How to setup a honeypot with an IDS, ELK and TLS traffic inspection
☆167Jul 11, 2022Updated 3 years ago
Alternatives and similar repositories for how-to-setup-a-honeypot
Users that are interested in how-to-setup-a-honeypot are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- PoC☆12Apr 7, 2025Updated last year
- A Sigma based detection pipeline☆12Dec 15, 2023Updated 2 years ago
- Ludus roles to deploy ASR rules and MDI auditing settings☆25Aug 5, 2025Updated 11 months ago
- Log4j honeypot to capture payloads within HTTP headers, query parameters and POST requests.☆14Dec 15, 2021Updated 4 years ago
- CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition☆66Jun 18, 2026Updated 2 weeks ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- SANS #CTI Summit 2025☆13Jan 28, 2025Updated last year
- ☆75Oct 16, 2022Updated 3 years ago
- A honeypot for the Log4Shell vulnerability (CVE-2021-44228).☆94Nov 29, 2024Updated last year
- An Ansible playbook for deploying the Suricata intrusion detection system and fetching Snort rules with Oinkmaster.☆17Oct 30, 2021Updated 4 years ago
- A collection of cyberchef recipes for use in osint investigations☆14Jul 2, 2022Updated 4 years ago
- ACT documentation repo☆16May 22, 2024Updated 2 years ago
- Sentinel Guard - Use to build up Honeypot and Honeynet with ZERO cost easily and simply.☆18Jul 25, 2021Updated 4 years ago
- Extensions for Zeek's Intelligence Framework.☆11Mar 1, 2022Updated 4 years ago
- DetectionLabELK is a fork from DetectionLab with ELK stack instead of Splunk.☆573Dec 12, 2021Updated 4 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A high-interaction virtual honeypot for ICS that provides physical process simulation☆21May 10, 2024Updated 2 years ago
- Adversary Simulation Framework☆41Aug 19, 2025Updated 10 months ago
- Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)☆99Apr 25, 2025Updated last year
- ☆12Nov 25, 2020Updated 5 years ago
- A fast Go-based tool to uncover sensitive information in JavaScript☆40Jul 6, 2025Updated last year
- Notebooks created to attack and secure Active Directory environments☆27Nov 18, 2019Updated 6 years ago
- Diaphora Machine Learning tools and datasets☆24Sep 23, 2024Updated last year
- ☆70May 3, 2021Updated 5 years ago
- AttackGen is a cybersecurity incident response testing tool that leverages the power of large language models and the comprehensive MITRE…☆1,222Jun 28, 2026Updated last week
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- Modular malware analysis artifact collection and correlation framework☆56Apr 23, 2024Updated 2 years ago
- ☆34Aug 8, 2023Updated 2 years ago
- Ransomware Simulator for testing Blue Team Detections☆38Jun 5, 2022Updated 4 years ago
- An Adaptive Misuse Detection System☆48Nov 4, 2024Updated last year
- Searching .evtx logs for remote connections☆24Jul 6, 2023Updated 3 years ago
- Live Feed of C2 servers, tools, and botnets☆774Apr 13, 2026Updated 2 months ago
- BlueHound - pinpoint the security issues that actually matter☆766Jul 12, 2023Updated 2 years ago
- Zeek Training Materials/Products☆45Apr 21, 2026Updated 2 months ago
- YARA Rule Strings Statistics Calculator and Malware Research Helper☆14Jul 24, 2021Updated 4 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Hfinger - fingerprinting HTTP requests☆147May 16, 2023Updated 3 years ago
- An offensive security framework for writing payloads☆20Sep 13, 2022Updated 3 years ago
- An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.☆340Dec 3, 2025Updated 7 months ago
- A defense tool - detect web shells in local directories via md5sum☆32Jul 18, 2019Updated 6 years ago
- A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…☆40Aug 18, 2022Updated 3 years ago
- Sysmon event simulation utility which can be used to simulate the attacks to generate the Sysmon Event logs for testing the EDR detection…☆867Jan 20, 2022Updated 4 years ago
- Advanced Vulnerable Web Application (AVWA)☆14Jun 10, 2017Updated 9 years ago