Kojoney
Kojoney is an easy of use, secure, robust, and powerful Honeypot for the SSH service. It includes other tools such as kip2country (IP to Country) and kojreport, a tool to generate reports from the log files.
| Tags | Security Cryptography Logging Monitoring Networking Internet Log Analysis |
|---|---|
| Licenses | GPL |
| Operating Systems | OS Independent |
| Implementation | Perl Python Unix Shell |
| Translations | English |
Recent releases
- 30 Aug 2006 05:18
Changes: Support for downloading files solicited by the attacker was added. IP-Country was upgraded to 2.21. A bug regarding amd64/fc5 was fixed. A bug in ZopeInterface-3.0.1 that prevents compilation on amd64 was fixed. The username and password file was updated from 42 combinations to 23752. Other minor fixes were made. A bug in which Nmap recognizes Kojoney as a honeypot was fixed.
- 11 Aug 2005 21:51
Changes: The "Use of uninitialized value in concatenation" error when calling kip2country with an IP address whose country is unknown was corrected. The installation script was changed because vital libraries were added to the main package. A small change was made to kojoney.py to address a currently known bug.
- 05 Aug 2005 00:17
Changes: Corrections were made to the install and uninstall scripts and to the reporting tools. Support was added for getting the full name of a country from the IP address, not only the two-letter abbreviation. The reporting tool "kojsession" was added to generate a report of a specified session. The reporting tool "kojhumans" was added to detect whether intruders were humans or bots. More "popular" username and password combinations were added.
