Alex-Devera/tpotce
1
0
Fork 0
mirror of https://github.com/telekom-security/tpotce.git synced 2026-05-29 17:24:15 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
2167 commits 9 branches 18 tags 463 MiB
Commit graph

787 commits

Author SHA1 Message Date
t3chn0m4g3
653bb2ed1e Disable Scalable Vector Engine (XX:UseSVE=0) to fix issues on macOS and other ARM platforms 
https://github.com/elastic/elasticsearch/issues/118583
 2025-01-06 13:20:54 +01:00
t3chn0m4g3
f6398f9cbb fixes #1715 2024-12-16 13:30:08 +01:00
t3chn0m4g3
d7c26b49ed update elk objects 2024-12-10 14:05:00 +01:00
t3chn0m4g3
ca40bab5ee update version tag to 24.04.1 2024-12-10 10:37:24 +01:00
t3chn0m4g3
663b509e90 go-pot: 
- remove conflicting field ("type")
- ranme duration => session_duration
 2024-12-09 19:44:15 +01:00
t3chn0m4g3
c710aa83f0 bump go-pot to latest release (v1.0.0) 2024-12-09 18:11:29 +01:00
t3chn0m4g3
e43e8277fc tweaking nginx, ddospot: 
- Remove ddospot from standard
- Add ddospot only to tarpit
- Decouple nginx from host mode, only export tcp/64297, tcp/64294
- Adjust editions accordingly
- Keep LUA settings in Nginx config for now, just in case we find a different use case
 2024-12-09 17:38:25 +01:00
t3chn0m4g3
a67a765dd7 bump to node 20.15.1 2024-12-06 13:09:27 +01:00
t3chn0m4g3
9ce2204c4b cleanup 2024-12-06 12:52:24 +01:00
t3chn0m4g3
35fd6da287 bump elastic stack to 8.16.1 2024-12-06 12:28:20 +01:00
t3chn0m4g3
ce6eef8dc0 update version tag 2024-12-06 11:07:34 +01:00
t3chn0m4g3
d416d2e56b tweaking / improving: 
- add glutton to builder
- reduce parallel builds to 2
- require root for tc
- add docker logins
 2024-12-06 09:55:31 +01:00
t3chn0m4g3
59cc5c7d38 housekeeping 2024-12-05 22:39:01 +01:00
t3chn0m4g3
7f2667cea8 tweaking, cleanup 2024-12-05 21:12:18 +01:00
t3chn0m4g3
2b3a45c800 tweaking 2024-12-05 19:32:20 +01:00
t3chn0m4g3
c155c96945 tweaking 2024-12-05 18:14:27 +01:00
t3chn0m4g3
2c639a2dd8 Optimize image, pyinstaller 2024-12-05 18:13:16 +01:00
t3chn0m4g3
967ddf6d2f tweaking: 
- bump nginx to alpine 3.20
- bump cyberchef to latest release
- bump elasticvue to latest release
- update nginx config
 2024-12-04 20:55:39 +01:00
t3chn0m4g3
b75e22cabc bump to alpine:3.20 and optimize image using either from:scratch or pyinstaller 2024-12-04 20:52:30 +01:00
t3chn0m4g3
2747719f05 tweaking: 
- bump suricata to 7.0.7, update config, remove broadcast, multicast, netbios, igmp and mdns using capture-filter.bpf
 2024-12-04 20:50:06 +01:00
t3chn0m4g3
486c97335f update mailoney for py <= 3.11 
- working commands and mail log
- hostname obfuscation
- update server string
 2024-12-03 19:26:18 +01:00
t3chn0m4g3
13f97a6c76 update for py3.12, ubuntu 24.04 2024-11-29 20:39:22 +01:00
t3chn0m4g3
b0eb74b0af bump to latest master, optmize image 2024-11-29 17:58:07 +01:00
t3chn0m4g3
0b4a1fea68 housekeeping 2024-11-29 17:21:38 +01:00
t3chn0m4g3
23b11aabe9 bump to ubuntu 24.10 2024-11-29 17:19:08 +01:00
t3chn0m4g3
a0687e7c92 optimize build 2024-11-29 16:47:57 +01:00
t3chn0m4g3
646b0fddd3 revert build changes, keep optimization 2024-11-29 16:47:36 +01:00
t3chn0m4g3
ef8e71007c update go-pot to latest master 
tweaking
 2024-11-29 14:44:23 +01:00
t3chn0m4g3
8282084d49 bump to latest master, optimize 2024-11-29 13:01:18 +01:00
t3chn0m4g3
1280bfd096 tweaking 2024-11-28 19:22:33 +01:00
t3chn0m4g3
7a9a5a21f2 bump to latest master 2024-11-28 18:57:51 +01:00
t3chn0m4g3
25d98cbce9 bump hellpot to latest master, hardening 2024-11-28 17:17:25 +01:00
t3chn0m4g3
adefcca2fc tweaking, hardening 2024-11-28 15:55:27 +01:00
t3chn0m4g3
0a0f62405a tweaking, prep for new go-pot release 2024-11-28 15:00:22 +01:00
t3chn0m4g3
c6f71d9600 bump glutton to latest master 2024-11-28 12:03:57 +01:00
t3chn0m4g3
882ad6f7d1 update llm model, reduce image size 2024-11-26 19:38:19 +01:00
t3chn0m4g3
a05b290c20 bump base image 2024-11-26 18:25:41 +01:00
t3chn0m4g3
5cdf018adf bump base images 2024-11-26 17:05:30 +01:00
t3chn0m4g3
d28fcb6a22 Decrease image size, use pyinstaller 2024-11-26 13:38:26 +01:00
t3chn0m4g3
626b657082 Tweaking 
- Ciscoasa, update py package
- Cowrie, remove build artifact
- Dicompot, harden image
- Dionaea, hardening, update for py3.12
 2024-11-26 11:49:31 +01:00
t3chn0m4g3
21a16a6c1c bump cowrie to latest master 2024-11-22 13:48:55 +01:00
t3chn0m4g3
42a4dcc63f switch branch 2024-11-22 13:00:09 +01:00
t3chn0m4g3
c0b78eb25d update for py3.12, pyinstaller, harden image 2024-11-20 00:48:06 +01:00
t3chn0m4g3
5da84a5c74 bump cowrie to latest master 2024-11-19 18:06:23 +01:00
t3chn0m4g3
8c7636bd94 Update conpot for scapy 2.4.5 2024-11-19 17:18:46 +01:00
t3chn0m4g3
f04455544e update for py 3.12, harden image 2024-11-19 16:34:04 +01:00
t3chn0m4g3
09716a30c1 switch to pyinstaller from pypi 2024-11-19 15:10:57 +01:00
t3chn0m4g3
4f0db18fc1 Update ciscoasa for py3.12 
harden image
 2024-11-19 14:38:00 +01:00
t3chn0m4g3
521d551b08 update beelzebub for golang 1.23 
- harden image
 2024-11-14 17:12:55 +01:00
t3chn0m4g3
422123139d update adbhoney for py 3.12 2024-11-14 16:23:06 +01:00
t3chn0m4g3
817fac6b45 add h0neytr4p honeypot 2024-11-12 21:51:39 +01:00
t3chn0m4g3
78fe0b32a4 fix for multi platform builds 2024-10-19 02:12:09 +02:00
t3chn0m4g3
2b8dbea4e2 Finalize honeyaml integration, tweaking 2024-10-18 22:33:38 +02:00
t3chn0m4g3
05461d6925 Begin integration of honeyaml 2024-10-18 21:59:29 +02:00
t3chn0m4g3
c7e6f5a66f Finalize Miniprint integration, tweaking 2024-10-16 14:14:22 +02:00
Marco Ochse
321df862e7
Merge pull request #1680 from telekom-security/master 
Merge with master
 2024-10-16 11:57:34 +02:00
Marco Ochse
c9a87f9f0f
Merge pull request #1643 from sarkoziadam/master 
Fix conpot docker image errors
 2024-10-16 11:54:18 +02:00
t3chn0m4g3
7b9d423878 start miniprint integration 2024-10-15 19:00:15 +02:00
t3chn0m4g3
9acf738f10 add go-pot to builder 2024-10-14 15:10:20 +02:00
t3chn0m4g3
9b46b0120a Add go-pot honeypot 2024-10-11 20:43:08 +02:00
t3chn0m4g3
47821941b5 Update ReadMe for LLM honeypots and tweaking 2024-10-08 15:07:05 +02:00
t3chn0m4g3
c0b4dd1f8e Finalize adding galah 2024-10-04 20:03:09 +02:00
Marco Ochse
c6d76f51fb
Merge pull request #1662 from telekom-security/master 
Sync with master
 2024-09-28 15:13:43 +02:00
Nick Young
dd741e94b0
Correct SSH version in cowrie.cfg 2024-09-27 16:37:23 +12:00
t3chn0m4g3
b66e482837 Continue working on Galah 2024-09-24 16:13:16 +02:00
t3chn0m4g3
b2467d4f40 Start working on Galah 2024-09-17 18:27:27 +02:00
t3chn0m4g3
33a197f4a6 Remove legacy builder 2024-09-12 06:51:36 +00:00
t3chn0m4g3
680671b9dc fix install packages section 2024-09-11 12:41:32 +00:00
t3chn0m4g3
29ad2a507d Finish work on new builder, tweaking 2024-09-11 10:42:17 +00:00
t3chn0m4g3
4f3edb61b3 continue work on new image builder 2024-09-09 16:44:47 +00:00
t3chn0m4g3
e31fbeb6f0 pin beelzebub docker build to go 1.20 2024-09-09 16:52:52 +02:00
t3chn0m4g3
024d79d001 Continue work on builder 
- add conditional proxy support
- use xargs to parallelize image builds
- some tweaking and notes
 2024-09-07 00:35:04 +00:00
t3chn0m4g3
acf09bc160 fix build pipeline issue with Kibana 
- qemu-aarch64: /usr/share/kibana/bin/../node/bin/node: PT_GNU_PROPERTY too large
- Kibana's packaged node is the culprit, replacing it fixes build issues with x64 qemu building docker arm64 images
 2024-09-06 14:45:51 +00:00
t3chn0m4g3
a948337a2f revert to ubuntu 2024-09-05 21:43:07 +00:00
t3chn0m4g3
5287224015 continue work on builder 2024-09-05 19:49:52 +00:00
t3chn0m4g3
e346316945 adjust config for beelzebub 2024-09-05 16:33:17 +02:00
t3chn0m4g3
cec948b083 change pull policy, continue work on new builder 2024-09-05 13:09:35 +00:00
t3chn0m4g3
1db52b2591 begin rework builder 2024-09-05 12:38:33 +00:00
t3chn0m4g3
429d74472c Add Beelzebub 2024-09-04 21:45:00 +02:00
sarkoziadam
4191cf24b3
Fix conpot docker image errors 
Version of pysmi set to previous release, FtpReader function has been removed from the new release
 2024-08-24 22:46:20 +02:00
t3chn0m4g3
53314b19a1 bump elastic stack to 8.14.2 2024-07-08 15:46:22 +02:00
t3chn0m4g3
025ab2db46 update cowrie 2024-07-02 16:23:42 +02:00
t3chn0m4g3
8f3966a675 Remove deprecated version tag from docker compose files 
Bump Elastic Stack to 8.13.4
 2024-06-19 16:10:03 +02:00
Marco Ochse
a510e28ef1 Include config option to disable SSL verification 
Adjust README accordingly
Fixes #1543
 2024-06-04 15:33:28 +02:00
Lukas Rist
1078ce537d
Update Glutton Dockerfile 2024-05-07 14:26:18 +02:00
Marco Ochse
3f087b0182
Update entrypoint.sh 2024-05-06 19:37:34 +02:00
Marco Ochse
3b94af2d5e
Optimize for linux 2024-05-06 19:22:33 +02:00
Marco Ochse
99539562f2
Prepare fix for Docker Desktop in Windows 2024-05-05 18:57:59 +02:00
Marco Ochse
caca93f3a0 #1531, but needs testing 2024-05-02 13:43:16 +02:00
Marco Ochse
775bc2c1dd update hptest.sh 2024-04-29 19:03:49 +02:00
Marco Ochse
85431b308d add 24.04 version tag 2024-03-24 19:22:37 +01:00
Marco Ochse
cf5df3b60b continue with documentation 
fix tpotinit entrypoint.sh to resolve a conflict with sensor deployment where data folder is not yet owned by tpot user
 2024-03-22 20:47:39 +01:00
Marco Ochse
e21eb1aef6 begin with documentation 2024-03-21 19:32:10 +01:00
t3chn0m4g3
234fb16394 tweaking 
where possible kibana visualizations are converted to lens objects (more than 100 objects)
all dashboards have been updated
fixes #1392 for leaving SentryPeer log tag out
add wordpot dashboard
after discussion (#1486) and testing iptables-legacy is no longer required
include all kibana objects for installation
cleaning up some service scripts
 2024-03-18 16:19:49 +01:00
t3chn0m4g3
3546e31a7c tweaking 2024-03-15 22:41:12 +01:00
t3chn0m4g3
fe5eac0104 add genuser.sh, fix errors 
macOS and Windows might not have htpasswd tools available, so adding this to the tpotinit image. users can run genuser.sh which simply contains a docker command to run tpotinit to create a user and add it to the T-Pot config (.env).
Fix an issue where WEB_USER was added with hyphens
Fix issues where shebang was incorrect
Update .env / env.example
 2024-03-13 16:30:17 +01:00
t3chn0m4g3
1e5e57a52b fix git tree error 2024-03-12 17:37:23 +01:00
t3chn0m4g3
540d5574d1 cleanup, tweaking, updating 
make tpotinit aware of sigterm events to unload blackhole routes, firewall rules
fixes #1204 where citrixhoneypot logs use logs instead of log folder
bump ELK stack to 8.12.2
add wordpot logs to logstash pipeline
bump t-pot attackmap to 2.2.0, alpine 3.19
 2024-03-12 17:03:43 +01:00
t3chn0m4g3
1da35284be update, tweaking, add 
add wordpot incl. json logging with activated plugins
bump snare, tanner, phpox, tanner_redis to latest master and to alpine 3.19
 2024-03-11 17:33:53 +01:00
t3chn0m4g3
4baac7ac04 update esvue, cleanup 2024-03-11 09:45:01 +01:00