Skip to content

micheloosterhof/6.857-honeypot

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits

cowrie

cowrie

 
 

parsing

parsing

 
 

README.md

README.md

 
 

Repository files navigation

6.857-honeypot

This is a final project I did along with three other MIT students for our Computer & Network Security class, 6.587, taught by Ron Rivest.

We set up a honeypot based on on Michael Oosterhoof's Cowrie SSH Honeypot (which is based on Kippo). We added functionality for logging in with an SSH key.

We hosted the honeypot using an AWS EC2 server and posted its IP address along with private keys to public GitHub repositories, and then parsed the logs we collected to study the attackers' methodologies, actions, and identities.

Honeypot code is located in /cowrie, and parsing code along with ten days' of logs is in /parsing.

About

A group final project for 6.857 that entailed setting up a honeypot and studying the hackers who tried to break into it.

Resources

Readme
Activity

Stars

1 star

Watchers

2 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages