Tag Archive: Kippo

Dec 21 2011

Kippo-Graph 0.4 released, introducing Kippo-Geo!

New version of Kippo-Graph released, with brand new features! I have utilized the “QGoogleVisualizationAPI” PHP Wrapper for Google’s Visualization API by Thomas Schäfer and Kippo-Graph now has a component called Kippo-Geo that extracts geolocation information from the stored IP addresses and visualizes the data using Google Maps. Download Kippo-Graph 0.4 from here: kippo-graph-0.4 An example …

Continue reading »

Dec 20 2011

Kippo-Graph 0.3 released.

New version of Kippo-Graph with 3 additional graph charts and minor fixes. Download it here: kippo-graph-0.3 Instructions inside the README.txt file. CHANGES: Version 0.3: + Added 3 new input-related graphs. + Updated graph gallery. + Fixed minor web UI and graph details. + Added TODO.txt. + Updated README.txt For comments, suggestions, fixes, please use the …

Continue reading »

Dec 15 2011

Kippo-Graph 0.2 released!

Since I had some more time today, I decided to continute working on Kippo-Graph in order to make it usable and add the much needed web interface. I am pleased to say that it has a template now and it looks far better. See the README.txt file for instructions. You can download it from here: …

Continue reading »

Dec 15 2011

Kippo-Graph 0.1 released

Kippo-Graph is a simple script I wrote today to visualize statistics from a Kippo SSH honeypot. It uses the Libchart PHP chart drawing library by Jean-Marc Trémeaux. Kippo-Graph currently shows 7 charts: top 10 passwords, top 10 usernames, top 10 username/password combos, success ratio, connections per IP, probes per day, ssh clients. You can download …

Continue reading »

Dec 13 2011

The big post of Kippo scripts, front-ends, bash one-liners and SQL queries

Continuing on the previous posts about Kippo, and assuming you have already setup, configured it and logged some probes or intrusions, let’s take a look at some of the scripts, front-ends, commands, and other useful 3rd party stuff available in our disposal to get a better understading of what’s going on with our honeypots.

Continue reading »

Dec 08 2011

Logging Kippo events using MySQL DB

Continuing on the previous post about Kippo SSH honeypot, let’s see how we can make our lives easier and log its events in a MySQL database instead of the difficult to read text-based log files (located at kippo-dir/log by default). This post assumes that you have already followed the procedure and successfully installed Kippo on …

Continue reading »

Dec 05 2011

Installing Kippo SSH Honeypot on Ubuntu

I decided to setup a simple ssh honeypot in a small VPS (192MB RAM) to see if they actually record attacks. The honeypot that I chose was Kippo , a simple SSH honeypot written in Python with several possibilities. Here is a guide for the installation and configuration of Kippo, in accordance with the procedure …

Continue reading »

Page 11 of 11« First...7891011