GitHub - morgenm/basicgopot: Honeypot for file uploads. Written in Go.
github.com
Honeypot for file uploads. Written in Go. Contribute to morgenm/basicgopot development by creating an account on GitHub.

cross-posted from: https://infosec.pub/post/249829

Basicgopot is a basic honeypot I have been developing. It is an HTTP honeypot that logs and saves all file uploads, optionally checking the uploaded file against VirusTotal. Additionally, the user can easily extend the functionality of the honeypot by configuring API webhooks. I plan on adding more features and possibly broadening the project’s scope to include deploying deceptions for other protocols.

I would appreciate any feedback and contributions are always welcome.

  • @CodeBlooded@programming.devEnglish
    21 year ago

    Not that it really matters, but the readme says

    The touch command must be run the first time the server is run because uploads.json must exist for it to not be mapped as a directory by docker.

    while the example shows echo "{}" > uploads.json instead of touch.

    • @morgen
      OPEnglish
      21 year ago

      Thank you for pointing that out. I updated the readme accordingly :)