Alex-Devera/tpotce
1
0
Fork 0
mirror of https://github.com/telekom-security/tpotce.git synced 2025-05-03 13:48:54 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
1956 commits 8 branches 18 tags 388 MiB
Commit graph

653 commits

Author SHA1 Message Date
t3chn0m4g3
dcf15ca489 Opt-In for SentryPeer DHT mode, fixes #1110 2022-06-08 09:10:29 +00:00
t3chn0m4g3
a28dfec046 bump qHoneypots to latest master, adjust config for commands input 2022-06-07 11:19:34 +00:00
t3chn0m4g3
8993f59001 Bump Glutton to Alpine 3.16, decrease image size 2022-06-03 14:21:55 +00:00
t3chn0m4g3
09c682cd7b Bump to Alpine 3.16 for most of the images. 
Glutton, Heralding, Mailoney and Snare/Tanner need work.
 2022-06-02 15:47:17 +00:00
t3chn0m4g3
409e4bde3e Bump Cyberchef to 9.38.0, Elasticvue to 0.40.1 
Bump Nginx, Spiderfoot to Alpine 3.16
 2022-06-02 13:36:54 +00:00
t3chn0m4g3
aaef85c49d Bump SentryPeer to 1.4.1 2022-06-02 08:31:18 +00:00
t3chn0m4g3
73b54f5504 Bump Elastic Stack to 8.2.2 2022-06-01 10:26:49 +00:00
t3chn0m4g3
55da6a4841 Bump Elastic Stack to 8.2.0, update objects 2022-05-25 14:53:29 +00:00
t3chn0m4g3
f13d08287f prep for elk 8.1.2 2022-04-15 13:11:25 +00:00
t3chn0m4g3
fc123d10f9 bump spiderfoot to 4.0 2022-04-14 17:15:43 +00:00
t3chn0m4g3
ded2124932 bump cyberchef, esvue to latest release 2022-04-14 16:52:48 +00:00
Marco Ochse
c2aa0af2f3
Merge branch 'master' into 22.x 2022-04-11 16:47:44 +02:00
t3chn0m4g3
36774d0b71 update tags / version to 2204, tweaking README 2022-04-08 13:45:53 +00:00
t3chn0m4g3
f49f454a42 tweaking ciscoasa 2022-04-01 12:55:21 +00:00
t3chn0m4g3
5f18f7f17f finetune logstash image and compose settings 2022-03-31 14:46:56 +00:00
t3chn0m4g3
bf39f85df0 pin sentrypeer to v1.2.0 2022-03-31 12:20:45 +00:00
t3chn0m4g3
572d540ead tweaking ntp and logstash 
remove ntp and replace with timesyncd (client only)

adjust logstash config
 2022-03-30 20:32:24 +00:00
t3chn0m4g3
9705538dba fix typo 2022-03-30 18:00:15 +00:00
t3chn0m4g3
22276d1cc6 fix permissions for distributed setup 2022-03-30 15:53:08 +00:00
t3chn0m4g3
5bbe07de9e fix dep 2022-03-25 14:52:28 +00:00
t3chn0m4g3
328139d9b9 image builder, tweaking 2022-03-24 18:54:56 +01:00
t3chn0m4g3
e2752458d4 bump elk to 7.17.0 to support 8.0.1 in 22.x 2022-03-18 16:23:27 +00:00
t3chn0m4g3
b7096d6df6 bump elk to 8.0.1 2022-03-18 07:58:00 +00:00
t3chn0m4g3
dd5f2c2a8d reduce build times, tweaking 2022-03-14 21:50:19 +00:00
t3chn0m4g3
9a0e6bf1d8 tweaking process cpu 2022-03-14 10:37:11 +00:00
t3chn0m4g3
3bcf85a92f tweaking, reduce build times 2022-03-13 10:19:08 +00:00
t3chn0m4g3
e87a6fa53f heralding, honeypots reduce build time, tweaking 2022-03-12 17:59:31 +00:00
t3chn0m4g3
a0d82ddc45 tweaking, reduce build times 2022-03-12 15:11:20 +00:00
t3chn0m4g3
1974a7e6ab cowrie, ddospot, reduce build times, tweaking 2022-03-12 14:42:34 +00:00
t3chn0m4g3
96d5986407 cowrie, test reduce build times 2022-03-12 14:27:34 +00:00
t3chn0m4g3
f39b371d6b tweaking 2022-03-12 13:27:28 +00:00
t3chn0m4g3
ae52dafdaf conpot, test reduce build times 2022-03-12 13:13:31 +00:00
t3chn0m4g3
886a7f159e add /modify cpu healtchecks for adbhoney, conpot, dionaea 2022-03-11 18:02:20 +00:00
t3chn0m4g3
068f4bb67e adbhoney add healtcheck for CPU usage, tweaking 2022-03-11 13:29:44 +00:00
Marco Ochse
0a8ff0297f tweaking 2022-03-09 23:07:28 +01:00
t3chn0m4g3
4bcd24ed19 tweaking 2022-03-09 20:46:12 +00:00
t3chn0m4g3
99c719eed4 bump conpot to latest master, cleanup 2022-03-09 15:19:51 +00:00
t3chn0m4g3
9d7c24892d image tweaking 2022-03-08 23:36:03 +00:00
t3chn0m4g3
22904d402a drop root privileges for suricata 2022-03-08 17:29:03 +00:00
t3chn0m4g3
02d4d79a60 tweaking 2022-03-05 00:50:47 +00:00
t3chn0m4g3
075551d218 harden, reduce size log4pot 2022-03-04 13:13:48 +00:00
t3chn0m4g3
3b65fb039b bump log4pot to latest master 2022-03-04 11:45:25 +00:00
t3chn0m4g3
518c56def9 spiderfoot, editions tweaking 2022-02-28 22:00:54 +00:00
t3chn0m4g3
c496b274f3 fix entrypoint 2022-02-25 17:14:42 +00:00
t3chn0m4g3
3d0d69c541 tweaking, license info, readme credits, avoid redis port conflict 2022-02-25 16:59:17 +00:00
t3chn0m4g3
8f8bdcbefa fix expose from parent 2022-02-25 13:47:00 +00:00
t3chn0m4g3
5237215bf0 tweaking, add sentrypeer to logstash config 2022-02-24 17:39:57 +00:00
t3chn0m4g3
aa6afc37fe prep for sentrypeer 2022-02-23 23:19:18 +00:00
t3chn0m4g3
8d16d7587d add sentrypeer, wordpot tweaking, fix udp src_ip issues 2022-02-22 17:57:55 +00:00
t3chn0m4g3
af2174ee9f fix websocket timeout 2022-02-21 11:43:41 +00:00
t3chn0m4g3
fc7c748b20 add attack map to web gui 2022-02-20 23:11:24 +00:00
t3chn0m4g3
656c99446e fix template 2022-02-20 16:38:15 +00:00
t3chn0m4g3
a73c4b67d9 reduce index refresh to 1s 2022-02-18 19:55:31 +00:00
t3chn0m4g3
416d4a810f redis tweaking 2022-02-17 01:26:10 +00:00
t3chn0m4g3
7ee263e8e8 bump elastic stack to 8.0.0 2022-02-16 02:55:20 +00:00
t3chn0m4g3
17a1cbdf40 update map 2022-02-15 21:46:43 +00:00
t3chn0m4g3
e9a907ef7b tweaking 2022-02-14 00:35:37 +00:00
t3chn0m4g3
e1643308b2 tweaking 2022-02-14 00:32:57 +00:00
t3chn0m4g3
264120c751 bump map_server to latest master 2022-02-14 00:30:18 +00:00
t3chn0m4g3
6fed549f58 map server tweaking 2022-02-12 01:04:02 +00:00
t3chn0m4g3
53afb1ba10 incl. XFF for qhoneypots, some tweaking 2022-02-11 10:32:31 +00:00
t3chn0m4g3
2a4fe20b88 work in progress (map, wordpot) 2022-02-09 19:13:18 +00:00
t3chn0m4g3
278c7aa61a bump elastic stack to 7.17.0 2022-02-02 22:57:50 +00:00
t3chn0m4g3
b37178ba98 tweaking honeysap, rdpy, editions, installer 
move honeysap, rdpy to deprecated as currently no Py3 version available
remove honeysap, rdpy from editions
adjust installer for running on ARM64 (post-install)
 2022-01-31 16:59:36 +00:00
t3chn0m4g3
778c6c6a70 tweak cyberchef size by removing zip 2022-01-30 01:07:12 +00:00
t3chn0m4g3
72289e07d6 tweaking for nginx, cyberchef, elasticvue 
create builder for cyberchef and elasticvue based on respective masters
builders will build webapps and copy output to nginx html folder as tgz
some tweaking for elasticvue to properly load original favicon
with cyberchef now run as nginx webapp we gain another 40MB of RAM
while webapps will be built on AMD64 all final docker images can now be built as multi arch images for AMD64 and ARM64
 2022-01-30 00:48:10 +00:00
t3chn0m4g3
a51744988f adjust editions for new nginx 2022-01-29 00:45:41 +00:00
t3chn0m4g3
e6f392a098 Tweaking 
Finalize qhoneypots config, thanks to @giga-a for native JSON logging!
Completely rework T-Pot Landing Page based on Bento (https://github.com/migueravila/Bento).
New NGINX image is down by 100MB and only uses 3.3 MB of RAM at runtime.
Keep legacy Sensor option (without logstash).
 2022-01-29 00:00:29 +00:00
t3chn0m4g3
12a413b4cb replace es-head with elasticvue, tweaking 
es-head does not support building with ARM64 and had to be replaced with the even better elasticvue
elasticvue will now run within the nginx container, freeing some RAM :) on the way
 2022-01-27 02:39:23 +00:00
t3chn0m4g3
6a277fd1e9 dionaea: adjust for multiarch builds 2022-01-24 01:31:31 +00:00
t3chn0m4g3
cfcf870da3 elasticsearch, kibana: prep for multiarch, move to ubuntu 
heade: alpine 3.15
 2022-01-23 21:12:34 +00:00
t3chn0m4g3
a507bc5f39 logstash cleanup, prep for multiarch, move to ubuntu 
log4pot tweaking
 2022-01-23 14:49:07 +00:00
t3chn0m4g3
ae18cb592e tweaking, prep for docker buildx 2022-01-22 01:04:21 +00:00
t3chn0m4g3
ef31fc155b re-add FROMURL example for Suricata in compose files 2022-01-20 18:34:51 +00:00
t3chn0m4g3
3524bafda2 Cleanup, Tweaking 
Remove old Sensor Edition and replace with Pot Edition
Rename Pot Edition to new Sensor Edition
POT is now called SENSOR
 2022-01-20 18:26:43 +00:00
t3chn0m4g3
66b4ef047a bump tanner to latest master, alpine 3.15 2022-01-20 17:47:29 +00:00
t3chn0m4g3
2586e10285 Bump Mailoney to Alpine 3.15, reduced to Mailoney Code, no PyPi 2022-01-20 16:31:40 +00:00
t3chn0m4g3
602d1cc673 bump Elastic Stack to 7.16.3, change deprecated fields 2022-01-20 10:32:10 +00:00
t3chn0m4g3
22acb6fa84 bump to Alpine 3.15 2022-01-19 00:46:04 +00:00
t3chn0m4g3
2a7ff7b3cb update Dockerfiles 2022-01-18 01:10:20 +00:00
t3chn0m4g3
889c85e248 update Dockerfiles 2022-01-18 00:50:23 +00:00
t3chn0m4g3
d301cf0447 tweaking, remove honeypy => deprecated 2022-01-17 17:45:03 +00:00
t3chn0m4g3
c611101987 improve nginx logging 2022-01-17 17:15:04 +00:00
Marco Ochse
cac7cdcec6 fix data fields with regard to the request field, log4pot, nginx 2022-01-17 17:10:48 +01:00
t3chn0m4g3
a07918d149 update log4pot to the latest master 2022-01-17 14:52:32 +00:00
t3chn0m4g3
68d6aa4180 fix data fields with regard to the request field, log4pot, nginx 2022-01-17 14:50:50 +00:00
t3chn0m4g3
0e5986d2df Tweaking 
Remove Elasticsearch-Curator in packages, configs and references (BREAKING CHANGE)
Add Index Lifecycle Management in favor of elasticsearch-curator
Point all images to 2203 tags
 2022-01-14 15:52:08 +00:00
t3chn0m4g3
86479db8af fix packaging 2022-01-14 13:05:05 +00:00
t3chn0m4g3
eca395a770 fix packaging 2022-01-14 12:54:53 +00:00
t3chn0m4g3
3792a5f6a1 fix packaging 2022-01-14 12:51:15 +00:00
t3chn0m4g3
e7e521edba tweaking 2022-01-12 01:28:06 +00:00
t3chn0m4g3
7d012726b7 tweaking 2022-01-11 15:43:45 +00:00
t3chn0m4g3
d6ea4cdde2 prep for elk 8.x, pave way for next t-pot release 2022-01-07 18:03:00 +00:00
t3chn0m4g3
fb49a77180 tweaking, json_batch transfer to hive 2022-01-07 15:41:57 +00:00
t3chn0m4g3
467dfae320 cleanup, move to correct folders 2022-01-04 18:35:44 +00:00
t3chn0m4g3
788a4c4f98 prepare for new attack map feature 
tweaking, cleanup
 2022-01-04 16:16:27 +00:00
t3chn0m4g3
68b080a3a8 Work in progress! 
This is the foundation for the distributed T-Pot feature,
highly work in progress, only works with local docker image builds,
will be available for prod for upcoming T-Pot 22xx.
 2022-01-03 18:24:17 +00:00
t3chn0m4g3
ef1a1fa057 Merge branch 'master' of https://github.com/telekom-security/tpotce 2021-12-21 11:37:18 +00:00
t3chn0m4g3
daf41b4b71 tweaking 2021-12-21 11:36:38 +00:00
t3chn0m4g3
0bca794fe7 bump log4pot to latest master 
rebuild on ubuntu for payload download support
 2021-12-20 18:40:38 +00:00
t3chn0m4g3
aaccb43471 bump elk stack to 7.16.2 
ELK 7.16.2 includes log4j 2.17.0 to address latest issues
 2021-12-20 11:17:18 +00:00
t3chn0m4g3
b0339610a2 Prep for Log4Pot integration 2021-12-16 20:25:40 +00:00
t3chn0m4g3
a98b447556 ELK 7.16.1 fixes log4j vulns. 2021-12-13 15:59:48 +00:00
t3chn0m4g3
b4c1805551 disable log4j lookups 2021-12-13 10:54:07 +00:00
t3chn0m4g3
0ef2e89cac remove log4j JndiLookup Class 2021-12-13 10:35:22 +00:00
t3chn0m4g3
5f29516197 tweaking 2021-12-08 23:55:13 +00:00
Marco Ochse
ff1c12e848
Disable FATT submissions for now 2021-11-30 16:04:58 +01:00
t3chn0m4g3
ce39e1bd4f logstash logging for honeypots 2021-11-19 23:20:13 +00:00
t3chn0m4g3
6c155ad87f add qeeqbox honeypots 2021-11-18 19:55:44 +00:00
t3chn0m4g3
81b8242c68 bump ewsposter to latest master 2021-11-18 13:48:02 +00:00
t3chn0m4g3
d2cbf6ebbc build fix for tanner 2021-11-18 13:39:05 +00:00
Marco Ochse
591be0791b
Fixes #939 
https://stackoverflow.com/questions/28785383/how-to-disable-persistence-with-redis
 2021-11-18 13:05:01 +01:00
t3chn0m4g3
adee51bee5 bump heralding to latest master 2021-11-16 18:23:25 +00:00
t3chn0m4g3
b214db6e9d bump cowrie to 2.3.0, ewsposter to 1.21 2021-11-05 17:43:47 +00:00
t3chn0m4g3
c9b909e51d finetune new honeypots logging 2021-11-02 19:13:28 +00:00
t3chn0m4g3
db74c610ad bump hellpot to 0.3 and train config for CVE-2021-39341 2021-11-01 13:36:44 +00:00
t3chn0m4g3
ea624351b5 finetuning logstash.conf for new honeypots 2021-10-29 16:28:16 +00:00
t3chn0m4g3
c1eb9f7216 logstash parsing for ddospot, hellpot 2021-10-28 18:57:55 +00:00
t3chn0m4g3
1a844d13ba start integrating new honeypots into ELK 2021-10-27 16:14:52 +00:00
t3chn0m4g3
348a5d572b bump elastic stack to 7.15.1 2021-10-26 13:56:38 +00:00
t3chn0m4g3
77dcd771df move debian to ubuntu 20.04 2021-10-05 15:26:02 +00:00
t3chn0m4g3
b566b39688 move honeytrap to ubuntu 20.04 
thanks to @adepasquale's work
 2021-10-04 20:19:40 +00:00
t3chn0m4g3
dd7fb325b6 add new honeypots to nextgen to prep for ELK setup 
honeytrap testing
 2021-10-01 16:18:10 +00:00
t3chn0m4g3
ab092faa2c prep conpot rebuild 2021-10-01 15:10:37 +00:00
t3chn0m4g3
28681ef398 prep heralding rebuild 2021-10-01 14:32:24 +00:00
t3chn0m4g3
eefd38a335 bump elastic stack to 7.15.0 
no image upgrade before 7.15.1
 2021-09-30 20:40:42 +00:00
t3chn0m4g3
261b380db7 cleaup fatt, bump suricata to 6.0.3 2021-09-30 19:39:59 +00:00
t3chn0m4g3
77e2dd2da6 cleanup spiderfoot, prep fatt rebuild 2021-09-30 19:14:11 +00:00
t3chn0m4g3
183136c1f1 bump spiderfoot to v3.4 2021-09-30 17:03:28 +00:00
t3chn0m4g3
1fe0247095 prep p0f, medpot for image rebuild 2021-09-30 15:58:10 +00:00
t3chn0m4g3
adab02a067 prep for updated nginx image 2021-09-28 19:51:08 +00:00
t3chn0m4g3
58aa3162cb prep for ewsposter fix 2021-09-28 15:58:15 +00:00
t3chn0m4g3
405ee521a6 prep ubuntu rebuild for honeytrap 2021-09-24 17:09:55 +00:00
t3chn0m4g3
9a3465aef1 bump cowrie to latest master, prep for rebuild 2021-09-24 17:03:55 +00:00
t3chn0m4g3
e23c57e58d some tests with dionaea 2021-09-24 16:10:14 +00:00
t3chn0m4g3
44749fe9e7 bump honeysap to alpine3.11 2021-09-24 15:47:05 +00:00
t3chn0m4g3
f5d11bb008 bump snare, tanner, prep for rebuild 2021-09-24 15:18:59 +00:00
t3chn0m4g3
efa9d991ba revert honeypy to alpine 2021-09-23 22:28:33 +00:00
t3chn0m4g3
a7faafeba9 test mailoney 2021-09-23 21:50:37 +00:00
t3chn0m4g3
f05abc07c9 cleanup 2021-09-23 21:20:25 +00:00
t3chn0m4g3
eeae863820 revert to alpine 2021-09-23 21:11:24 +00:00
t3chn0m4g3
9f9d1a65bd debian test 2021-09-23 20:53:38 +00:00
t3chn0m4g3
a48840d1b2 prep rdpy for debian rebuild 2021-09-23 20:15:33 +00:00
t3chn0m4g3
48de3d846c fix typo in crontab 2021-09-23 10:00:20 +00:00
t3chn0m4g3
122135dd80 prepare rebuilding dicompot 2021-09-20 21:57:39 +00:00
t3chn0m4g3
8576e576a6 prep mailoney for rebuild 2021-09-20 20:20:04 +00:00
t3chn0m4g3
32e1e8a8ea prep for rebuilding ciscoasa, elasticpot, honeypy 2021-09-20 16:08:16 +00:00
t3chn0m4g3
ed224215a4 tweak cyberchef image for better security, prep citrixhoneypot for rebuild 2021-09-20 14:29:42 +00:00
t3chn0m4g3
e9c03e512c prep rebuild for adbhoney, cyberchef 2021-09-20 09:15:28 +00:00
t3chn0m4g3
ed0c5aa89f add logstash-output-gelf, fixes #861 2021-09-15 17:39:04 +00:00