Alex-Devera/tpotce
1
0
Fork 0
mirror of https://github.com/telekom-security/tpotce.git synced 2025-04-29 03:38:51 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
1318 commits 8 branches 18 tags 388 MiB
Commit graph

333 commits

Author SHA1 Message Date
t3chn0m4g3
5fcb7ed4ce glutton structured json logging 2018-08-30 16:19:11 +00:00
t3chn0m4g3
64fed3d15b tweaking 2018-08-29 10:54:30 +00:00
listbot
775c7aeb95 conpot cleanup 2018-08-28 13:47:20 +00:00
Marco Ochse
79bb324a4a
rename conpot fields to match index pattern 2018-08-28 13:30:58 +02:00
Marco Ochse
d19d3823f6
prevent status field from being indexed as string 2018-08-28 12:41:11 +02:00
listbot
59c8c5b34c bump ELK to 6.4.0 
YES! Index patterns can finally exported through Kibana! A joy to the ELK world :-)
 2018-08-24 17:07:00 +00:00
listbot
ea1bf604c8 tweaking conpot 2018-08-24 16:01:27 +00:00
listbot
d02e34764e bump conpot to 0.6.x 2018-08-22 13:43:27 +00:00
t3chn0m4g3
5ce77c6f60 snare tweaking, change ports 2018-08-21 18:30:37 +00:00
listbot
6b77e64ff4 tweaking updater, conpot 2018-08-20 15:06:10 +00:00
t3chn0m4g3
e2613e7d17 add 10 personas for snare 2018-08-14 14:20:55 +00:00
t3chn0m4g3
f6a30dd973 update ews.cfg 2018-08-08 11:58:26 +00:00
t3chn0m4g3
3d259bbc34 tanner finetuning 2018-08-08 11:49:32 +00:00
t3chn0m4g3
00e909ea24 bump tanner to 0.6.0 2018-08-07 09:33:38 +00:00
t3chn0m4g3
78adc5a0e1 bump snare to 0.3.0 2018-08-02 22:17:03 +00:00
t3chn0m4g3
a6d996d016 fix kibana ci color for highlighted elements 2018-08-02 17:36:11 +00:00
t3chn0m4g3
a5f027e896 update glutton 2018-08-02 14:52:50 +00:00
t3chn0m4g3
67d5c5a26c get FQDN for ES head from open window 2018-08-01 20:09:05 +00:00
t3chn0m4g3
7945961cee Bump ELK to 6.3.2 2018-07-31 14:31:49 +00:00
t3chn0m4g3
0373d7145d Update Dionaea to version 0.8.0 
Thanks to @Dbof for noticing and supplying #222
 2018-07-31 13:31:50 +00:00
listbot
d91714cdf2 add cyberchef as tool 2018-07-12 09:03:33 +00:00
t3chn0m4g3
38112755ce Fix ci logo 2018-06-28 12:30:27 +00:00
t3chn0m4g3
00482df95b Bump ELK Stack to 6.3.0 2018-06-26 17:34:14 +00:00
Marco Ochse
b8a650002e
Update favicon 2018-06-26 12:09:23 +02:00
Marco Ochse
804f47f7ab
Fix IPv6 error 
fix an error where upstream site is not found while trying to connect with both IPv4 and IPv6. Setting `localhost` to `127.0.0.1` fixes it.
 2018-06-26 10:19:35 +02:00
Marco Ochse
b19aa6d5c8
update favicon 2018-06-26 10:09:33 +02:00
Marco Ochse
cd55b3c51f update logfile for tanner in ews 2018-06-24 23:16:19 +02:00
Marco Ochse
1dd57d8022 NGINX logs are in /data/nginx/log/ 
Syslog should be viewed in Cockpit now, storing events of Syslog in ELK
is ineffective
 2018-06-24 03:24:51 +02:00
t3chn0m4g3
a13f06f33d update ews for tanner 2018-06-23 22:10:55 +00:00
t3chn0m4g3
d6077792b9 continue working on installer 
remove portainer
remove wetty
remove netdata
add cockpit
tweak fail2ban for cockpit, sshd, nginx
update logo to 18.10
remove configs with regard to portainer, wetty, netdata
adjust packages for install.sh, preseed
 2018-06-23 21:23:33 +00:00
Marco Ochse
d047d1edbb
disable 3rd party plugins 
At least one of them was corrupt on Github which seems unlikely, hence not trustworthy
 2018-06-13 19:20:52 +02:00
Marco Ochse
eb6e877ae4
Clone Dionaea 0.7.0 instead master 2018-06-13 18:51:27 +02:00
Marco Ochse
42577b6016 Editions 
start work on new editions
 2018-06-07 16:39:13 +02:00
Marco Ochse
09ad1941b7 just a push 2018-06-07 12:38:46 +00:00
Marco Ochse
e901334748 change repo 2018-06-05 13:50:37 +00:00
Marco Ochse
bf6fd94ea9 merge hpfeeds changes from vorband 2018-06-05 14:14:41 +02:00
Marco Ochse
52ecc767f8 performance tweak template 2018-06-04 16:05:22 +00:00
Marco Ochse
650b4a9b51 clean up 2018-06-04 13:45:09 +00:00
Marco Ochse
e8621fbba1 tweaking 2018-06-04 13:43:59 +00:00
Marco Ochse
e211a19c37 change ports, add emu_scripts.yaml, tweaking 2018-06-04 11:29:25 +00:00
Marco Ochse
fbc11fa12c add hpfeeds broker for testing 2018-05-30 15:46:18 +00:00
Marco Ochse
62b02a7500 add hpfeeds support 2018-05-30 11:20:55 +00:00
Marco Ochse
37424eb541 cleanup 2018-05-29 12:06:20 +00:00
Marco Ochse
72313a600d include tanner patterns, tweaking 2018-05-29 12:05:07 +00:00
Marco Ochse
428ee43c18 prepare for tanner 2018-05-28 21:46:51 +00:00
Marco Ochse
cabd5a3941 cleanup 2018-05-28 21:46:26 +00:00
Marco Ochse
a4bfa08393 tweaking 2018-05-28 21:45:43 +00:00
Marco Ochse
5b11952899 cleanup 2018-05-28 16:43:32 +00:00
Marco Ochse
1b0d11177b prepare for snare, tanner 2018-05-28 16:42:39 +00:00
Marco Ochse
4bbc63fd02 begin with hardening, tweaking 2018-05-28 16:36:02 +00:00
Marco Ochse
88e252fbfb tanner, snare, deps 2018-05-26 23:09:31 +00:00
Marco Ochse
1b5e39e448 tweaking 2018-05-25 16:19:15 +00:00
Marco Ochse
b406c9b4e0 include hpfeeds support 
thank you @vorband
 2018-05-25 16:18:05 +00:00
Marco Ochse
35221f56c9 tweaking 2018-05-23 14:18:46 +00:00
Marco Ochse
2f8cbcb2d1 tweaking 2018-05-23 14:16:37 +00:00
Marco Ochse
e1c806ebe8 tweaking 2018-05-23 14:16:13 +00:00
Marco Ochse
2128c6a2b0 tweaking 2018-05-23 13:30:26 +00:00
Marco Ochse
38fce345cf tweaking 
fix condition when no internet connection is available
check internet connection before download of rules and avoid errors
check internet connection before setting up capture filters (with FQDNs, resulted in endless restart of suricata) and unset capture filters if no internet connection is available
 2018-05-23 13:02:19 +00:00
Marco Ochse
fbe1fff088 let mailoney run on tcp/25 within container 2018-05-23 07:58:01 +00:00
Marco Ochse
4e8d629b63 tweaking, fix build error 2018-05-19 22:01:03 +00:00
Marco Ochse
a07776d16c tweaking 2018-05-19 21:35:24 +00:00
Marco Ochse
551a3c2168 tweaking 2018-05-19 21:20:32 +00:00
Marco Ochse
52cf2a6094 tweaking 2018-05-19 21:18:35 +00:00
Marco Ochse
7638fb89d6 tweaking 2018-05-19 21:02:52 +00:00
Marco Ochse
84c51afe17 tweaking, hardening 2018-05-19 20:40:01 +00:00
Marco Ochse
eb55ad5870 tweaking 2018-05-19 19:43:02 +00:00
Marco Ochse
48b8915689 hardening 2018-05-19 19:13:03 +00:00
Marco Ochse
779dc7fc7e cleanup 2018-05-18 21:26:15 +00:00
Marco Ochse
0e64b48388 turn logging noiselevel down 2018-05-18 20:47:54 +00:00
Marco Ochse
77cd9df8f7 hardening 2018-05-18 20:05:52 +00:00
Marco Ochse
114997308b tweaking, hardening 2018-05-18 16:05:28 +00:00
Marco Ochse
913cccf98a tweaking 2018-05-18 15:50:01 +00:00
Marco Ochse
4fde6ac15f tweaking, hardening 2018-05-18 15:40:07 +00:00
Marco Ochse
b151397d85 fix some compile errors, tweaking 2018-05-17 17:38:09 +00:00
Marco Ochse
3e4985da8c tweaking 2018-05-16 16:37:41 +00:00
Marco Ochse
e72ef5c094 finetuning, tweaking 2018-05-16 16:37:10 +00:00
Marco Ochse
5447978191 finetuning, tweaking 2018-05-16 14:57:52 +00:00
Marco Ochse
842bec2cb3 tweaking 2018-05-15 20:49:06 +00:00
Marco Ochse
213c3c8566 tweaking 2018-05-15 20:30:44 +00:00
Marco Ochse
4e1340ab9e reduce image size 2018-05-15 19:42:21 +00:00
Marco Ochse
6119c3a30a tweaking 2018-05-15 16:24:10 +00:00
Marco Ochse
aa5751ac20 reduce ciscoasa image size 2018-05-15 15:56:00 +00:00
Marco Ochse
3bea740632 tweaking 2018-05-09 16:43:37 +00:00
Marco Ochse
731e18d083 tweaking 2018-05-09 14:29:06 +00:00
Marco Ochse
94af9493b1 heralding tweaking 2018-05-07 20:25:00 +00:00
Marco Ochse
3b852385d3 tweaking 2018-05-07 10:19:40 +00:00
Marco Ochse
a5745cbeb1 tweaking 2018-05-07 10:17:33 +00:00
Marco Ochse
85aa874f5e tweaking 2018-05-04 21:31:33 +00:00
Marco Ochse
b1fbcd9532 tweaking, hardening 2018-05-04 16:29:55 +00:00
Marco Ochse
915d3f1b89 ciscoasa tweaking, viz and dashboard finished 2018-04-28 12:26:27 +00:00
Marco Ochse
40244d3bcb ciscoasa, tweaking, hardening, logging, logstash 2018-04-27 23:10:45 +00:00
Marco Ochse
a944925124 tweaking 2018-04-26 15:18:23 +00:00
Marco Ochse
dbd78921c9 ci colors 2018-04-24 14:03:57 +00:00
Marco Ochse
4bac26bef9 set magenta color 2018-04-23 17:16:17 +00:00
Marco Ochse
5e5723334e add kibana visualization fixes 
thank you @robcowart
 2018-04-23 12:29:38 +00:00
Marco Ochse
89d31ffbe0 finalize elk6.x docker images 
continue working on elk6.x helper scripts
cleaning up
 2018-04-20 21:22:46 +00:00
Marco Ochse
fd40fc96a6 elk 6.x 
start adjusting helper scripts for elk 6.x
migrate patterns, dashboards, viz, search, etc.
tweaking
 2018-04-19 22:38:45 +00:00
Marco Ochse
6e072980a0 start on elk6.x 2018-04-18 15:21:32 +00:00
Marco Ochse
004af6dec7 tweaking glutton, signals 2018-04-17 13:54:57 +00:00
Marco Ochse
d1756fa934 playing with signals 2018-04-16 23:25:50 +00:00
Marco Ochse
446880de55 tweaking 2018-04-16 22:05:16 +00:00
Marco Ochse
edfd5eaa5b tweaking glutton, automatic iptables rules 2018-04-16 12:39:46 +00:00
Marco Ochse
83fbc3eee0 start working on glutton 2018-04-13 18:22:49 +00:00
Marco Ochse
13c56c6ea1 tweaking, hardening 2018-03-31 21:44:11 +00:00
Marco Ochse
2f6a8014bc tweaking, hardening 2018-03-31 15:18:28 +00:00
Marco Ochse
4ee334aee8 tweaking 2018-03-30 21:47:59 +00:00
Marco Ochse
5c403a5cce tweaking, hardening 2018-03-30 20:54:44 +00:00
Marco Ochse
594361a056 tweaking 2018-03-30 17:17:17 +00:00
Marco Ochse
df6e4dcd44 update logrotating, cleanup.sh, add Suricata ET Pro support, tweaking 2018-03-30 16:41:46 +00:00
Marco Ochse
201aa85e68 rdpy add shuffle 2018-03-29 21:45:55 +00:00
Marco Ochse
640f8e85fb prepare some fixes, tweaking 2018-03-29 20:56:11 +00:00
Marco Ochse
136e741334 tweaking 2018-03-29 16:21:00 +00:00
Marco Ochse
8257ae0a09 tweaking 2018-03-25 20:58:46 +00:00
Marco Ochse
c9a33870ff prep for 18.04 2018-03-25 18:35:32 +00:00
Marco Ochse
fc0f3ad0fb update conpot, pull from master 2018-02-27 17:49:58 +00:00
Marco Ochse
7a507156bd finetuning nginx 2018-02-26 17:55:56 +00:00
Marco Ochse
2f063b28c0 start work on ciscoasa honeypot 2018-02-20 17:40:34 +00:00
Marco Ochse
50fab2207c prepare for wetty docker image 2018-02-19 16:47:59 +01:00
Marco Ochse
46c92047cb prepare for nginx docker image 2018-02-16 15:17:34 +01:00
Marco Ochse
d2f1a27908 update elk stack to 5.6.5 2018-01-15 13:34:17 +00:00
Marco Ochse
c28dfa6bc7 update elk stack to 5.6.5 2018-01-15 13:33:48 +00:00
Marco Ochse
44731a54bf add py-requests 
per request issue #165
 2018-01-15 13:13:02 +00:00
Marco Ochse
a995358d21 finetuning dionaea config 2018-01-10 15:22:48 +00:00
Marco Ochse
78feb12d5a
Update config for Mailoney, RDPY, VNClowpot 2017-11-17 15:29:16 +01:00
Marco Ochse
f2f2fcdd57 update documentation 2017-10-23 15:08:37 +02:00
Marco Ochse
fb37cb6152 Continue cleaning up and update documentation 2017-10-23 14:56:37 +02:00
Marco Ochse
50d1c212ad Continue cleaning up 2017-10-23 13:10:47 +02:00
Marco Ochse
46264774b3 Start cleaning up and update documentation 2017-10-23 13:02:04 +02:00
Marco Ochse
70f75d51ee remove listbot sources 2017-10-21 16:32:14 +02:00
Marco Ochse
f2880ec3d6 refine ip matching 
fix regex to only match IPs at the beginning of a line
 2017-10-21 16:00:03 +02:00
Marco Ochse
8e3967f2e1 disable netdata version check 2017-10-13 21:25:11 +00:00
Marco Ochse
c2c76459a1 fix rdpy dep 2017-10-13 20:41:24 +00:00
Marco Ochse
0d5d80b1e3 include docker repos 
... skip emobility since it is a dev repo
 2017-10-13 18:58:14 +00:00