From e76a643296619027854c1efa6b3c4ab8e5b5231e Mon Sep 17 00:00:00 2001 From: Marco Ochse Date: Thu, 18 Nov 2021 20:58:17 +0100 Subject: [PATCH 1/2] Update Readme for new honeypots --- README.md | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/README.md b/README.md index fdfa70dd..5f7b5a9e 100644 --- a/README.md +++ b/README.md @@ -19,6 +19,7 @@ and includes dockerized versions of the following honeypots * [glutton](https://github.com/mushorg/glutton), * [heralding](https://github.com/johnnykv/heralding), * [hellpot](https://github.com/yunginnanet/HellPot), +* [honeypots](https://github.com/qeeqbox/honeypots), * [honeypy](https://github.com/foospidy/HoneyPy), * [honeysap](https://github.com/SecureAuthCorp/HoneySAP), * [honeytrap](https://github.com/armedpot/honeytrap/), @@ -104,6 +105,7 @@ In T-Pot we combine the dockerized honeypots ... * [glutton](https://github.com/mushorg/glutton), * [heralding](https://github.com/johnnykv/heralding), * [hellpot](https://github.com/yunginnanet/HellPot), +* [honeypots](https://github.com/qeeqbox/honeypots), * [honeypy](https://github.com/foospidy/HoneyPy), * [honeysap](https://github.com/SecureAuthCorp/HoneySAP), * [honeytrap](https://github.com/armedpot/honeytrap/), @@ -502,6 +504,8 @@ The software that T-Pot is built on uses the following licenses.
MIT license: [ciscoasa](https://github.com/Cymmetria/ciscoasa_honeypot/blob/master/LICENSE), [ddospot](https://github.com/aelth/ddospot/blob/master/LICENSE), [glutton](https://github.com/mushorg/glutton/blob/master/LICENSE), [hellpot](https://github.com/yunginnanet/HellPot/blob/master/LICENSE)
Unlicense: [endlessh](https://github.com/skeeto/endlessh/blob/master/UNLICENSE)
Other: [citrixhoneypot](https://github.com/MalwareTech/CitrixHoneypot#licencing-agreement-malwaretech-public-licence), [cowrie](https://github.com/micheloosterhof/cowrie/blob/master/LICENSE.md), [mailoney](https://github.com/awhitehatter/mailoney), [Debian licensing](https://www.debian.org/legal/licenses/), [Elastic License](https://www.elastic.co/licensing/elastic-license) +
AGPL-3.0: [honeypots](https://github.com/qeeqbox/honeypots/blob/main/LICENSE) + # Credits @@ -530,6 +534,7 @@ Without open source and the fruitful development community (we are proud to be a * [glutton](https://github.com/mushorg/glutton/graphs/contributors) * [hellpot](https://github.com/yunginnanet/HellPot/graphs/contributors) * [heralding](https://github.com/johnnykv/heralding/graphs/contributors) +* [honeypots](https://github.com/qeeqbox/honeypots/graphs/contributors) * [honeypy](https://github.com/foospidy/HoneyPy/graphs/contributors) * [honeysap](https://github.com/SecureAuthCorp/HoneySAP/graphs/contributors) * [honeytrap](https://github.com/armedpot/honeytrap/graphs/contributors) From 6fb2fa783a68f3ff37cb0efa208ee7ca8a7d53f1 Mon Sep 17 00:00:00 2001 From: Marco Ochse Date: Thu, 18 Nov 2021 21:32:48 +0100 Subject: [PATCH 2/2] update for new honeypots --- bin/clean.sh | 9 +++++++++ etc/logrotate/logrotate.conf | 1 + iso/installer/install.sh | 13 +++++++------ update.sh | 1 + 4 files changed, 18 insertions(+), 6 deletions(-) diff --git a/bin/clean.sh b/bin/clean.sh index 85f79245..f3538a4e 100755 --- a/bin/clean.sh +++ b/bin/clean.sh @@ -197,6 +197,14 @@ fuHERALDING () { chown tpot:tpot /data/heralding -R } +# Let's create a function to clean up and prepare honeypots data +fuHONEYPOTS () { + if [ "$myPERSISTENCE" != "on" ]; then rm -rf /data/honeypots/*; fi + mkdir -p /data/honeypots/log + chmod 770 /data/honeypots -R + chown tpot:tpot /data/honeypots -R +} + # Let's create a function to clean up and prepare honeypy data fuHONEYPY () { if [ "$myPERSISTENCE" != "on" ]; then rm -rf /data/honeypy/*; fi @@ -339,6 +347,7 @@ if [ "$myPERSISTENCE" = "on" ]; fuHERALDING fuHELLPOT fuHONEYSAP + fuHONEYPOTS fuHONEYPY fuHONEYTRAP fuIPPHONEY diff --git a/etc/logrotate/logrotate.conf b/etc/logrotate/logrotate.conf index 773bd997..5f2405b1 100644 --- a/etc/logrotate/logrotate.conf +++ b/etc/logrotate/logrotate.conf @@ -23,6 +23,7 @@ /data/heralding/log/*.log /data/heralding/log/*.csv /data/heralding/log/*.json +/data/honeypots/log/*.log /data/honeypy/log/*.log /data/honeysap/log/*.log /data/honeytrap/log/*.log diff --git a/iso/installer/install.sh b/iso/installer/install.sh index 32557aa0..34af3325 100755 --- a/iso/installer/install.sh +++ b/iso/installer/install.sh @@ -802,27 +802,28 @@ mkdir -vp /data/adbhoney/{downloads,log} \ /data/conpot/log \ /data/citrixhoneypot/logs \ /data/cowrie/{downloads,keys,misc,log,log/tty} \ - /data/ddospot/{bl,db,log} \ - /data/dicompot/{images,log} \ + /data/ddospot/{bl,db,log} \ + /data/dicompot/{images,log} \ /data/dionaea/{log,bistreams,binaries,rtp,roots,roots/ftp,roots/tftp,roots/www,roots/upnp} \ /data/elasticpot/log \ /data/elk/{data,log} \ - /data/endlessh/log \ + /data/endlessh/log \ /data/fatt/log \ /data/honeytrap/{log,attacks,downloads} \ /data/glutton/log \ - /data/hellpot/log \ + /data/hellpot/log \ /data/heralding/log \ + /data/honeypots/log \ /data/honeypy/log \ /data/honeysap/log \ - /data/ipphoney/log \ + /data/ipphoney/log \ /data/mailoney/log \ /data/medpot/log \ /data/nginx/{log,heimdall} \ /data/emobility/log \ /data/ews/conf \ /data/rdpy/log \ - /data/redishoneypot/log \ + /data/redishoneypot/log \ /data/spiderfoot \ /data/suricata/log \ /data/tanner/{log,files} \ diff --git a/update.sh b/update.sh index e5df7992..8b1aa432 100755 --- a/update.sh +++ b/update.sh @@ -239,6 +239,7 @@ mkdir -vp /data/adbhoney/{downloads,log} \ /data/glutton/log \ /data/hellpot/log \ /data/heralding/log \ + /data/honeypots/log \ /data/honeypy/log \ /data/honeysap/log \ /data/ipphoney/log \