Tag Archive: Kippo

Jul 26 2014

HoneyDrive 3 Royal Jelly edition

Dear security enthusiasts, it’s been around one year and a half since the last release of HoneyDrive Desktop. Upon learning that my honeypots workshop has been accepted at BSides Las Vegas 2014, the thought of upgrading HoneyDrive has been greatly intensified in my mind, to the point that I decided to make it a reality! So, it …

Continue reading »

Jul 17 2014

Kippo-Graph 1.2 released!

This is the release of another version of Kippo-Graph, reaching version 1.2! Kippo-Graph 1.2 is mostly a maintenance release, but I’ve also fixed and added more features so updating is strongly recommended! The most significant change concerns the virus scanning of attackers’ downloaded files. Unfortunately, NoVirusThanks have stopped offering their service due to costs of …

Continue reading »

Jul 15 2014

Honeypots workshop at BSidesLV 2014!

I am very happy to announce that a honeypots workshop will take place during BSides Las Vegas this year! BSides is a fantastic community driven InfoSec convention and Las Vegas is the best place to be in August! The workshop is titled “You Hack, We Capture: Attack Analysis with Honeypots“, lasts half a day (4 hours) and …

Continue reading »

Jun 25 2014

Kippo-Graph 1.1 released!

This is the release of another version of Kippo-Graph, reaching version 1.1! It wasn’t a long time ago that I deemed Kippo-Graph as “complete”. Turns out that Markus didn’t share the same view and so he decided to do something about it. Kippo-Graph 1.1 comes with added information about each session playing in Kippo-Playlog. Information includes: list of …

Continue reading »

Jun 08 2014

Kippo-Graph 1.0 released

This is the release of a new version of Kippo-Graph, incorporating various fixes. I decided to mark this as the first major release of Kippo-Graph as it seems mostly “complete”. Download: kippo-graph-1.0 or clone/pull from GitHub: https://github.com/ikoniaris/kippo-graph MD5 Checksum: CDFD4D9ACC1B80475A5A2D009C79D262 SHA-1 Checksum: 5B7FE645223BFBD43BE66C51A3DC592B5178EF47 CHANGES: Version 1.0: + Various fixes and updates. For comments, suggestions, fixes, please use the Kippo-Graph page: http://bruteforcelab.com/kippo-graph

Apr 28 2014

Kippo2ElasticSearch + Kibana update

The Kippo2ElasticSearch script has been updated and now creates proper entries with all attributes needed for each SSH login attempt. I have also included an exported Kibana dashboard file that you can import in your own instance and visualize the results. This is going to be very useful and it looks great. Please get/update by cloning/pulling from GitHub: https://github.com/ikoniaris/kippo2elasticsearch …

Continue reading »

Mar 31 2014

Kippo attack heatmap in seconds using Kibana and Kippo2ElasticSearch

Continuing from my previous post, here is how to create an attack heat map in seconds using the same ElasticSearch + Kibana instance. First of all we have to download Maxmind’s GeoIP database. The general procedure is super easy (no need to do it): This will output a single GeoIP.dat file which is a binary …

Continue reading »

Page 3 of 1112345...10...Last »