Projects

This page contains a list of tools and services that we use on a regular basis. Most of these tools have been created by our members and GSoC students, but some are also external and not affiliated with the Honeynet Project. If you see that a specific tool is not listed, but should, feel free to email [email protected]. Projects are sorted by last commit date.

Active Projects

Intel Owl

IntelOwl: manage your Threat Intelligence at scale

Website GitHub 4165 Python AGPL-3.0

cyber-security cyber-threat-intelligence cybersecurity dfir enrichment hacktoberfest honeynet incident-response intel-owl ioc malware-analysis malware-analyzer osint osint-python python

BuffaLogs

an Open Source Django App whose main purpose is to detect login anomalies

GitHub 46 Python

GreedyBear

Threat Intel Platform for T-POTs

GitHub 153 Python MIT

cyber-threat-intelligence cybersecurity hacktoberfest honeypot ioc open-source python threat-intelligence threatintel tpot

mitmproxy

An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.

Website GitHub 39.6k Python MIT

debugging http http2 man-in-the-middle mitmproxy proxy python security ssl tls websocket

thug

Python low-interaction honeyclient

GitHub 1016 Python GPL-2.0

client-honeypot honeyclient low-interaction python security-tools shellcode virustotal

T-Pot

The All In One Multi Honeypot Platform 🐝

GitHub 8014 C GPL-3.0

deception docker elk honeypot network-security security t-pot

DRAKVUF

Black-box Binary Analysis

Website GitHub 1129 C++

introspection malware-analysis virtualization xen

Glutton

Generic Low Interaction Honeypot

GitHub 279 Go MIT

hacktoberfest honeypot

ochi

Website GitHub 31 Go GPL-3.0

honeypot visualization

PcapMonkey

will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.

GitHub 154 Zeek

Conpot

ICS/SCADA honeypot

GitHub 1350 Python GPL-2.0

hacktoberfest honeypot ics python scada security

honeyscanner

A vulnerability analyzer for honeypots

Website GitHub 43 Python MIT

cybersecurity cybersecurity-assessments dos-attack exploitation fuzzing honeypots passive-vulnerability-scanner ssh-honeypot vulnerability-scanner

TANNER

He who flays the hide

GitHub 228 Python GPL-3.0

honeypot security

DroidBot

A lightweight test input generator for Android. Similar to Monkey, but with more intelligence and cool features!

GitHub 881 Python MIT

dionaea

Home of the dionaea honeypot

Website GitHub 753 Python GPL-2.0

dionaea honeypot security

Glastopf

Web Application Honeypot

Website GitHub 577 Python

Old Projects

SNARE

Super Next generation Advanced Reactive honEypot

Website GitHub 465 Python GPL-3.0

hacktoberfest honeypot security

WhisperPot

VoIP honeypot system

GitHub 20 Python MIT

honeypot voip

RIoTPot

the IoT and OT (Operational Technology) Honeypot

GitHub 25 Go MIT

Kippo

SSH Honeypot

GitHub 1695 Python

Droidbox

Dynamic analysis of Android apps

GitHub 781 Python

cuckoo

Sandbox is an automated dynamic malware analysis system

Website GitHub 5723 JavaScript

dockpot

GitHub 52 Python

Google Hack Honeypot

GitHub 7 PHP GPL-2.0

honeypot security

Honeytrap

a low-interaction honeypot

GitHub 94 C GPL-2.0

GVol

GitHub 20 Java MIT

Capture-HPC

A high interaction client honeypot

GitHub 31 C

Capture BAT

a behavioral analysis tool of applications for the Win32 operating system family.

GitHub 32 C++ GPL-2.0

honeysnap

GitHub 13 Python

honeyc

GitHub 8 Ruby

HFlow2

GitHub 5 C++ GPL-2.0

APKinspector

a powerful GUI tool for analysts to analyze the Android applications.

GitHub 842 Java

HoneyBow

A high-interaction malware collection toolkit

Website

Honeyd

A low-interaction honeypot

Honeystick

A portable honeynet demonstration and incident response tool

Latest Activity

spoiicy pushed to intelowlproject/IntelOwl · at June 25, 2025

1 commit to intelowlproject/IntelOwl

78ef2b2 fixes

spoiicy pushed to intelowlproject/IntelOwl · at June 25, 2025

1 commit to intelowlproject/IntelOwl

5c64705 handled other hash types and restored old schema

sleeyax opened a pull request in mitmproxy/mitmproxy. · at June 25, 2025

#7784 Rewrite mitmweb with a focus on modern UI/UX (WIP)

14697 additions and 80 deletions in 129 changed files.

kunalsz opened a pull request in certego/BuffaLogs. · at June 24, 2025

#320 Email Integration in Users Model

105 additions and 7 deletions in 6 changed files.

Lorygold opened a pull request in certego/BuffaLogs. · at June 23, 2025

#318 Update python dependencies

106 additions and 82 deletions in 31 changed files.

AyushPatiTripathi opened a pull request in mitmproxy/mitmproxy. · at June 20, 2025

#7782 mitmweb: Add local timezone display option for timing info (fixes #7773)

127 additions and 85 deletions in 4 changed files.

t3chn0m4g3 pushed to telekom-security/tpotce · at June 14, 2025

1 commit to telekom-security/tpotce

6933ee0 bump elastic stack to 8.18.2

t3chn0m4g3 pushed to telekom-security/tpotce · at June 14, 2025

1 commit to telekom-security/tpotce

8fd23d7 setup multiarch builder

tklengyel pushed to tklengyel/drakvuf · at June 12, 2025

1 commit to tklengyel/drakvuf

da7dbcd Support for Windows Vista: skip ObTypeIndexTable and ObpInfoMaskToOffset for …

julie-nga opened a pull request in tklengyel/drakvuf. · at June 10, 2025

#1840 Support for Windows Vista: skip ObTypeIndexTable and ObpInfoMaskToOffset for Vista

6 additions and 3 deletions in 1 changed files.

buffer pushed to buffer/thug · at June 9, 2025

2 commits to buffer/thug

969a80a Update requirements: Bump requests from 2.32.3 to 2.32.4 88a7531 Merge pull request #411 from buffer/dependabot/pip/requests-2.32.4

github-actions published GreedyBear 1.6.4. 🎉 · at June 7, 2025

mlodic pushed to intelowlproject/GreedyBear · at June 7, 2025

7 commits to intelowlproject/GreedyBear

cee4d1e adjusted readme c5fc0ad Bump celery from 5.5.2 to 5.5.3 in /requirements (#520) 1515d5c Bump uwsgi from 2.0.29 to 2.0.30 in /requirements (#518)

buffer pushed to buffer/thug · at June 4, 2025

1 commit to buffer/thug

84d3f1c Update requirements