Kojoney review

by rbytes.net on

Kojoney project is a low level interaction honeypot that emulates an SSH server

License: GPL (GNU General Public License)
File size: 0K
Developer: Jose Antonio Coret
0 stars award from rbytes.net

Kojoney project is a low level interaction honeypot that emulates an SSH server. The daemon is written in Python using the Twisted Conch libraries.

Kojoney is a mix of the spanish word cojon (s/c/k/) and honey. In the spanish language the sentence "estar hasta los cojones" is used to express that you are cloyed. In the past I received many attacks against my SSH server and various of the attacks were very cool (i.e. using my name and sourname to brute force my SSH Server).

In order to catch my attacker I decided to create a honeypot. The attacker stopped his offensives and (currently) I don't known who were the attacker but I realized of which this tool was very cool and I decided to release it to the public.

Sh or Bash (Bourne Again SHell)
Zope-Interfaces (included in the package)
Twisted (included in the package)
Twisted Conch (included in the package)

What's New in This Release:
Support for downloading files solicited by the attacker was added.
IP-Country was upgraded to 2.21.
A bug regarding amd64/fc5 was fixed.
A bug in ZopeInterface-3.0.1 that prevents compilation on amd64 was fixed.
The username and password file was updated from 42 combinations to 23752.
Other minor fixes were made.
A bug in which Nmap recognizes Kojoney as a honeypot was fixed.

Kojoney search tags