Projects

This page contains a list of tools and services that we use on a regular basis. Most of these tools have been created by our members and GSoC students, but some are also external and not affiliated with the Honeynet Project. If you see that a specific tool is not listed, but should, feel free to email [email protected]. Projects are sorted by last commit date.

Active Projects

GreedyBear

Threat Intel Platform for T-POTs

GitHub 150 Python MIT
cyber-threat-intelligence cybersecurity hacktoberfest honeypot ioc open-source python threat-intelligence threatintel tpot

Intel Owl

IntelOwl: manage your Threat Intelligence at scale

Website GitHub 4142 Python AGPL-3.0
cyber-security cyber-threat-intelligence cybersecurity dfir enrichment hacktoberfest honeynet incident-response intel-owl ioc malware-analysis malware-analyzer osint osint-python python

BuffaLogs

an Open Source Django App whose main purpose is to detect login anomalies

GitHub 45 Python

thug

Python low-interaction honeyclient

GitHub 1014 Python GPL-2.0
client-honeypot honeyclient low-interaction python security-tools shellcode virustotal

mitmproxy

An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.

Website GitHub 39.4k Python MIT
debugging http http2 man-in-the-middle mitmproxy proxy python security ssl tls websocket

Glutton

Generic Low Interaction Honeypot

GitHub 278 Go MIT
hacktoberfest honeypot

T-Pot

The All In One Multi Honeypot Platform 🐝

GitHub 7959 C GPL-3.0
deception docker elk honeypot network-security security t-pot

DRAKVUF

Black-box Binary Analysis

Website GitHub 1127 C++
introspection malware-analysis virtualization xen

ochi

Website GitHub 31 Go GPL-3.0
honeypot visualization

PcapMonkey

will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.

GitHub 153 Zeek

Conpot

ICS/SCADA honeypot

GitHub 1337 Python GPL-2.0
hacktoberfest honeypot ics python scada security

honeyscanner

A vulnerability analyzer for honeypots

Website GitHub 41 Python MIT
cybersecurity cybersecurity-assessments dos-attack exploitation fuzzing honeypots passive-vulnerability-scanner ssh-honeypot vulnerability-scanner

TANNER

He who flays the hide

GitHub 227 Python GPL-3.0
honeypot security

DroidBot

A lightweight test input generator for Android. Similar to Monkey, but with more intelligence and cool features!

GitHub 874 Python MIT

dionaea

Home of the dionaea honeypot

Website GitHub 746 Python GPL-2.0
dionaea honeypot security

Glastopf

Web Application Honeypot

Website GitHub 576 Python

SNARE

Super Next generation Advanced Reactive honEypot

Website GitHub 464 Python GPL-3.0
hacktoberfest honeypot security

Old Projects

WhisperPot

VoIP honeypot system

GitHub 20 Python MIT
honeypot voip

RIoTPot

the IoT and OT (Operational Technology) Honeypot

GitHub 25 Go MIT

Kippo

SSH Honeypot

GitHub 1685 Python

Droidbox

Dynamic analysis of Android apps

GitHub 774 Python

cuckoo

Sandbox is an automated dynamic malware analysis system

Website GitHub 5704 JavaScript

dockpot

GitHub 52 Python

Google Hack Honeypot

Google Hack Honeypot

GitHub 7 PHP GPL-2.0
honeypot security

Honeytrap

a low-interaction honeypot

GitHub 94 C GPL-2.0

GVol

GitHub 20 Java MIT

Capture-HPC

A high interaction client honeypot

GitHub 31 C

Capture BAT

a behavioral analysis tool of applications for the Win32 operating system family.

GitHub 32 C++ GPL-2.0

honeysnap

GitHub 13 Python

honeyc

GitHub 8 Ruby

HFlow2

GitHub 5 C++ GPL-2.0

APKinspector

a powerful GUI tool for analysts to analyze the Android applications.

GitHub 841 Java

HoneyBow

A high-interaction malware collection toolkit

Website

Honeyd

A low-interaction honeypot

Honeystick

A portable honeynet demonstration and incident response tool

Latest Activity

@mlodic
mlodic pushed to intelowlproject/GreedyBear · at June 5, 2025
2 commits to intelowlproject/GreedyBear
3e71a16 updated home 2b7f5d6 Merge branch 'develop' of github.com:intelowlproject/GreedyBear into develop
@Lorygold
Lorygold pushed to certego/BuffaLogs · at June 5, 2025
1 commit to certego/BuffaLogs
67e8cd7 Adds GoogleChat Alerter (#289)
@pranjalg1331
pranjalg1331 pushed to intelowlproject/IntelOwl · at June 5, 2025
1 commit to intelowlproject/IntelOwl
2203d90 making class method
@pranjalg1331
pranjalg1331 pushed to intelowlproject/IntelOwl · at June 5, 2025
1 commit to intelowlproject/IntelOwl
295ff9b correct python error
@github-actions
github-actions published BuffaLogs 2.4.0. 🎉 · at June 4, 2025
@mhils
mhils pushed to mitmproxy/mitmproxy · at June 4, 2025
1 commit to mitmproxy/mitmproxy
5390f3e Bump mhils/workflows from b71b699e73564a34763a256b9efc8139a5d1c3fd to …
@buffer
buffer pushed to buffer/thug · at June 4, 2025
1 commit to buffer/thug
84d3f1c Update requirements
@injust
injust opened a pull request in mitmproxy/mitmproxy. · at June 4, 2025
#7754 Convert `mitmproxy.optmanager` functions into `OptManager` methods
144 additions and 158 deletions in 8 changed files.
@github-actions
github-actions published GreedyBear 1.6.3. 🎉 · at May 29, 2025
@buffer
buffer pushed to buffer/thug · at May 28, 2025
2 commits to buffer/thug
4255caf Update requirements: Bump yara-python from 4.5.2 to 4.5.4 8254b70 Merge pull request #410 from buffer/dependabot/pip/yara-python-4.5.4
@t3chn0m4g3
t3chn0m4g3 pushed to telekom-security/tpotce · at May 25, 2025
1 commit to telekom-security/tpotce
404ce6d Create main.yml
@t3chn0m4g3
t3chn0m4g3 pushed to telekom-security/tpotce · at May 25, 2025
1 commit to telekom-security/tpotce
700100c Fix links
@glaslos
glaslos pushed to mushorg/glutton · at May 24, 2025
1 commit to mushorg/glutton
9c9d8bd bedder udp payload truncating
@glaslos
glaslos opened a pull request in mushorg/glutton. · at May 24, 2025
#183 Embed default config
59 additions and 54 deletions in 9 changed files.