Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details

All Projects → IllusiveNetworks-Labs → WebTrap

IllusiveNetworks-Labs / WebTrap

Licence: BSD-3-Clause License

This project is designed to create deceptive webpages to deceive and redirect attackers away from real websites.

Programming Languages

139335 projects - #7 most used programming language

184084 projects - #8 most used programming language

75241 projects

Labels

honeypot deception deceptive-webpages web-cloner

Projects that are alternatives of or similar to WebTrap

安全、快捷、高交互、企业级的蜜罐管理系统，护网；支持多种协议蜜罐、蜜签、诱饵等功能。A safe, fast, highly interactive and enterprise level honeypot management system, supports multiple protocol honeypots, honeytokens, baits and other functions.

Stars: ✭ 1,051 (+2235.56%)

Mutual labels: honeypot, deception

HellPot is a portal to endless suffering meant to punish unruly HTTP bots.

Stars: ✭ 146 (+224.44%)

Mutual labels: honeypot, deception

Windows version of honeybits - a PoC tool to create breadcrumbs and honeytokens, to lead the attackers to your honeypots!

Stars: ✭ 20 (-55.56%)

Mutual labels: honeypot, deception

Cowrie SSH/Telnet Honeypot https://cowrie.readthedocs.io

Stars: ✭ 3,810 (+8366.67%)

Mutual labels: honeypot, deception

weblogic honeypot

WebLogic Honeypot is a low interaction honeypot to detect CVE-2017-10271 in the Oracle WebLogic Server component of Oracle Fusion Middleware. This is a Remote Code Execution vulnerability.

Stars: ✭ 30 (-33.33%)

Mutual labels: honeypot, deception

Distributed Honeypot

Stars: ✭ 54 (+20%)

Mutual labels: honeypot, deception

A Heroku-based web honeypot that can be used to create and monitor fake HTTP endpoints (i.e. honeytokens).

Stars: ✭ 56 (+24.44%)

Mutual labels: honeypot, deception

🍯 Analyze and Visualize Data from Modern Honey Network Servers with R

Stars: ✭ 16 (-64.44%)

Mutual labels: honeypot

Low Interaction Mobile Honeypot

Stars: ✭ 58 (+28.89%)

Mutual labels: honeypot

Let's be scanned. A low-interaction honeypot focused on network scanners and bots. It integrates very well with IVRE to build a self-hosted alternative to GreyNoise.

Stars: ✭ 50 (+11.11%)

Mutual labels: honeypot

twisted-honeypots

SSH, FTP and Telnet honeypots based on Twisted

Stars: ✭ 79 (+75.56%)

Mutual labels: honeypot

django-antispam

Spam protection tools for django applications.

Stars: ✭ 50 (+11.11%)

Mutual labels: honeypot

Low to medium multithreaded Ubuntu Core honeypot coded in Python.

Stars: ✭ 59 (+31.11%)

Mutual labels: honeypot

RDP honeypot

Stars: ✭ 55 (+22.22%)

Mutual labels: honeypot

OSINT Threat Intel Interface - CLI for HoneyDB

Stars: ✭ 104 (+131.11%)

Mutual labels: honeypot

Inserts a trap for spam bots into responses.

Stars: ✭ 22 (-51.11%)

Mutual labels: honeypot

Elasticsearch honeypot written in Python with Bottle framework

Stars: ✭ 16 (-64.44%)

Mutual labels: honeypot

Capture passwords of login attempts on non-existent and disabled accounts.

Stars: ✭ 31 (-31.11%)

Mutual labels: honeypot

🐝 A highly scalable, safe, free enterprise honeypots 一款高可扩展、安全、免费的企业级蜜罐系统

Stars: ✭ 213 (+373.33%)

Mutual labels: deception

A distributed peer to peer list of bad actor IP addresses and phone numbers collected via a SIP Honeypot.

Stars: ✭ 108 (+140%)

Mutual labels: honeypot

View All Similar Projects ➔

WebTrap

This project is designed to create deceptive webpages to deceive and redirect attackers away from real websites. The deceptive webpages are generated by cloning real websites, specifically their login pages. For further reading material on the tool development, please visit our blog.

Getting Started

The project is composed of two tools:

Web Cloner - Responsible for cloning real websites and creating the deceptive web pag.e
Deceptive Web server - Responsible for serving the cloned webpages, and reporting to a syslog server upon requests

Operating System

The project was designed and tested on an Ubuntu 16.04 machine

Prerequisites

pip install requests
apt install gir1.2-webkit2-3.0 python-gi python-gi-cairo python3-gi python3-gi-cairo gir1.2-gtk-3.0

How to use

How to use the Web Cloner

usage: WebCloner.py [-h] [-o OUTPUT_DIRECTORY] website_url

positional arguments:
  website_url           The URL path to the web page you desire to clone

optional arguments:
  -h, --help            show this help message and exit
  -o OUTPUT_DIRECTORY, --output-directory OUTPUT_DIRECTORY
                        Setting the output directory for the cloned webpage

How to run the Deceptive web server

usage: TrapServer.py [-h] [--webroot-directory WEBROOT_DIRECTORY]
                     [--syslog-server SYSLOG_SERVER]
                     [--log-file-path LOG_FILE_PATH]

optional arguments:
  -h, --help            show this help message and exit
  --webroot-directory WEBROOT_DIRECTORY, -d WEBROOT_DIRECTORY
                        root directory for the HTTP server
  --syslog-server SYSLOG_SERVER, -s SYSLOG_SERVER
                        syslog server that the deceptive user will report the
                        request to it
  --log-file-path LOG_FILE_PATH, -l LOG_FILE_PATH
                        access log file path

Examples

Cloning Wikipedia login page

python ./WebCloner.py -o ~/WikiPediaLoginPage/ https://en.wikipedia.org/w/index.php?title=Special:UserLogin

Running deceptive web server

sudo python ./TrapServer.py -d ~/WikiPediaLoginPage/ -s <SYSLOG_SERVER>

Authors

Dolev Ben Shushan

License

This project is licensed under the BSD 3-clause license - see the LICENSE file for details

Thanks

@king-phisher project for the initial web_cloner
@Session.js project for the client side data collection

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].

Stars: ✭ 45

Visit Git Page 🔗Visit User Page 🔗Visit Issues Page (2) 🔗