ハニーポット | 待ち受けポート | ハニーポットの目的 | |
ADBHoney | 5555/TCP | Android Debugハニーポット | https://github.com/huuck/ADBHoney |
Cisco ASA Honeypot | 5000/UDP, 8443/TCP | Cisco ASAデバイスの模倣 | https://github.com/Cymmetria/ciscoasa_honeypot |
CitrixHoneypot | 443/TCP | Citrix ADCの脆弱性(CVE-2019-19781)検出 | https://github.com/MalwareTech/CitrixHoneypot |
Conpot | 80/TCP, 102/TCP, 502/TCP, 1025/TCP, 2404/TCP, 10001/TCP, 44818/TCP, 47808/TCP, 50100/TCP, 161/UDP, 623/UDP | ICS/SCADAシステムの模倣 | http://conpot.org/ |
Cowrie | 22/TCP, 23/TCP | SSH/TELNETアクセスの捕捉 | https://github.com/cowrie/cowrie |
Ddospot | 19/UDP, 53/UDP, 123/UDP, 1900/UDP | DDoS攻撃検出(DNS/NTP/SSDP/CHARGEN/UDP) | https://github.com/aelth/ddospot |
Dicompot | 11112/TCP | DICOM(医療データ通信)の模倣 | https://github.com/nsmfoo/dicompot |
Dionaea | 21/TCP, 42/TCP, 135/TCP, 443/TCP, 445/TCP, 1433/TCP, 1723/TCP, 1883/TCP, 3306/TCP, 8081/TCP, 69/UDP | 多種の脆弱性捕捉(shellcode) | https://github.com/DinoTools/dionaea |
ElasticPot | 9200/TCP | Elasticsearchの脆弱性検出 | https://gitlab.com/bontchev/elasticpot |
Endlessh | 22/TCP | SSH Tarpit | https://github.com/skeeto/endlessh |
Heralding | 21/TCP, 22/TCP, 23/TCP, 25/TCP, 80/TCP, 110/TCP, 143/TCP, 443/TCP, 993/TCP, 995/TCP, 1080/TCP, 5432/TCP, 5900/TCP | FTP、TELNET、SSH、HTTP、POP3、IMAPなど | https://github.com/johnnykv/heralding |
IPPHoney | 631/TCP | IPP(Internet Printing Protocol) | https://gitlab.com/bontchev/ipphoney |
Log4Pot | 80/TCP, 443/TCP, 8080/TCP, 9200/TCP, 25565/TCP | Log4Shell脆弱性捕捉 | https://github.com/thomaspatzke/Log4Pot |
Mailoney | 25/TCP | SMTPの模倣 | https://github.com/awhitehatter/mailoney |
Medpot | 2575/TCP | HL7/FHIR(医療データ)の模倣 | https://github.com/schmalle/medpot |
RedisHoneyPot | 6379/TCP | Redisの脆弱性検出 | https://github.com/cypwnpwnsocute/RedisHoneyPot |
SentryPeer | 5060/TCP/UDP | SIP(IP電話)の攻撃検出 | https://github.com/SentryPeer/SentryPeer |
Snare | 80/TCP | Webアプリケーションハニーポット | http://mushmush.org/ |
Wordpot | 8090/TCP | WordPressの脆弱性検出 | https://github.com/gbrindisi/wordpot |
コメント