Linux SoftwareSystemMonitoringsingle-honeypot 0.2-7

single-honeypot 0.2-7

single-honeypot simulates many services like SMTP, HTTP, POP3, shell, and FTP
Developer:   Luis Wong
      more software by author →
Price:  0.00
License:   GPL (GNU General Public License)
File size:   0K
Rating:   0 /5 (0 votes)
Your vote:  
enlarge screenshot

single-honeypot simulates many services like SMTP, HTTP, POP3, shell, and FTP. It can show manydifferent faces, including those of Windows FTP systems, Windows SMTP systems, different Linux distributions, and some Posix distributions.

I wanted to register every service imaginable with the portmapper, but didn't like the idea of actually running the daemons necessary and relying on the firewall to keep the connections controllled (some dweeb's voice in my ear kept saying, "defense in depth.") I was going to bang on the sources to portmapper and hardcode everything from /etc/rpc into there, but after I pulled the tarball down, I started reading and saw that pmap_dump and pmap_set would do it all. Cool. Thanks Wietse.

The fakerpc here is derived from RedHat Linux 7.1, Irix 5.3, and Solaris 8's /etc/rpc files, and then built to include lines for versions 1-4 of each rpc program, via both udp and tcp. Start portmapper as normal, but instead of firingup rpc programs, just execute:
"pmap_set < /usr/local/thp/fakerpc".
There's a 1:1 chance that this will break your existing legit rpc services. If you are running rpc services on your firewall/hpot, you should go hang out with those non-IDS types above.

What's New in This Release:
  • Changes: Pop3 target added and commands of the SMTP target has been added and modified
    tags added and  rpc services  pmap set  etc rpc  

    Download single-honeypot 0.2-7

    Authors software

    single-honeypot 0.2-7 (by Luis Wong)
    single-honeypot simulates many services like SMTP, HTTP, POP3, shell, and FTP

    SimpleFirewall 0.8 (by Luis Wong)
    Simple Firewall is a easy tool for administration of users and access control

    Similar software

    single-honeypot 0.2-7 (by Luis Wong)
    single-honeypot simulates many services like SMTP, HTTP, POP3, shell, and FTP

    Template::Tutorial 2.15 (by Andy Wardley)
    Template::Tutorial are template toolkit tutorials.

    This section includes tutorials on using the Template Toolkit

    Endian Firewall 2.0 Community (by Endian Firewall Team)
    Endian Firewall is a "turn-key" linux security distribution based on IPCop that turns every system into a full featured security appl

    Courier 7.0 (by Sam Varshavchik)
    Courier mail transfer agent (MTA) is an integrated mail/groupware server based on open commodity protocols, such as ESMTP, IMAP, POP3

    XMail 1.23 (by Davide Libenzi)
    XMail is an Internet and intranet mail server featuring an SMTP server, POP3 server, finger server, multiple domains, no need for use

    Firewall by Jim 1.30 (by Jim Gifford)
    Firewall by Jim is a firewall that takes advantage of tcp_wrappers information to block users

    FireHOL 1.226 (by Costa Tsaousis)
    FireHOL is a stateful iptables packet filtering firewall configurator

    AXIGEN Mail Server for ISPs 1.2.5 (by Gecad Technologies)
    AXIGEN Mail Server is a highly configurable, secure mail server with GoLIVE support

    VAMP 2.0 Beta1 (by Hyriand)
    VAMP is a web-mail client written entirely in the PHP scripting language which can access POP3 mailboxes

    BixData 2.6 (by Kobus)
    BixData is a system monitoring tool

    Other software in this category

    GKrellM 2.2.10 (by Bill Wilson)
    GKrellM application is a GTK-based stacked monitor program that charts SMP CPUs, disks,

    lm_sensors 2.10.1 (by Mark S.)

    Loggerithim 7.0.1 (by gphat)
    Loggerithim is an extensible monitoring and remote management package

    SmokePing 2.0.9 (by Tobias Oetiker)
    SmokePing is a delux latency measurement tool

    Pipe Viewer 0.9.6 (by Andrew Wood)

  •     search

    Featured Software

    jEdit 4.3 pre8
    jEdit is an Open Source text editor written in Java

    Opera 9.02
    Surf the Internet in a safer, faster, and easier way with Opera browser

    GNU Aspell 0.60.4
    GNU Aspell is a Free and Open Source spell checker designed to eventually replace Ispell

    Subscribe in Rojo
    Google Reader
    Add to My Yahoo!

    Add to My AOL
    Subscribe with Bloglines
    Subscribe in NewsGator Online
    Add 'nixbit linux software' to Newsburst from CNET nixbit linux software

    Top tags