A honeypot is an information system resource whose value lies in unauthorized or illicit use of that resource.
HoneyBox is a virtual hard disk drive (VMDK format) with Ubuntu Server 11.10 32-bit edition installed. It contains various honeypot systems such as Kippo SSH honeypot, Dionaea malware honeypot and Honeyd. Additionally it includes useful scripts and utilities to analyze and visualize the data it captures. Lastly, other helpful tools like tshark (command-line Wireshark), pdftools, etc. are also present.
DOWNLOAD:
The latest version (0.1) contains Kippo SSH honeypot and related scripts (kippo-graph, kippo-stats, kippo-sessions, etc). Everything is pre-configured to work. Due to its size the file is hosted at SourceForge:http://sourceforge.net/projects/honeybox/
Please also take a look at the README.txt file at SourceForge (also included inside the disk) to learn the specific features and where everything is located.
INSTALLATION:
After downloading the file, you must uncompress it and then you simply have to create a new virtual machine (suggested software: Oracle VM VirtualBox) and select the VMDK drive as its hard disk.
Specification -
OS: Ubuntu Server 11.10 32-bit
HDD: VMDK 15GB (2GB split)
Localization: English (UK), UK layout, GMT
Extra: Automatic security updates
Software: OpenSSH (port: 2222) & LAMP server
[System]
Connectivity: DHCP
Hostname: honeybox
User: HoneyBox User
Username/Password: honeybox/honeybox
MySQL root password: honeybox
+ phpMyAdmin
[Kippo]
Path: /home/honeybox/kippo/
Port: 22
MySQL db: kippodb
MySQL user: kippouser
MySQL pass: kippopass
[Kippo-Graph]
Path: /var/www/kippo-graph
[Kippo-Scripts]
Path: /home/honeybox/
+ kippo2mysql.pl
+ kippo-sessions.sh
+ kippo-stats.pl
Kippo2MySQL db: kippo2mysql
Kippo2MySQL user: kippouser
Kippo2MySQL pass: kippopass
Visit Website -
http://bruteforce.gr/honeybox
For more information on Honeypot
Sources -
Honey pot Diagram Source -
0 comments:
Post a Comment