Tag Archive: Kippo

Mar 30 2014

Transferring Kippo’s data to ElasticSearch

I have been investigating ElasticSearch and Kibana for some projects lately and I’ve come to appreciate the easiness of using the two pieces of software together for storing and visualizing data. This will be an introductory post to something bigger, but I just want to throw the idea out there: let’s transfer honeypot data to …

Continue reading »

Mar 30 2014

Kippo-Graph 0.9.3 released, with new component: “Kippo-IP”

This is the release of a new version of Kippo-Graph, adding a new component: Kippo-IP. Using Kippo-IP you can get a table view of all attacks and inputs by IP address. Kippo-IP has been developed by s0rtega, so make sure to send him your thanks! Download: kippo-graph-0.9.3 or clone/pull from GitHub: https://github.com/ikoniaris/kippo-graph MD5 Checksum: 30FDEC6F6F0F75689E776D61616CD18C SHA-1 Checksum: 6E31D17965E3DEDCAD5A123A2572EE04820E5FC1 CHANGES: Version …

Continue reading »

Mar 24 2014

Kippo-Graph 0.9.2, with Kippo-Playlog!

This is the release of a new version of Kippo-Graph, adding a new component: Kippo-Playlog. Now you can play captured honeypot sessions in real time inside Kippo-Graph! Kippo-Playlog has been developed by CCoffie, so make sure to send him your thanks! The support is somewhat experimental, so please update Kippo-Graph, test it with your database and …

Continue reading »

Feb 18 2014

Kippo-Malware update #2

Kippo-Malware has been updated again! It now includes support for Kippo’s configuration file. This means that you can simply pass a “-c” or “–config” argument with a kippo.cfg file and Kippo-Malware will fetch all settings corresponding to MySQL and downloads directory from it. Various small fixes have been applied as well. You can download it …

Continue reading »

Feb 14 2014

Kippo-Malware update

Kippo-Malware has been updated! It now includes optional arguments to select an HTTP proxy through which to download the files (as to not send your IP to attacker-owned servers) and also supports custom User-Agent values. A list of HTTP proxies can be found online, e.g.: https://hidemyass.com/proxy-list/search-225414 You can download it from: https://github.com/ikoniaris/kippo-malware (git clone or …

Continue reading »

Feb 13 2014

Announcing Kippo-Malware

This is another side project, with the goal of creating a script that will download all malicious files stored as URLs in a Kippo SSH honeypot database (and help me learn some Python during the process). This is useful in situations where you have lost your files or something happened to your VPS/server but you …

Continue reading »

Video

HoneyKippo en HoneyDrive [ES, no sound]

Page 4 of 11« First...23456...10...Last »