Alex-Devera/tpotce
1
0
Fork 0
mirror of https://github.com/telekom-security/tpotce.git synced 2025-04-28 19:28:50 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
1631 commits 8 branches 18 tags 388 MiB
Commit graph

515 commits

Author SHA1 Message Date
t3chn0m4g3
a7faafeba9 test mailoney 2021-09-23 21:50:37 +00:00
t3chn0m4g3
f05abc07c9 cleanup 2021-09-23 21:20:25 +00:00
t3chn0m4g3
eeae863820 revert to alpine 2021-09-23 21:11:24 +00:00
t3chn0m4g3
9f9d1a65bd debian test 2021-09-23 20:53:38 +00:00
t3chn0m4g3
a48840d1b2 prep rdpy for debian rebuild 2021-09-23 20:15:33 +00:00
t3chn0m4g3
48de3d846c fix typo in crontab 2021-09-23 10:00:20 +00:00
t3chn0m4g3
122135dd80 prepare rebuilding dicompot 2021-09-20 21:57:39 +00:00
t3chn0m4g3
8576e576a6 prep mailoney for rebuild 2021-09-20 20:20:04 +00:00
t3chn0m4g3
32e1e8a8ea prep for rebuilding ciscoasa, elasticpot, honeypy 2021-09-20 16:08:16 +00:00
t3chn0m4g3
ed224215a4 tweak cyberchef image for better security, prep citrixhoneypot for rebuild 2021-09-20 14:29:42 +00:00
t3chn0m4g3
e9c03e512c prep rebuild for adbhoney, cyberchef 2021-09-20 09:15:28 +00:00
t3chn0m4g3
ed0c5aa89f add logstash-output-gelf, fixes #861 2021-09-15 17:39:04 +00:00
t3chn0m4g3
9de1bdd0b5 tweaking, bump elastic stack to 7.14.1, rebuild dashboards 2021-09-15 15:58:44 +00:00
t3chn0m4g3
06ef8850fe prep for ELK 7.13.4, start full integration of new honeypots 2021-08-25 15:04:27 +00:00
t3chn0m4g3
2aa4c3c2c6 disable ntp server on host, start working on ddospot 2021-07-09 23:16:19 +00:00
t3chn0m4g3
0867d8f011 prep for redishoneypot 2021-07-05 19:59:44 +00:00
t3chn0m4g3
a2071eb4d2 hellpot cleanup and prep for endlessh 2021-07-03 15:51:32 +00:00
t3chn0m4g3
e6402b793c start including hellpot 2021-07-02 22:12:47 +00:00
t3chn0m4g3
4cb84166c5 bump ewsposter to 1.2.0, elk stack to 7.13.2 2021-06-28 16:30:40 +00:00
t3chn0m4g3
b6be931641 prep for new ewsposter, rollout to follow next week 2021-06-24 16:26:53 +00:00
t3chn0m4g3
f51ab7ec0f prepare to bump elastic stack to 7.13.1 2021-06-10 17:03:22 +00:00
t3chn0m4g3
de38e5e86f Rebuild Logstash, Elasticsearch 
Setting static limits for Elasticsearch / Logstash on Xms, Xmx and Container RAM results in unwanted side effects for some installations. With Elastic supporting dynamic heap management for Java 14+ we now use OpenJDK 16 JRE and as such remove limitations. This should improve stability for T-Pot, provided the minimum requirements will be met.
 2021-05-26 11:00:49 +00:00
t3chn0m4g3
0c5ab33b8a bump elastic stack to 7.12.1 2021-05-17 16:32:03 +00:00
trixam
60e57bce52
Update update.sh 
Adding quotation marks for $URL
 2021-05-03 14:40:08 +02:00
trixam
dceaa984c9
Update update.sh 
Download rules via URL
 2021-04-21 12:44:36 +02:00
t3chn0m4g3
532907c27c rebuild honeytrap 2021-02-25 11:57:16 +00:00
t3chn0m4g3
fb860fb861 fix protocols for conpot testing 2021-02-25 11:55:51 +00:00
t3chn0m4g3
7d423f29da rebuild snare, tanner, redis, phpox 2021-02-19 13:02:08 +00:00
t3chn0m4g3
d5f0ceb15b push elastic stack to 7.11.1 2021-02-19 10:17:30 +00:00
t3chn0m4g3
5f38e730d4 rebuild conpot for latest alpine edge, bump to latest master 2021-02-18 17:39:52 +00:00
t3chn0m4g3
c48ad0863d bump ewsposter to latest master 2021-02-18 16:52:43 +00:00
t3chn0m4g3
4bc2b1bf03 rebuild cowrie for alpine 3.13 2021-02-18 16:38:35 +00:00
t3chn0m4g3
3d123f35a4 rebuild glutton for alpine 3.13, update to latest master 2021-02-18 11:12:21 +00:00
t3chn0m4g3
d4519892f6 rebuild dionaea 2021-02-18 10:37:17 +00:00
t3chn0m4g3
69c535619d bump heralding to 1.0.7 and rebuild for alpine 1.13 2021-02-16 16:59:17 +00:00
t3chn0m4g3
5fe59c3bd8 rebuild ipphoney for alpine 3.13 2021-02-16 16:14:37 +00:00
t3chn0m4g3
d8d0a6f190 rebuild fatt for alpine 3.13 2021-02-16 13:27:56 +00:00
t3chn0m4g3
4d407b420d rebuild ewsposter for alpine 3.13 2021-02-16 13:15:26 +00:00
t3chn0m4g3
181e3585b7 bump spiderfoot to 3.3 and rebuild for alpine 3.13 2021-02-16 11:01:43 +00:00
t3chn0m4g3
2597af73ee rebuild dicompot for alpine 3.13 2021-02-15 12:34:11 +00:00
t3chn0m4g3
0ab220ebf0 rebuild p0f for alpine 3.13 2021-02-15 12:12:24 +00:00
t3chn0m4g3
2777fc1f41 rebuild medpot for alpine 3.13 2021-02-15 12:09:19 +00:00
t3chn0m4g3
91483a231d rebuild honeysap 2021-02-15 11:46:55 +00:00
t3chn0m4g3
95ea079f4d rebuild heimdall, nginx for php7.4, alpine 3.13 2021-02-15 11:00:00 +00:00
t3chn0m4g3
8112f48270 rebuild elasticpot for alpine 3.13 2021-02-15 10:14:52 +00:00
t3chn0m4g3
898f8be4db rebuild citrixhoneypot for alpine 3.13 2021-02-15 10:05:29 +00:00
t3chn0m4g3
a28ee97f13 rebuild ciscoasa for alpine 3.13 2021-02-15 10:01:03 +00:00
t3chn0m4g3
f2c48d7efc bump cyberchef to latest release 2021-02-12 17:09:44 +00:00
t3chn0m4g3
039f3c115a update adbhoney image 2021-02-12 14:21:31 +00:00
t3chn0m4g3
80d9efa729 bump elk stack images to alpine 3.13 2021-02-12 13:54:42 +00:00
t3chn0m4g3
e5f29f3c90 bump elk stack to 7.11.0 2021-02-12 13:21:35 +00:00
t3chn0m4g3
ee3d667615 bump dionaea to 0.11.0 2021-01-19 10:59:32 +00:00
t3chn0m4g3
d2dc43e1ef Update internet IF retrieval 
To be consistent with @adepasquale PR #746 fatt, glutton and p0f Dockerfiles were updated accordingly.
 2021-01-06 17:05:09 +00:00
Andrea De Pasquale
b3b983afe6 Change method to get default Suricata interface 
On some systems, interface number 2 is not always the correct one.
With AWK we now collect the first active interface having both an
address and a broadcast.
 2021-01-06 11:14:24 +01:00
t3chn0m4g3
e1745bdea1 fix broken sqlite db 2020-12-28 21:49:28 +00:00
t3chn0m4g3
af6ce8854d bump elastic stack to 7.10.1 2020-12-10 15:20:18 +00:00
t3chn0m4g3
6069b214a5 bump ewsposter to 1.12 2020-12-10 11:40:53 +00:00
t3chn0m4g3
f3f9f6ae72 cleanup 2020-12-03 00:01:38 +00:00
t3chn0m4g3
bdf095367d prep for ewsposter 1.11 2020-12-02 23:21:23 +00:00
t3chn0m4g3
8a7e81815e prep for Elastic Stack 7.10.0 2020-12-02 22:36:17 +00:00
Andrea De Pasquale
87a27e4f2b Suricata: use suricata-update for rule management 
As a bonus we can now run "suricata-update" using docker-exec,
triggering both a rule update and a Suricata rule reload.
 2020-11-30 17:56:14 +01:00
Marco Ochse
2ecef8c607
enable MQTT 
as eagle eyed by @adepasquale
 2020-11-27 19:07:12 +01:00
Andrea De Pasquale
73a5847753 Suricata: update suricata.yaml config to 6.0.x 
Merge in the latest updates from suricata-6.0.x while at the same time
keeping the custom T-Pot configuration.

https://github.com/OISF/suricata/blob/suricata-6.0.0/suricata.yaml.in
 2020-11-26 19:16:01 +01:00
Marco Ochse
c976aea73e
Merge pull request #725 from adepasquale/suricata-yaml-5.x 
Suricata: update suricata.yaml config to 5.x
 2020-11-26 16:23:50 +01:00
t3chn0m4g3
4ada38988c bump cowrie to 2.2.0 2020-11-26 08:17:09 +00:00
Andrea De Pasquale
0010f99662 Suricata: disable eve.stats since it's unused 
Prevent the error below by disabling stats globally and in eve-log:

<Error> - [ERRCODE: SC_ERR_STATS_LOG_GENERIC(278)] - eve.stats: stats are disabled globally: set stats.enabled to true.
 2020-11-25 17:07:49 +01:00
Andrea De Pasquale
e2f76c44cb Suricata: update suricata.yaml config to 5.x 
Merge in the latest updates from suricata-5.x while at the same time
keeping the custom T-Pot configuration.

https://github.com/OISF/suricata/blob/master-5.0.x/suricata.yaml.in
 2020-11-25 15:51:41 +01:00
t3chn0m4g3
e26853c7fa bump suricata to 5.0.4 2020-10-28 17:53:23 +00:00
t3chn0m4g3
d64cbe6741 bump ipphoney to latest master 2020-10-28 17:34:28 +00:00
t3chn0m4g3
c3809b5a98 bump heralding to latest master 2020-10-28 17:27:09 +00:00
t3chn0m4g3
a3d40cc57c bump spiderfoot to 3.2.1 2020-10-28 17:08:55 +00:00
t3chn0m4g3
e3fda4d464 bump dionaea to 0.9.2 2020-10-28 16:45:53 +00:00
t3chn0m4g3
4bf245d13b bump conpot to latest master 2020-10-28 13:56:52 +00:00
t3chn0m4g3
92925cecbd bump dicompot to latest master 2020-10-27 21:30:33 +00:00
t3chn0m4g3
f204cdf9b8 bump elk to 7.3 2020-10-27 19:43:32 +00:00
t3chn0m4g3
ff4a394e3b reverting elk to 7.9.1 2020-10-15 12:24:46 +00:00
Marco Ochse
ce7b79b71a
Merge pull request #707 from brianlechthaler/patch-3 
Bump Elastic dependencies to 7.9.2
 2020-10-15 13:37:11 +02:00
t3chn0m4g3
b28cc2edd0 prepare for new ewsposter 2020-10-15 09:14:30 +00:00
Brian Lechthaler
84a741ec64
IMPORTANT: Fix Node Version 
Bump node version to `10.22.1-alpine`

**KIBANA WILL NOT WORK WITHOUT THIS**
 2020-10-07 13:53:21 -07:00
Brian Lechthaler
d351a89096
Bump Kibana version to 7.9.2 2020-10-04 18:05:16 -07:00
Brian Lechthaler
488da48df7
Bump Logstash version to 7.9.2 2020-10-04 18:04:15 -07:00
Brian Lechthaler
85da099cd0
Bump Elasticsearch to 7.9.2 2020-10-04 18:03:00 -07:00
Brian Lechthaler
b1d8e293de
add DockerHub back in cap filter 
see https://github.com/telekom-security/tpotce/pull/691#issuecomment-688648225
 2020-09-08 10:45:58 -07:00
Brian Lechthaler
7fdf9edb60
Update Suricata Capture Filter for New Docker Repo 2020-09-07 19:57:15 -07:00
t3chn0m4g3
0e7abb8d2c restore mibfix for conpot 2020-09-07 15:46:52 +00:00
t3chn0m4g3
1ee9c29805 set new container registry, point installer to branch 2020-09-04 13:29:14 +00:00
t3chn0m4g3
2e5639a50b fix links 2020-09-04 13:01:21 +00:00
listbot
47dca8b835 continue pin / prep images ghcr 2020-09-04 12:37:28 +00:00
listbot
1ac79d6be7 begin prep for move to GitHub Container Registry 
Start pinning Dockerfiles to specific releases / commits
 2020-09-02 15:18:32 +00:00
t3chn0m4g3
54a6a944aa prep for ipphoney 2020-08-25 12:25:59 +00:00
t3chn0m4g3
b86d2c715b prep for ipphoney 2020-08-24 21:36:08 +00:00
t3chn0m4g3
8f06b5b499 start prepping for ipphoney 2020-08-24 15:55:50 +00:00
t3chn0m4g3
6ec5a04802 fix deps issue with conpot 2020-08-24 15:55:10 +00:00
t3chn0m4g3
5080151b7c prep for elk 7.9 2020-08-24 10:35:46 +00:00
t3chn0m4g3
c1f7146800 prep elk stack for 7.9.0 2020-08-20 15:03:16 +00:00
t3chn0m4g3
743616fa09 update conpot to latest working master 2020-08-13 16:30:37 +00:00
t3chn0m4g3
6e18b6f660 bump elasticpot to latest master 2020-08-13 10:37:03 +00:00
t3chn0m4g3
50d67fc286 bump spiderfoot to 3.1 final 
Fix Spiderfoot issue not showing current scan
 2020-08-13 09:06:49 +00:00
t3chn0m4g3
c28642932a bump elk stack to 7.8.1 2020-08-13 08:34:44 +00:00
t3chn0m4g3
8af45c9440 prevent cowrie from unwanted log rotation 2020-07-07 00:00:57 +00:00
t3chn0m4g3
6d29f504df provide fix for #669 2020-07-06 23:30:11 +00:00
t3chn0m4g3
618ee3c6e9 tweaking 
add kibana export / import config function
ewsposter remove transmitting old elasticpot data (need update)
final export of all objects
 2020-06-29 10:45:33 +00:00
t3chn0m4g3
3a418534d8 tweaking 
random reboot times for crontab
remix compose files
some tweaking
 2020-06-28 20:03:14 +00:00
t3chn0m4g3
4e6510b5c7 dicompot tweaking 2020-06-27 00:37:12 +00:00
t3chn0m4g3
16a7cdb975 tweaking 
Update logstash config for new Dicompot fields
Revert Dionaea back to 0.8.0, latest master was unstable
 2020-06-26 23:48:48 +00:00
t3chn0m4g3
0031980416 cleanup and prepare for docker image rebuilds 2020-06-26 14:34:05 +00:00
t3chn0m4g3
6a98496e8c cleanup and prepare for docker image rebuilds 2020-06-25 22:58:23 +00:00
t3chn0m4g3
ec8f5d9b66 cleanup and prepare for docker image rebuilds 2020-06-25 16:14:37 +00:00
t3chn0m4g3
238a08b055 tweaking 
cleanup index-pattern
add dicompot log to logstash
 2020-06-24 13:21:29 +00:00
t3chn0m4g3
99d8cf9b32 fix for query fields 2020-06-24 10:22:09 +00:00
t3chn0m4g3
81c6351cf1 fix for keeping daily index 2020-06-23 21:40:38 +00:00
t3chn0m4g3
65e849cf33 bump elk stack to 7.8 2020-06-21 21:11:21 +00:00
t3chn0m4g3
a396356785 add honeysap logstash config 2020-06-19 22:53:56 +00:00
t3chn0m4g3
a7c653e7fe start integrating honeysap 2020-06-19 11:54:50 +00:00
t3chn0m4g3
697c5cb3f6 begin integration of dicompot 2020-06-18 16:38:43 +00:00
t3chn0m4g3
2882668826 Add a new elasticsearch honeypot 
adjust installer
adjust elasticpot configs to T-Pot's environment
create Dockerfile
adjust logstash config
update Readme
 2020-06-17 18:09:59 +00:00
t3chn0m4g3
27a5db9edf alpine 3.11 needs py3-pip in extra package 2020-06-16 11:28:56 +00:00
t3chn0m4g3
4cc1aa08c2 tweaking 
Bump ELK stack to 7.7.1
Install curator via pip
Some tweaks
 2020-06-08 21:56:16 +00:00
t3chn0m4g3
be918033e0 bump to ELK 7.7.0 2020-05-14 16:27:57 +00:00
t3chn0m4g3
680194adf7 prep for new listbot FQDN 2020-05-12 09:19:09 +00:00
Marco Ochse
be7afd8042
Merge pull request #636 from dtag-dev-sec/master 
merge master to dev
 2020-05-12 10:31:34 +02:00
Marco Ochse
fea6b8a646
correct typo 
fixes #635
 2020-05-11 17:21:22 +02:00
Marco Ochse
cbefe6a074
Update capture-filter.bpf 2020-04-22 17:49:59 +02:00
Marco Ochse
ed73d83317
Update update.sh 2020-04-22 17:48:32 +02:00
Marco Ochse
34bbbf59ac
Update Dockerfile 2020-04-22 17:16:19 +02:00
Marco Ochse
a6c8d3d712
Update Dockerfile 2020-04-22 17:15:44 +02:00
Marco Ochse
1a7b3b3795
Load listbot data from OTC 2020-04-22 16:50:41 +02:00
t3chn0m4g3
73e1842c16 offload listbot from netlify CDN 2020-04-02 13:12:11 +00:00
t3chn0m4g3
2201e072f6 testing honeysap 2020-03-12 16:02:43 +00:00
t3chn0m4g3
fb06c46793 Merge branch 'dev' of https://github.com/dtag-dev-sec/tpotce into dev 2020-03-09 10:44:36 +00:00
t3chn0m4g3
f76d8ab161 update delivery window 2020-03-09 10:43:52 +00:00
Marco Ochse
a256ecedc8
Merge branch 'master' into dev 2020-03-09 11:20:39 +01:00
t3chn0m4g3
fb3777141b tanner, prepare merger w/ master 2020-03-09 09:44:26 +00:00
t3chn0m4g3
a18304dfdc tanner, prepare merger w/ master 2020-03-09 09:35:19 +00:00
t3chn0m4g3
6a703544c6 tweaking 2020-03-05 23:58:27 +00:00
t3chn0m4g3
941a0e1587 tweaking 2020-03-05 23:22:03 +00:00
t3chn0m4g3
692a21ddb1 tanner tweaking and testing 
include unsecure, fix name bug
 2020-03-05 23:12:49 +00:00
t3chn0m4g3
df22adb45d bump elk stack to 7.6.1 2020-03-05 21:20:11 +00:00
t3chn0m4g3
07c68c85bb tweaking 2020-03-04 14:36:03 +00:00
t3chn0m4g3
a4227e6a9f tweaking 2020-03-04 12:12:12 +00:00
t3chn0m4g3
3b8c959c66 tweaking 2020-03-03 12:30:57 +00:00
t3chn0m4g3
5d7a6f3270 tweaking 2020-03-02 15:23:05 +00:00
t3chn0m4g3
53e9470d58 cleanup 2020-02-27 10:35:50 +00:00
t3chn0m4g3
bf7d1299ca tweaking 2020-02-26 14:22:48 +00:00
t3chn0m4g3
70dca02ce4 tweaking 2020-02-25 16:59:22 +00:00
t3chn0m4g3
6bfcf8b1c4 tweaking 2020-02-24 16:43:34 +00:00
t3chn0m4g3
bd0e6936eb bump heralding to latest master 
fixed by https://github.com/johnnykv/heralding/issues/129#event-3058184614
 2020-02-21 11:38:29 +00:00
t3chn0m4g3
545209dce6 fix for honeytrap 2020-02-15 15:40:47 +00:00
t3chn0m4g3
153f7be9dc cleanup 2020-02-14 17:26:53 +00:00
t3chn0m4g3
faa5667246 bump adbhoney, cowrie, honeytrap to 20.06 2020-02-14 17:22:30 +00:00