kippo
kippo copied to clipboard
desaster
Kippo - SSH Honeypot
Credit: https://bitbucket.org/reuteras/kippo/ ...Could extend this by putting it into the config file too
_Its not perfect_ ...Hoping its 'enough' to trick the average user #### Before ``` bash root@nas3:~# ps -ef PID TTY TIME COMMAND 5673 pts/0 0:00 -bash 5679 pts/0 0:00 ps...
This isn't idiot proof. Its not perfect... ...However, its the start of something! #### Before ``` bash root@nas3:~# echo > > root@nas3:~# echo test > 123 test > 123 root@nas3:~#...
Email notification on: - Probe (recommended for LAN use only) - Successful login - User quit Credit: https://github.com/jongreenall/kippo-dirtybastard/ --- #### Probe email Subject: `[Kippo] SSH Probe` Message: ``` There was...
Credit: https://github.com/basilfx/kippo-extra Result: ``` bash root@nas3:~# env LOGNAME=root USER=root HOME=/root PATH=/bin:/usr/bin:/sbin:/usr/sbin _=/usr/bin/env LANG=en_US.UTF-8 TERM=xterm-256color SHELL=/bin/bash LANGUAGE=en_GB:en SHLVL=1 SSH_TTY=/dev/pts/0 PWD=/root MAIL=/var/mail/root root@nas3:~# ```
seem like kippo failed to handle wget parameter self-explanatory picture 
Fixes issue #83 Credit: https://github.com/micheloosterhof/kippo
Some default system files that I've seen attackers checking for. Helps to make the system look more "real".
- Update **filesystem** (Taken on a fresh clean install of my VPS) - Update **users/groups** (and at the same time remove 'richard') - Update **SSH banner** (As the 'package' would...