479 Open source projects that are alternatives of or similar to Heralding

Low to medium multithreaded Ubuntu Core honeypot coded in Python.

OSINT Threat Intel Interface - CLI for HoneyDB

Kubernetes RBAC static Analysis & visualisation tool

Honeypot's Tech Map

Capture passwords of login attempts on non-existent and disabled accounts.

YARA malware query accelerator (web frontend)

A distributed peer to peer list of bad actor IP addresses and phone numbers collected via a SIP Honeypot.

secureCodeBox (SCB) - continuous secure delivery out of the box

Spam protection tools for django applications.

A list of vulnerabilities or design flaws that Microsoft does not intend to fix. Since the number is growing, I decided to make a list. This list covers only vulnerabilities that came up in July 2021 (and SpoolSample ;-))

An awesome list of resources on deception-based security with honeypots and honeytokens

A dockerized fake SSH server honeypot written in Go that logs login attempts.

NERVE Continuous Vulnerability Scanner

This project is designed to create deceptive webpages to deceive and redirect attackers away from real websites.

🍯 Generic honeypot utilities for use in django projects.

Elasticsearch honeypot written in Python with Bottle framework

IAST 灰盒扫描工具

HellPot is a portal to endless suffering meant to punish unruly HTTP bots.

A REST API security testing framework.

Windows version of honeybits - a PoC tool to create breadcrumbs and honeytokens, to lead the attackers to your honeypots!

Trojan 🐍 (keylogger, take screenshots, open your webcam) 🔓

Inserts a trap for spam bots into responses.

A Deep Graph-based Toolbox for Fraud Detection

Citrix ADC (NetScaler) Honeypot. Supports detection for CVE-2019-19781 and login attempts

The Staff-Manager App Server for Enterprise Token Safe BOX

A low-to-medium interaction SSH Honeypot with features to capture terminal activity and upload to asciinema.org

WebLogic Honeypot is a low interaction honeypot to detect CVE-2017-10271 in the Oracle WebLogic Server component of Oracle Fusion Middleware. This is a Remote Code Execution vulnerability.

This repository created for personal use and added tools from my latest blog post.

一款可以检测WEB蜜罐并阻断请求的Chrome插件，能够识别并阻断长亭D-sensor、墨安幻阵的部分溯源api

Fully automated offensive security framework for reconnaissance and vulnerability scanning

A simple log viewer for cowrie

DejaVU - Open Source Deception Framework

LLMNR/NBNS/mDNS Spoofing Detection Toolkit

Web Scan Lazy Tools - Python Package

ELKFH - Elastic, Logstash, Kibana, Filebeat and Honeypot (HTTP, HTTPS, SSH, RDP, VNC, Redis, MySQL, MONGO, SMB, LDAP)

Linux vulnerability scanner based on Salt Open and Vulners audit API, with Slack notifications and JIRA integration

RDP honeypot

A tool for identifying misconfigured CloudFront domains

An HTTP and HTTPS sniffing tool created using a Raspberry Pi

Automated cacert.pem management for PHP projects

Low Interaction Mobile Honeypot

RMIScout uses wordlist and bruteforce strategies to enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilities

A high scalable low to medium interactive SSH/TCP honeypot using Linux Namespaces, capabilities, seccomp, cgroups designed for OpenWrt and IoT devices.

Continuously monitor your AWS services for configurations that can lead to degradation of confidentiality, integrity or availability. All results will be sent to Security Hub for further aggregation and analysis.

A Heroku-based web honeypot that can be used to create and monitor fake HTTP endpoints (i.e. honeytokens).

Help building an adaptive and fine-grained pod security policy

🍯 Analyze and Visualize Data from Modern Honey Network Servers with R

Plugin to block compilation when unapproved dependencies are used or code styling does not comply.

Let's be scanned. A low-interaction honeypot focused on network scanners and bots. It integrates very well with IVRE to build a self-hosted alternative to GreyNoise.

Next generation web scanner

SSH, FTP and Telnet honeypots based on Twisted

A Docker Image For the Open Vulnerability Assessment Scanner (OpenVAS)

Distributed Honeypot

🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.

SSH Honey pot for docker

Framework designed to automate various wireless networks attacks (the project was presented on Pentester Academy TV's toolbox in 2017).

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

⬆️ ☠️ Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, polkit, docker socket

An automated target reconnaissance pipeline.

Honeypot log processor to create OTX Pulse entries