Alex-Devera/tpotce
1
0
Fork 0
mirror of https://github.com/telekom-security/tpotce.git synced 2025-05-02 13:18:52 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
1705 commits 8 branches 18 tags 388 MiB
Commit graph

542 commits

Author SHA1 Message Date
t3chn0m4g3
2a4fe20b88 work in progress (map, wordpot) 2022-02-09 19:13:18 +00:00
t3chn0m4g3
278c7aa61a bump elastic stack to 7.17.0 2022-02-02 22:57:50 +00:00
t3chn0m4g3
b37178ba98 tweaking honeysap, rdpy, editions, installer 
move honeysap, rdpy to deprecated as currently no Py3 version available
remove honeysap, rdpy from editions
adjust installer for running on ARM64 (post-install)
 2022-01-31 16:59:36 +00:00
t3chn0m4g3
778c6c6a70 tweak cyberchef size by removing zip 2022-01-30 01:07:12 +00:00
t3chn0m4g3
72289e07d6 tweaking for nginx, cyberchef, elasticvue 
create builder for cyberchef and elasticvue based on respective masters
builders will build webapps and copy output to nginx html folder as tgz
some tweaking for elasticvue to properly load original favicon
with cyberchef now run as nginx webapp we gain another 40MB of RAM
while webapps will be built on AMD64 all final docker images can now be built as multi arch images for AMD64 and ARM64
 2022-01-30 00:48:10 +00:00
t3chn0m4g3
a51744988f adjust editions for new nginx 2022-01-29 00:45:41 +00:00
t3chn0m4g3
e6f392a098 Tweaking 
Finalize qhoneypots config, thanks to @giga-a for native JSON logging!
Completely rework T-Pot Landing Page based on Bento (https://github.com/migueravila/Bento).
New NGINX image is down by 100MB and only uses 3.3 MB of RAM at runtime.
Keep legacy Sensor option (without logstash).
 2022-01-29 00:00:29 +00:00
t3chn0m4g3
12a413b4cb replace es-head with elasticvue, tweaking 
es-head does not support building with ARM64 and had to be replaced with the even better elasticvue
elasticvue will now run within the nginx container, freeing some RAM :) on the way
 2022-01-27 02:39:23 +00:00
t3chn0m4g3
6a277fd1e9 dionaea: adjust for multiarch builds 2022-01-24 01:31:31 +00:00
t3chn0m4g3
cfcf870da3 elasticsearch, kibana: prep for multiarch, move to ubuntu 
heade: alpine 3.15
 2022-01-23 21:12:34 +00:00
t3chn0m4g3
a507bc5f39 logstash cleanup, prep for multiarch, move to ubuntu 
log4pot tweaking
 2022-01-23 14:49:07 +00:00
t3chn0m4g3
ae18cb592e tweaking, prep for docker buildx 2022-01-22 01:04:21 +00:00
t3chn0m4g3
ef31fc155b re-add FROMURL example for Suricata in compose files 2022-01-20 18:34:51 +00:00
t3chn0m4g3
3524bafda2 Cleanup, Tweaking 
Remove old Sensor Edition and replace with Pot Edition
Rename Pot Edition to new Sensor Edition
POT is now called SENSOR
 2022-01-20 18:26:43 +00:00
t3chn0m4g3
66b4ef047a bump tanner to latest master, alpine 3.15 2022-01-20 17:47:29 +00:00
t3chn0m4g3
2586e10285 Bump Mailoney to Alpine 3.15, reduced to Mailoney Code, no PyPi 2022-01-20 16:31:40 +00:00
t3chn0m4g3
602d1cc673 bump Elastic Stack to 7.16.3, change deprecated fields 2022-01-20 10:32:10 +00:00
t3chn0m4g3
22acb6fa84 bump to Alpine 3.15 2022-01-19 00:46:04 +00:00
t3chn0m4g3
2a7ff7b3cb update Dockerfiles 2022-01-18 01:10:20 +00:00
t3chn0m4g3
889c85e248 update Dockerfiles 2022-01-18 00:50:23 +00:00
t3chn0m4g3
d301cf0447 tweaking, remove honeypy => deprecated 2022-01-17 17:45:03 +00:00
t3chn0m4g3
c611101987 improve nginx logging 2022-01-17 17:15:04 +00:00
Marco Ochse
cac7cdcec6 fix data fields with regard to the request field, log4pot, nginx 2022-01-17 17:10:48 +01:00
t3chn0m4g3
a07918d149 update log4pot to the latest master 2022-01-17 14:52:32 +00:00
t3chn0m4g3
68d6aa4180 fix data fields with regard to the request field, log4pot, nginx 2022-01-17 14:50:50 +00:00
t3chn0m4g3
0e5986d2df Tweaking 
Remove Elasticsearch-Curator in packages, configs and references (BREAKING CHANGE)
Add Index Lifecycle Management in favor of elasticsearch-curator
Point all images to 2203 tags
 2022-01-14 15:52:08 +00:00
t3chn0m4g3
86479db8af fix packaging 2022-01-14 13:05:05 +00:00
t3chn0m4g3
eca395a770 fix packaging 2022-01-14 12:54:53 +00:00
t3chn0m4g3
3792a5f6a1 fix packaging 2022-01-14 12:51:15 +00:00
t3chn0m4g3
e7e521edba tweaking 2022-01-12 01:28:06 +00:00
t3chn0m4g3
7d012726b7 tweaking 2022-01-11 15:43:45 +00:00
t3chn0m4g3
d6ea4cdde2 prep for elk 8.x, pave way for next t-pot release 2022-01-07 18:03:00 +00:00
t3chn0m4g3
fb49a77180 tweaking, json_batch transfer to hive 2022-01-07 15:41:57 +00:00
t3chn0m4g3
467dfae320 cleanup, move to correct folders 2022-01-04 18:35:44 +00:00
t3chn0m4g3
788a4c4f98 prepare for new attack map feature 
tweaking, cleanup
 2022-01-04 16:16:27 +00:00
t3chn0m4g3
68b080a3a8 Work in progress! 
This is the foundation for the distributed T-Pot feature,
highly work in progress, only works with local docker image builds,
will be available for prod for upcoming T-Pot 22xx.
 2022-01-03 18:24:17 +00:00
t3chn0m4g3
ef1a1fa057 Merge branch 'master' of https://github.com/telekom-security/tpotce 2021-12-21 11:37:18 +00:00
t3chn0m4g3
daf41b4b71 tweaking 2021-12-21 11:36:38 +00:00
t3chn0m4g3
0bca794fe7 bump log4pot to latest master 
rebuild on ubuntu for payload download support
 2021-12-20 18:40:38 +00:00
t3chn0m4g3
aaccb43471 bump elk stack to 7.16.2 
ELK 7.16.2 includes log4j 2.17.0 to address latest issues
 2021-12-20 11:17:18 +00:00
t3chn0m4g3
b0339610a2 Prep for Log4Pot integration 2021-12-16 20:25:40 +00:00
t3chn0m4g3
a98b447556 ELK 7.16.1 fixes log4j vulns. 2021-12-13 15:59:48 +00:00
t3chn0m4g3
b4c1805551 disable log4j lookups 2021-12-13 10:54:07 +00:00
t3chn0m4g3
0ef2e89cac remove log4j JndiLookup Class 2021-12-13 10:35:22 +00:00
t3chn0m4g3
5f29516197 tweaking 2021-12-08 23:55:13 +00:00
Marco Ochse
ff1c12e848
Disable FATT submissions for now 2021-11-30 16:04:58 +01:00
t3chn0m4g3
ce39e1bd4f logstash logging for honeypots 2021-11-19 23:20:13 +00:00
t3chn0m4g3
6c155ad87f add qeeqbox honeypots 2021-11-18 19:55:44 +00:00
t3chn0m4g3
81b8242c68 bump ewsposter to latest master 2021-11-18 13:48:02 +00:00
t3chn0m4g3
d2cbf6ebbc build fix for tanner 2021-11-18 13:39:05 +00:00
Marco Ochse
591be0791b
Fixes #939 
https://stackoverflow.com/questions/28785383/how-to-disable-persistence-with-redis
 2021-11-18 13:05:01 +01:00
t3chn0m4g3
adee51bee5 bump heralding to latest master 2021-11-16 18:23:25 +00:00
t3chn0m4g3
b214db6e9d bump cowrie to 2.3.0, ewsposter to 1.21 2021-11-05 17:43:47 +00:00
t3chn0m4g3
c9b909e51d finetune new honeypots logging 2021-11-02 19:13:28 +00:00
t3chn0m4g3
db74c610ad bump hellpot to 0.3 and train config for CVE-2021-39341 2021-11-01 13:36:44 +00:00
t3chn0m4g3
ea624351b5 finetuning logstash.conf for new honeypots 2021-10-29 16:28:16 +00:00
t3chn0m4g3
c1eb9f7216 logstash parsing for ddospot, hellpot 2021-10-28 18:57:55 +00:00
t3chn0m4g3
1a844d13ba start integrating new honeypots into ELK 2021-10-27 16:14:52 +00:00
t3chn0m4g3
348a5d572b bump elastic stack to 7.15.1 2021-10-26 13:56:38 +00:00
t3chn0m4g3
77dcd771df move debian to ubuntu 20.04 2021-10-05 15:26:02 +00:00
t3chn0m4g3
b566b39688 move honeytrap to ubuntu 20.04 
thanks to @adepasquale's work
 2021-10-04 20:19:40 +00:00
t3chn0m4g3
dd7fb325b6 add new honeypots to nextgen to prep for ELK setup 
honeytrap testing
 2021-10-01 16:18:10 +00:00
t3chn0m4g3
ab092faa2c prep conpot rebuild 2021-10-01 15:10:37 +00:00
t3chn0m4g3
28681ef398 prep heralding rebuild 2021-10-01 14:32:24 +00:00
t3chn0m4g3
eefd38a335 bump elastic stack to 7.15.0 
no image upgrade before 7.15.1
 2021-09-30 20:40:42 +00:00
t3chn0m4g3
261b380db7 cleaup fatt, bump suricata to 6.0.3 2021-09-30 19:39:59 +00:00
t3chn0m4g3
77e2dd2da6 cleanup spiderfoot, prep fatt rebuild 2021-09-30 19:14:11 +00:00
t3chn0m4g3
183136c1f1 bump spiderfoot to v3.4 2021-09-30 17:03:28 +00:00
t3chn0m4g3
1fe0247095 prep p0f, medpot for image rebuild 2021-09-30 15:58:10 +00:00
t3chn0m4g3
adab02a067 prep for updated nginx image 2021-09-28 19:51:08 +00:00
t3chn0m4g3
58aa3162cb prep for ewsposter fix 2021-09-28 15:58:15 +00:00
t3chn0m4g3
405ee521a6 prep ubuntu rebuild for honeytrap 2021-09-24 17:09:55 +00:00
t3chn0m4g3
9a3465aef1 bump cowrie to latest master, prep for rebuild 2021-09-24 17:03:55 +00:00
t3chn0m4g3
e23c57e58d some tests with dionaea 2021-09-24 16:10:14 +00:00
t3chn0m4g3
44749fe9e7 bump honeysap to alpine3.11 2021-09-24 15:47:05 +00:00
t3chn0m4g3
f5d11bb008 bump snare, tanner, prep for rebuild 2021-09-24 15:18:59 +00:00
t3chn0m4g3
efa9d991ba revert honeypy to alpine 2021-09-23 22:28:33 +00:00
t3chn0m4g3
a7faafeba9 test mailoney 2021-09-23 21:50:37 +00:00
t3chn0m4g3
f05abc07c9 cleanup 2021-09-23 21:20:25 +00:00
t3chn0m4g3
eeae863820 revert to alpine 2021-09-23 21:11:24 +00:00
t3chn0m4g3
9f9d1a65bd debian test 2021-09-23 20:53:38 +00:00
t3chn0m4g3
a48840d1b2 prep rdpy for debian rebuild 2021-09-23 20:15:33 +00:00
t3chn0m4g3
48de3d846c fix typo in crontab 2021-09-23 10:00:20 +00:00
t3chn0m4g3
122135dd80 prepare rebuilding dicompot 2021-09-20 21:57:39 +00:00
t3chn0m4g3
8576e576a6 prep mailoney for rebuild 2021-09-20 20:20:04 +00:00
t3chn0m4g3
32e1e8a8ea prep for rebuilding ciscoasa, elasticpot, honeypy 2021-09-20 16:08:16 +00:00
t3chn0m4g3
ed224215a4 tweak cyberchef image for better security, prep citrixhoneypot for rebuild 2021-09-20 14:29:42 +00:00
t3chn0m4g3
e9c03e512c prep rebuild for adbhoney, cyberchef 2021-09-20 09:15:28 +00:00
t3chn0m4g3
ed0c5aa89f add logstash-output-gelf, fixes #861 2021-09-15 17:39:04 +00:00
t3chn0m4g3
9de1bdd0b5 tweaking, bump elastic stack to 7.14.1, rebuild dashboards 2021-09-15 15:58:44 +00:00
t3chn0m4g3
06ef8850fe prep for ELK 7.13.4, start full integration of new honeypots 2021-08-25 15:04:27 +00:00
t3chn0m4g3
2aa4c3c2c6 disable ntp server on host, start working on ddospot 2021-07-09 23:16:19 +00:00
t3chn0m4g3
0867d8f011 prep for redishoneypot 2021-07-05 19:59:44 +00:00
t3chn0m4g3
a2071eb4d2 hellpot cleanup and prep for endlessh 2021-07-03 15:51:32 +00:00
t3chn0m4g3
e6402b793c start including hellpot 2021-07-02 22:12:47 +00:00
t3chn0m4g3
4cb84166c5 bump ewsposter to 1.2.0, elk stack to 7.13.2 2021-06-28 16:30:40 +00:00
t3chn0m4g3
b6be931641 prep for new ewsposter, rollout to follow next week 2021-06-24 16:26:53 +00:00
t3chn0m4g3
f51ab7ec0f prepare to bump elastic stack to 7.13.1 2021-06-10 17:03:22 +00:00
t3chn0m4g3
de38e5e86f Rebuild Logstash, Elasticsearch 
Setting static limits for Elasticsearch / Logstash on Xms, Xmx and Container RAM results in unwanted side effects for some installations. With Elastic supporting dynamic heap management for Java 14+ we now use OpenJDK 16 JRE and as such remove limitations. This should improve stability for T-Pot, provided the minimum requirements will be met.
 2021-05-26 11:00:49 +00:00
t3chn0m4g3
0c5ab33b8a bump elastic stack to 7.12.1 2021-05-17 16:32:03 +00:00