 24 2014

Kippo-Graph 0.9.2, with Kippo-Playlog!

This is the release of a new version of Kippo-Graph, adding a new component: Kippo-Playlog. Now you can play captured honeypot sessions in real time inside Kippo-Graph! Kippo-Playlog has been developed by CCoffie, so make sure to send him your thanks! The support is somewhat experimental, so please update Kippo-Graph, test it with your database and …

Continue reading »

Page 5 of 17« First...34567...10...Last »