Alex-Devera/tpotce
1
0
Fork 0
mirror of https://github.com/telekom-security/tpotce.git synced 2025-11-04 06:22:54 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
1991 commits 9 branches 18 tags 393 MiB
Commit graph

675 commits

Author SHA1 Message Date
t3chn0m4g3
22acb6fa84 bump to Alpine 3.15 2022-01-19 00:46:04 +00:00
t3chn0m4g3
2a7ff7b3cb update Dockerfiles 2022-01-18 01:10:20 +00:00
t3chn0m4g3
889c85e248 update Dockerfiles 2022-01-18 00:50:23 +00:00
t3chn0m4g3
d301cf0447 tweaking, remove honeypy => deprecated 2022-01-17 17:45:03 +00:00
t3chn0m4g3
c611101987 improve nginx logging 2022-01-17 17:15:04 +00:00
Marco Ochse
cac7cdcec6 fix data fields with regard to the request field, log4pot, nginx 2022-01-17 17:10:48 +01:00
t3chn0m4g3
a07918d149 update log4pot to the latest master 2022-01-17 14:52:32 +00:00
t3chn0m4g3
68d6aa4180 fix data fields with regard to the request field, log4pot, nginx 2022-01-17 14:50:50 +00:00
t3chn0m4g3
0e5986d2df Tweaking 
Remove Elasticsearch-Curator in packages, configs and references (BREAKING CHANGE)
Add Index Lifecycle Management in favor of elasticsearch-curator
Point all images to 2203 tags
 2022-01-14 15:52:08 +00:00
t3chn0m4g3
86479db8af fix packaging 2022-01-14 13:05:05 +00:00
t3chn0m4g3
eca395a770 fix packaging 2022-01-14 12:54:53 +00:00
t3chn0m4g3
3792a5f6a1 fix packaging 2022-01-14 12:51:15 +00:00
t3chn0m4g3
e7e521edba tweaking 2022-01-12 01:28:06 +00:00
t3chn0m4g3
7d012726b7 tweaking 2022-01-11 15:43:45 +00:00
t3chn0m4g3
d6ea4cdde2 prep for elk 8.x, pave way for next t-pot release 2022-01-07 18:03:00 +00:00
t3chn0m4g3
fb49a77180 tweaking, json_batch transfer to hive 2022-01-07 15:41:57 +00:00
t3chn0m4g3
467dfae320 cleanup, move to correct folders 2022-01-04 18:35:44 +00:00
t3chn0m4g3
788a4c4f98 prepare for new attack map feature 
tweaking, cleanup
 2022-01-04 16:16:27 +00:00
t3chn0m4g3
68b080a3a8 Work in progress! 
This is the foundation for the distributed T-Pot feature,
highly work in progress, only works with local docker image builds,
will be available for prod for upcoming T-Pot 22xx.
 2022-01-03 18:24:17 +00:00
t3chn0m4g3
ef1a1fa057 Merge branch 'master' of https://github.com/telekom-security/tpotce 2021-12-21 11:37:18 +00:00
t3chn0m4g3
daf41b4b71 tweaking 2021-12-21 11:36:38 +00:00
t3chn0m4g3
0bca794fe7 bump log4pot to latest master 
rebuild on ubuntu for payload download support
 2021-12-20 18:40:38 +00:00
t3chn0m4g3
aaccb43471 bump elk stack to 7.16.2 
ELK 7.16.2 includes log4j 2.17.0 to address latest issues
 2021-12-20 11:17:18 +00:00
t3chn0m4g3
b0339610a2 Prep for Log4Pot integration 2021-12-16 20:25:40 +00:00
t3chn0m4g3
a98b447556 ELK 7.16.1 fixes log4j vulns. 2021-12-13 15:59:48 +00:00
t3chn0m4g3
b4c1805551 disable log4j lookups 2021-12-13 10:54:07 +00:00
t3chn0m4g3
0ef2e89cac remove log4j JndiLookup Class 2021-12-13 10:35:22 +00:00
t3chn0m4g3
5f29516197 tweaking 2021-12-08 23:55:13 +00:00
Marco Ochse
ff1c12e848
Disable FATT submissions for now 2021-11-30 16:04:58 +01:00
t3chn0m4g3
ce39e1bd4f logstash logging for honeypots 2021-11-19 23:20:13 +00:00
t3chn0m4g3
6c155ad87f add qeeqbox honeypots 2021-11-18 19:55:44 +00:00
t3chn0m4g3
81b8242c68 bump ewsposter to latest master 2021-11-18 13:48:02 +00:00
t3chn0m4g3
d2cbf6ebbc build fix for tanner 2021-11-18 13:39:05 +00:00
Marco Ochse
591be0791b
Fixes #939 
https://stackoverflow.com/questions/28785383/how-to-disable-persistence-with-redis
 2021-11-18 13:05:01 +01:00
t3chn0m4g3
adee51bee5 bump heralding to latest master 2021-11-16 18:23:25 +00:00
t3chn0m4g3
b214db6e9d bump cowrie to 2.3.0, ewsposter to 1.21 2021-11-05 17:43:47 +00:00
t3chn0m4g3
c9b909e51d finetune new honeypots logging 2021-11-02 19:13:28 +00:00
t3chn0m4g3
db74c610ad bump hellpot to 0.3 and train config for CVE-2021-39341 2021-11-01 13:36:44 +00:00
t3chn0m4g3
ea624351b5 finetuning logstash.conf for new honeypots 2021-10-29 16:28:16 +00:00
t3chn0m4g3
c1eb9f7216 logstash parsing for ddospot, hellpot 2021-10-28 18:57:55 +00:00
t3chn0m4g3
1a844d13ba start integrating new honeypots into ELK 2021-10-27 16:14:52 +00:00
t3chn0m4g3
348a5d572b bump elastic stack to 7.15.1 2021-10-26 13:56:38 +00:00
t3chn0m4g3
77dcd771df move debian to ubuntu 20.04 2021-10-05 15:26:02 +00:00
t3chn0m4g3
b566b39688 move honeytrap to ubuntu 20.04 
thanks to @adepasquale's work
 2021-10-04 20:19:40 +00:00
t3chn0m4g3
dd7fb325b6 add new honeypots to nextgen to prep for ELK setup 
honeytrap testing
 2021-10-01 16:18:10 +00:00
t3chn0m4g3
ab092faa2c prep conpot rebuild 2021-10-01 15:10:37 +00:00
t3chn0m4g3
28681ef398 prep heralding rebuild 2021-10-01 14:32:24 +00:00
t3chn0m4g3
eefd38a335 bump elastic stack to 7.15.0 
no image upgrade before 7.15.1
 2021-09-30 20:40:42 +00:00
t3chn0m4g3
261b380db7 cleaup fatt, bump suricata to 6.0.3 2021-09-30 19:39:59 +00:00
t3chn0m4g3
77e2dd2da6 cleanup spiderfoot, prep fatt rebuild 2021-09-30 19:14:11 +00:00
t3chn0m4g3
183136c1f1 bump spiderfoot to v3.4 2021-09-30 17:03:28 +00:00
t3chn0m4g3
1fe0247095 prep p0f, medpot for image rebuild 2021-09-30 15:58:10 +00:00
t3chn0m4g3
adab02a067 prep for updated nginx image 2021-09-28 19:51:08 +00:00
t3chn0m4g3
58aa3162cb prep for ewsposter fix 2021-09-28 15:58:15 +00:00
t3chn0m4g3
405ee521a6 prep ubuntu rebuild for honeytrap 2021-09-24 17:09:55 +00:00
t3chn0m4g3
9a3465aef1 bump cowrie to latest master, prep for rebuild 2021-09-24 17:03:55 +00:00
t3chn0m4g3
e23c57e58d some tests with dionaea 2021-09-24 16:10:14 +00:00
t3chn0m4g3
44749fe9e7 bump honeysap to alpine3.11 2021-09-24 15:47:05 +00:00
t3chn0m4g3
f5d11bb008 bump snare, tanner, prep for rebuild 2021-09-24 15:18:59 +00:00
t3chn0m4g3
efa9d991ba revert honeypy to alpine 2021-09-23 22:28:33 +00:00
t3chn0m4g3
a7faafeba9 test mailoney 2021-09-23 21:50:37 +00:00
t3chn0m4g3
f05abc07c9 cleanup 2021-09-23 21:20:25 +00:00
t3chn0m4g3
eeae863820 revert to alpine 2021-09-23 21:11:24 +00:00
t3chn0m4g3
9f9d1a65bd debian test 2021-09-23 20:53:38 +00:00
t3chn0m4g3
a48840d1b2 prep rdpy for debian rebuild 2021-09-23 20:15:33 +00:00
t3chn0m4g3
48de3d846c fix typo in crontab 2021-09-23 10:00:20 +00:00
t3chn0m4g3
122135dd80 prepare rebuilding dicompot 2021-09-20 21:57:39 +00:00
t3chn0m4g3
8576e576a6 prep mailoney for rebuild 2021-09-20 20:20:04 +00:00
t3chn0m4g3
32e1e8a8ea prep for rebuilding ciscoasa, elasticpot, honeypy 2021-09-20 16:08:16 +00:00
t3chn0m4g3
ed224215a4 tweak cyberchef image for better security, prep citrixhoneypot for rebuild 2021-09-20 14:29:42 +00:00
t3chn0m4g3
e9c03e512c prep rebuild for adbhoney, cyberchef 2021-09-20 09:15:28 +00:00
t3chn0m4g3
ed0c5aa89f add logstash-output-gelf, fixes #861 2021-09-15 17:39:04 +00:00
t3chn0m4g3
9de1bdd0b5 tweaking, bump elastic stack to 7.14.1, rebuild dashboards 2021-09-15 15:58:44 +00:00
t3chn0m4g3
06ef8850fe prep for ELK 7.13.4, start full integration of new honeypots 2021-08-25 15:04:27 +00:00
t3chn0m4g3
2aa4c3c2c6 disable ntp server on host, start working on ddospot 2021-07-09 23:16:19 +00:00
t3chn0m4g3
0867d8f011 prep for redishoneypot 2021-07-05 19:59:44 +00:00
t3chn0m4g3
a2071eb4d2 hellpot cleanup and prep for endlessh 2021-07-03 15:51:32 +00:00
t3chn0m4g3
e6402b793c start including hellpot 2021-07-02 22:12:47 +00:00
t3chn0m4g3
4cb84166c5 bump ewsposter to 1.2.0, elk stack to 7.13.2 2021-06-28 16:30:40 +00:00
t3chn0m4g3
b6be931641 prep for new ewsposter, rollout to follow next week 2021-06-24 16:26:53 +00:00
t3chn0m4g3
f51ab7ec0f prepare to bump elastic stack to 7.13.1 2021-06-10 17:03:22 +00:00
t3chn0m4g3
de38e5e86f Rebuild Logstash, Elasticsearch 
Setting static limits for Elasticsearch / Logstash on Xms, Xmx and Container RAM results in unwanted side effects for some installations. With Elastic supporting dynamic heap management for Java 14+ we now use OpenJDK 16 JRE and as such remove limitations. This should improve stability for T-Pot, provided the minimum requirements will be met.
 2021-05-26 11:00:49 +00:00
t3chn0m4g3
0c5ab33b8a bump elastic stack to 7.12.1 2021-05-17 16:32:03 +00:00
trixam
60e57bce52
Update update.sh 
Adding quotation marks for $URL
 2021-05-03 14:40:08 +02:00
trixam
dceaa984c9
Update update.sh 
Download rules via URL
 2021-04-21 12:44:36 +02:00
t3chn0m4g3
532907c27c rebuild honeytrap 2021-02-25 11:57:16 +00:00
t3chn0m4g3
fb860fb861 fix protocols for conpot testing 2021-02-25 11:55:51 +00:00
t3chn0m4g3
7d423f29da rebuild snare, tanner, redis, phpox 2021-02-19 13:02:08 +00:00
t3chn0m4g3
d5f0ceb15b push elastic stack to 7.11.1 2021-02-19 10:17:30 +00:00
t3chn0m4g3
5f38e730d4 rebuild conpot for latest alpine edge, bump to latest master 2021-02-18 17:39:52 +00:00
t3chn0m4g3
c48ad0863d bump ewsposter to latest master 2021-02-18 16:52:43 +00:00
t3chn0m4g3
4bc2b1bf03 rebuild cowrie for alpine 3.13 2021-02-18 16:38:35 +00:00
t3chn0m4g3
3d123f35a4 rebuild glutton for alpine 3.13, update to latest master 2021-02-18 11:12:21 +00:00
t3chn0m4g3
d4519892f6 rebuild dionaea 2021-02-18 10:37:17 +00:00
t3chn0m4g3
69c535619d bump heralding to 1.0.7 and rebuild for alpine 1.13 2021-02-16 16:59:17 +00:00
t3chn0m4g3
5fe59c3bd8 rebuild ipphoney for alpine 3.13 2021-02-16 16:14:37 +00:00
t3chn0m4g3
d8d0a6f190 rebuild fatt for alpine 3.13 2021-02-16 13:27:56 +00:00
t3chn0m4g3
4d407b420d rebuild ewsposter for alpine 3.13 2021-02-16 13:15:26 +00:00
t3chn0m4g3
181e3585b7 bump spiderfoot to 3.3 and rebuild for alpine 3.13 2021-02-16 11:01:43 +00:00
t3chn0m4g3
2597af73ee rebuild dicompot for alpine 3.13 2021-02-15 12:34:11 +00:00
t3chn0m4g3
0ab220ebf0 rebuild p0f for alpine 3.13 2021-02-15 12:12:24 +00:00
t3chn0m4g3
2777fc1f41 rebuild medpot for alpine 3.13 2021-02-15 12:09:19 +00:00
t3chn0m4g3
91483a231d rebuild honeysap 2021-02-15 11:46:55 +00:00
t3chn0m4g3
95ea079f4d rebuild heimdall, nginx for php7.4, alpine 3.13 2021-02-15 11:00:00 +00:00
t3chn0m4g3
8112f48270 rebuild elasticpot for alpine 3.13 2021-02-15 10:14:52 +00:00
t3chn0m4g3
898f8be4db rebuild citrixhoneypot for alpine 3.13 2021-02-15 10:05:29 +00:00
t3chn0m4g3
a28ee97f13 rebuild ciscoasa for alpine 3.13 2021-02-15 10:01:03 +00:00
t3chn0m4g3
f2c48d7efc bump cyberchef to latest release 2021-02-12 17:09:44 +00:00
t3chn0m4g3
039f3c115a update adbhoney image 2021-02-12 14:21:31 +00:00
t3chn0m4g3
80d9efa729 bump elk stack images to alpine 3.13 2021-02-12 13:54:42 +00:00
t3chn0m4g3
e5f29f3c90 bump elk stack to 7.11.0 2021-02-12 13:21:35 +00:00
t3chn0m4g3
ee3d667615 bump dionaea to 0.11.0 2021-01-19 10:59:32 +00:00
t3chn0m4g3
d2dc43e1ef Update internet IF retrieval 
To be consistent with @adepasquale PR #746 fatt, glutton and p0f Dockerfiles were updated accordingly.
 2021-01-06 17:05:09 +00:00
Andrea De Pasquale
b3b983afe6 Change method to get default Suricata interface 
On some systems, interface number 2 is not always the correct one.
With AWK we now collect the first active interface having both an
address and a broadcast.
 2021-01-06 11:14:24 +01:00
t3chn0m4g3
e1745bdea1 fix broken sqlite db 2020-12-28 21:49:28 +00:00
t3chn0m4g3
af6ce8854d bump elastic stack to 7.10.1 2020-12-10 15:20:18 +00:00
t3chn0m4g3
6069b214a5 bump ewsposter to 1.12 2020-12-10 11:40:53 +00:00
t3chn0m4g3
f3f9f6ae72 cleanup 2020-12-03 00:01:38 +00:00
t3chn0m4g3
bdf095367d prep for ewsposter 1.11 2020-12-02 23:21:23 +00:00
t3chn0m4g3
8a7e81815e prep for Elastic Stack 7.10.0 2020-12-02 22:36:17 +00:00
Andrea De Pasquale
87a27e4f2b Suricata: use suricata-update for rule management 
As a bonus we can now run "suricata-update" using docker-exec,
triggering both a rule update and a Suricata rule reload.
 2020-11-30 17:56:14 +01:00
Marco Ochse
2ecef8c607
enable MQTT 
as eagle eyed by @adepasquale
 2020-11-27 19:07:12 +01:00
Andrea De Pasquale
73a5847753 Suricata: update suricata.yaml config to 6.0.x 
Merge in the latest updates from suricata-6.0.x while at the same time
keeping the custom T-Pot configuration.

https://github.com/OISF/suricata/blob/suricata-6.0.0/suricata.yaml.in
 2020-11-26 19:16:01 +01:00
Marco Ochse
c976aea73e
Merge pull request #725 from adepasquale/suricata-yaml-5.x 
Suricata: update suricata.yaml config to 5.x
 2020-11-26 16:23:50 +01:00
t3chn0m4g3
4ada38988c bump cowrie to 2.2.0 2020-11-26 08:17:09 +00:00
Andrea De Pasquale
0010f99662 Suricata: disable eve.stats since it's unused 
Prevent the error below by disabling stats globally and in eve-log:

<Error> - [ERRCODE: SC_ERR_STATS_LOG_GENERIC(278)] - eve.stats: stats are disabled globally: set stats.enabled to true.
 2020-11-25 17:07:49 +01:00
Andrea De Pasquale
e2f76c44cb Suricata: update suricata.yaml config to 5.x 
Merge in the latest updates from suricata-5.x while at the same time
keeping the custom T-Pot configuration.

https://github.com/OISF/suricata/blob/master-5.0.x/suricata.yaml.in
 2020-11-25 15:51:41 +01:00
t3chn0m4g3
e26853c7fa bump suricata to 5.0.4 2020-10-28 17:53:23 +00:00
t3chn0m4g3
d64cbe6741 bump ipphoney to latest master 2020-10-28 17:34:28 +00:00
t3chn0m4g3
c3809b5a98 bump heralding to latest master 2020-10-28 17:27:09 +00:00
t3chn0m4g3
a3d40cc57c bump spiderfoot to 3.2.1 2020-10-28 17:08:55 +00:00
t3chn0m4g3
e3fda4d464 bump dionaea to 0.9.2 2020-10-28 16:45:53 +00:00
t3chn0m4g3
4bf245d13b bump conpot to latest master 2020-10-28 13:56:52 +00:00
t3chn0m4g3
92925cecbd bump dicompot to latest master 2020-10-27 21:30:33 +00:00
t3chn0m4g3
f204cdf9b8 bump elk to 7.3 2020-10-27 19:43:32 +00:00
t3chn0m4g3
ff4a394e3b reverting elk to 7.9.1 2020-10-15 12:24:46 +00:00
Marco Ochse
ce7b79b71a
Merge pull request #707 from brianlechthaler/patch-3 
Bump Elastic dependencies to 7.9.2
 2020-10-15 13:37:11 +02:00
t3chn0m4g3
b28cc2edd0 prepare for new ewsposter 2020-10-15 09:14:30 +00:00
Brian Lechthaler
84a741ec64
IMPORTANT: Fix Node Version 
Bump node version to `10.22.1-alpine`

**KIBANA WILL NOT WORK WITHOUT THIS**
 2020-10-07 13:53:21 -07:00
Brian Lechthaler
d351a89096
Bump Kibana version to 7.9.2 2020-10-04 18:05:16 -07:00
Brian Lechthaler
488da48df7
Bump Logstash version to 7.9.2 2020-10-04 18:04:15 -07:00
Brian Lechthaler
85da099cd0
Bump Elasticsearch to 7.9.2 2020-10-04 18:03:00 -07:00
Brian Lechthaler
b1d8e293de
add DockerHub back in cap filter 
see https://github.com/telekom-security/tpotce/pull/691#issuecomment-688648225
 2020-09-08 10:45:58 -07:00
Brian Lechthaler
7fdf9edb60
Update Suricata Capture Filter for New Docker Repo 2020-09-07 19:57:15 -07:00
t3chn0m4g3
0e7abb8d2c restore mibfix for conpot 2020-09-07 15:46:52 +00:00
t3chn0m4g3
1ee9c29805 set new container registry, point installer to branch 2020-09-04 13:29:14 +00:00
t3chn0m4g3
2e5639a50b fix links 2020-09-04 13:01:21 +00:00
listbot
47dca8b835 continue pin / prep images ghcr 2020-09-04 12:37:28 +00:00
listbot
1ac79d6be7 begin prep for move to GitHub Container Registry 
Start pinning Dockerfiles to specific releases / commits
 2020-09-02 15:18:32 +00:00
t3chn0m4g3
54a6a944aa prep for ipphoney 2020-08-25 12:25:59 +00:00
t3chn0m4g3
b86d2c715b prep for ipphoney 2020-08-24 21:36:08 +00:00
t3chn0m4g3
8f06b5b499 start prepping for ipphoney 2020-08-24 15:55:50 +00:00
t3chn0m4g3
6ec5a04802 fix deps issue with conpot 2020-08-24 15:55:10 +00:00
t3chn0m4g3
5080151b7c prep for elk 7.9 2020-08-24 10:35:46 +00:00
t3chn0m4g3
c1f7146800 prep elk stack for 7.9.0 2020-08-20 15:03:16 +00:00
t3chn0m4g3
743616fa09 update conpot to latest working master 2020-08-13 16:30:37 +00:00
t3chn0m4g3
6e18b6f660 bump elasticpot to latest master 2020-08-13 10:37:03 +00:00
t3chn0m4g3
50d67fc286 bump spiderfoot to 3.1 final 
Fix Spiderfoot issue not showing current scan
 2020-08-13 09:06:49 +00:00
t3chn0m4g3
c28642932a bump elk stack to 7.8.1 2020-08-13 08:34:44 +00:00
t3chn0m4g3
8af45c9440 prevent cowrie from unwanted log rotation 2020-07-07 00:00:57 +00:00
t3chn0m4g3
6d29f504df provide fix for #669 2020-07-06 23:30:11 +00:00
t3chn0m4g3
618ee3c6e9 tweaking 
add kibana export / import config function
ewsposter remove transmitting old elasticpot data (need update)
final export of all objects
 2020-06-29 10:45:33 +00:00
t3chn0m4g3
3a418534d8 tweaking 
random reboot times for crontab
remix compose files
some tweaking
 2020-06-28 20:03:14 +00:00
t3chn0m4g3
4e6510b5c7 dicompot tweaking 2020-06-27 00:37:12 +00:00
t3chn0m4g3
16a7cdb975 tweaking 
Update logstash config for new Dicompot fields
Revert Dionaea back to 0.8.0, latest master was unstable
 2020-06-26 23:48:48 +00:00
t3chn0m4g3
0031980416 cleanup and prepare for docker image rebuilds 2020-06-26 14:34:05 +00:00
t3chn0m4g3
6a98496e8c cleanup and prepare for docker image rebuilds 2020-06-25 22:58:23 +00:00
t3chn0m4g3
ec8f5d9b66 cleanup and prepare for docker image rebuilds 2020-06-25 16:14:37 +00:00
t3chn0m4g3
238a08b055 tweaking 
cleanup index-pattern
add dicompot log to logstash
 2020-06-24 13:21:29 +00:00
t3chn0m4g3
99d8cf9b32 fix for query fields 2020-06-24 10:22:09 +00:00
t3chn0m4g3
81c6351cf1 fix for keeping daily index 2020-06-23 21:40:38 +00:00
t3chn0m4g3
65e849cf33 bump elk stack to 7.8 2020-06-21 21:11:21 +00:00
t3chn0m4g3
a396356785 add honeysap logstash config 2020-06-19 22:53:56 +00:00
t3chn0m4g3
a7c653e7fe start integrating honeysap 2020-06-19 11:54:50 +00:00
t3chn0m4g3
697c5cb3f6 begin integration of dicompot 2020-06-18 16:38:43 +00:00
t3chn0m4g3
2882668826 Add a new elasticsearch honeypot 
adjust installer
adjust elasticpot configs to T-Pot's environment
create Dockerfile
adjust logstash config
update Readme
 2020-06-17 18:09:59 +00:00
t3chn0m4g3
27a5db9edf alpine 3.11 needs py3-pip in extra package 2020-06-16 11:28:56 +00:00
t3chn0m4g3
4cc1aa08c2 tweaking 
Bump ELK stack to 7.7.1
Install curator via pip
Some tweaks
 2020-06-08 21:56:16 +00:00
t3chn0m4g3
be918033e0 bump to ELK 7.7.0 2020-05-14 16:27:57 +00:00
t3chn0m4g3
680194adf7 prep for new listbot FQDN 2020-05-12 09:19:09 +00:00
Marco Ochse
be7afd8042
Merge pull request #636 from dtag-dev-sec/master 
merge master to dev
 2020-05-12 10:31:34 +02:00
Marco Ochse
fea6b8a646
correct typo 
fixes #635
 2020-05-11 17:21:22 +02:00
Marco Ochse
cbefe6a074
Update capture-filter.bpf 2020-04-22 17:49:59 +02:00
Marco Ochse
ed73d83317
Update update.sh 2020-04-22 17:48:32 +02:00
Marco Ochse
34bbbf59ac
Update Dockerfile 2020-04-22 17:16:19 +02:00
Marco Ochse
a6c8d3d712
Update Dockerfile 2020-04-22 17:15:44 +02:00
Marco Ochse
1a7b3b3795
Load listbot data from OTC 2020-04-22 16:50:41 +02:00
t3chn0m4g3
73e1842c16 offload listbot from netlify CDN 2020-04-02 13:12:11 +00:00
t3chn0m4g3
2201e072f6 testing honeysap 2020-03-12 16:02:43 +00:00
t3chn0m4g3
fb06c46793 Merge branch 'dev' of https://github.com/dtag-dev-sec/tpotce into dev 2020-03-09 10:44:36 +00:00
t3chn0m4g3
f76d8ab161 update delivery window 2020-03-09 10:43:52 +00:00
Marco Ochse
a256ecedc8
Merge branch 'master' into dev 2020-03-09 11:20:39 +01:00
t3chn0m4g3
fb3777141b tanner, prepare merger w/ master 2020-03-09 09:44:26 +00:00
t3chn0m4g3
a18304dfdc tanner, prepare merger w/ master 2020-03-09 09:35:19 +00:00
t3chn0m4g3
6a703544c6 tweaking 2020-03-05 23:58:27 +00:00
t3chn0m4g3
941a0e1587 tweaking 2020-03-05 23:22:03 +00:00
t3chn0m4g3
692a21ddb1 tanner tweaking and testing 
include unsecure, fix name bug
 2020-03-05 23:12:49 +00:00
t3chn0m4g3
df22adb45d bump elk stack to 7.6.1 2020-03-05 21:20:11 +00:00
t3chn0m4g3
07c68c85bb tweaking 2020-03-04 14:36:03 +00:00
t3chn0m4g3
a4227e6a9f tweaking 2020-03-04 12:12:12 +00:00
t3chn0m4g3
3b8c959c66 tweaking 2020-03-03 12:30:57 +00:00
t3chn0m4g3
5d7a6f3270 tweaking 2020-03-02 15:23:05 +00:00
t3chn0m4g3
53e9470d58 cleanup 2020-02-27 10:35:50 +00:00
t3chn0m4g3
bf7d1299ca tweaking 2020-02-26 14:22:48 +00:00
t3chn0m4g3
70dca02ce4 tweaking 2020-02-25 16:59:22 +00:00
t3chn0m4g3
6bfcf8b1c4 tweaking 2020-02-24 16:43:34 +00:00
t3chn0m4g3
bd0e6936eb bump heralding to latest master 
fixed by https://github.com/johnnykv/heralding/issues/129#event-3058184614
 2020-02-21 11:38:29 +00:00
t3chn0m4g3
545209dce6 fix for honeytrap 2020-02-15 15:40:47 +00:00
t3chn0m4g3
153f7be9dc cleanup 2020-02-14 17:26:53 +00:00
t3chn0m4g3
faa5667246 bump adbhoney, cowrie, honeytrap to 20.06 2020-02-14 17:22:30 +00:00
t3chn0m4g3
f11ad6b523 tweaking 
ELK 7.6.0 is not ready for production, however it works if APM is enabled (disabled in config, so image wont build as precaution)
Remove SISSDEN from ewsposter, suricata
Bump suricata to 5.0.1
Alpine now support suricata incl. enabled JA3 support, move back to Alpine install
 2020-02-14 15:28:06 +00:00
Marco Ochse
b31225b97c
Merge pull request #524 from pisces-period/pisces-period-cowrie-patch 
make Dockerfile compatible with any Python version
 2020-02-03 17:17:25 +01:00
t3chn0m4g3
ad861200de update mailoney 2020-02-03 14:46:43 +00:00
t3chn0m4g3
5ce5911ec1 cleanup 2020-02-03 12:59:21 +00:00
t3chn0m4g3
b9da9f04af adjust default field 2020-02-03 12:18:43 +00:00
t3chn0m4g3
984ba958fb logstash template not upgraded 
with daily index enabled logstash will not be able to put new events into ES
simple solution, just deleting logstash template upon logstash start and leave it to logstash to upload the latest template
.
 2020-02-01 14:08:23 +00:00
t3chn0m4g3
64729f5064 remove ilm support, breaks existing index at upgrade 2020-01-31 15:50:34 +00:00
t3chn0m4g3
5a4724bcba elk 7.x dev test 2020-01-31 14:21:55 +00:00
t3chn0m4g3
64907a2eba random loop timer ewsposter 2020-01-30 11:07:28 +00:00
t3chn0m4g3
fa0fdbb579 prepare for ELK migration to 7.x 2020-01-29 14:21:40 +00:00
t3chn0m4g3
33222a92b6 finish heimdall integration 2020-01-27 17:03:44 +00:00
t3chn0m4g3
62b519999e tweaking 2020-01-24 15:38:00 +00:00
t3chn0m4g3
8b19228d99 tweaking heimdall, read only for now 2020-01-24 15:16:25 +00:00
t3chn0m4g3
2d16a9c9f6 tweaking new landing page 2020-01-24 14:14:09 +00:00
t3chn0m4g3
95a075e764 start working on new landing page 2020-01-24 02:21:33 +00:00
pisces-period
dc75b5567a
make Dockerfile compatible with any Python version 
adding a temporary variable to store the current (updated) version of Python, thus fixing the situation where the version is != 3.7 (e.g. Alpine python package at version 3.8.1-r1), causing lines 39-41 to break in the original code (install path is hard-coded at 3.7).
 2020-01-23 17:42:48 +01:00
t3chn0m4g3
f110eb08b0 prepare for mailoney json logging 2020-01-22 12:17:30 +00:00
t3chn0m4g3
1d0aad3b34 tweak logstash.conf for citrixhoneypot 2020-01-16 18:04:29 +00:00
t3chn0m4g3
a6ed6613a5 prepare citrixhoneypot for ELK integration 2020-01-16 15:13:58 +00:00
t3chn0m4g3
a953542f8f rebase citrixhoneypot 2020-01-16 10:29:58 +00:00
t3chn0m4g3
be3e998a92 prepare citrixhoneypot for JSON logging 2020-01-15 13:59:11 +00:00
t3chn0m4g3
8a844e6dd3 prepare for CitrixHoneypot 2020-01-15 12:14:23 +00:00
t3chn0m4g3
755cbb77db prepare for citrixhoneypot 2020-01-15 10:37:48 +00:00
t3chn0m4g3
2ed0f939d1 rebuild, tweak spiderfoot 2020-01-03 17:04:18 +00:00
t3chn0m4g3
af3ef271d4 rebuild cyberchef 2020-01-03 16:25:33 +00:00
t3chn0m4g3
3713139fc6 rebuild snare, tanner 2020-01-03 14:06:29 +00:00
t3chn0m4g3
0928e37326 rebuild Dionaea, Heralding 2020-01-02 17:37:08 +00:00
t3chn0m4g3
7c5fc000c0 rebuild fatt 2019-12-27 20:52:23 +00:00
t3chn0m4g3
64628c1293 rebuild rdpy 2019-12-27 20:09:15 +00:00
t3chn0m4g3
29d223865f tweaking, rebuild honeypy 2019-12-27 19:58:22 +00:00
t3chn0m4g3
1442a257e5 conpot tweaking 2019-12-27 18:34:13 +00:00
t3chn0m4g3
a1d903db01 bump conpot to latest master 2019-12-27 16:21:12 +00:00
t3chn0m4g3
02bdc8194a bump adbhoney to latest master with py3 support 2019-11-21 13:56:38 +00:00
t3chn0m4g3
78135df9e7 Bump Suricata to 5.0.0 2019-10-22 15:20:23 +00:00
t3chn0m4g3
3d85ca94f1 bump cowrie to v2.0.0 2019-10-21 20:59:36 +00:00
t3chn0m4g3
6921857573 bump heralding to latest master 2019-10-16 14:46:58 +00:00
t3chn0m4g3
42c19e4d81 bump glutton, tune down noisy log 2019-10-15 14:50:39 +00:00
t3chn0m4g3
b9fb3d4695 tune down noisy log 2019-10-15 07:49:30 +00:00
t3chn0m4g3
487ce4bed5 bump ewsposter to latest master 2019-09-21 12:09:17 +00:00
t3chn0m4g3
24ac6d203f bump medpot to latest master 2019-08-28 14:52:25 +00:00