cross-posted from: https://infosec.pub/post/249829

Basicgopot is a basic honeypot I have been developing. It is an HTTP honeypot that logs and saves all file uploads, optionally checking the uploaded file against VirusTotal. Additionally, the user can easily extend the functionality of the honeypot by configuring API webhooks. I plan on adding more features and possibly broadening the project’s scope to include deploying deceptions for other protocols.

I would appreciate any feedback and contributions are always welcome.

  • CodeBlooded@programming.dev
    link
    fedilink
    English
    arrow-up
    2
    ·
    1 year ago

    Not that it really matters, but the readme says

    The touch command must be run the first time the server is run because uploads.json must exist for it to not be mapped as a directory by docker.

    while the example shows echo "{}" > uploads.json instead of touch.

    • morgenOP
      link
      fedilink
      English
      arrow-up
      2
      ·
      1 year ago

      Thank you for pointing that out. I updated the readme accordingly :)