https://github.com/cpl/honey.zip
A "honeypot" server in Go, that will respond with 200 and a file (wink wink nudge nudge, use a zip bomb)
https://github.com/cpl/honey.zip
Last synced: 5 months ago
JSON representation
A "honeypot" server in Go, that will respond with 200 and a file (wink wink nudge nudge, use a zip bomb)
- Host: GitHub
- URL: https://github.com/cpl/honey.zip
- Owner: cpl
- License: unlicense
- Created: 2019-10-29T17:15:48.000Z (over 6 years ago)
- Default Branch: master
- Last Pushed: 2019-10-29T17:35:05.000Z (over 6 years ago)
- Last Synced: 2024-06-20T03:26:41.513Z (almost 2 years ago)
- Language: Go
- Size: 4.88 KB
- Stars: 1
- Watchers: 2
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# honey.zip
[](https://goreportcard.com/report/github.com/cpl/honey.zip)
---
A minimal Go web-server that will respond to any and all requests with a simple `200` and a file (which I recommend to be a [zip bomb](https://en.wikipedia.org/wiki/Zip_bomb) with a masked name).
**Disclaimer**, do not use for malicious purposes. Only for educational, pen-testing and proof-of-concept purposes.
## Install
* You can download a pre-compiled binary from the [GitHub releases]()
* If you have Go installed, simply run `go get cpl.li/go/honey.zip`
* You can build from source by cloning the repo and running `go build .`
## Use
```bash
# this is the most basic way you can call honey.zip
$ honey.zip -fpath=/tmp/zipbomb.zip
```
```bash
$ honey.zip --help
Usage of honey.zip:
-addr string
web server listening address (default ":8091")
-delay duration
delay for the response
-fname string
filename used to serve zip bomb (default "sys-memory-dump.zip")
-fpath string
filepath to zip bomb
-websrv string
web server header value (default "Apache/1.8")
```