Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/dispherical/honeypot

A simple open source Honeypot for catching bad web bots.
https://github.com/dispherical/honeypot

Last synced: about 2 months ago
JSON representation

A simple open source Honeypot for catching bad web bots.

Host: GitHub
URL: https://github.com/dispherical/honeypot
Owner: dispherical
License: mit
Created: 2020-10-28T15:04:59.000Z (about 4 years ago)
Default Branch: main
Last Pushed: 2020-10-28T16:52:22.000Z (about 4 years ago)
Last Synced: 2024-10-27T13:48:52.030Z (3 months ago)
Language: JavaScript
Size: 59.6 KB
Stars: 4
Watchers: 0
Forks: 0
Open Issues: 0
Metadata Files:
- Readme: README.md
- License: LICENSE.md
- Code of conduct: CODE_OF_CONDUCT.md

Awesome Lists containing this project

README

# 🍯 honeypot
***

### What is a honeypot:
> In computer terminology, a honeypot is a computer security mechanism set to detect, deflect, or, in some manner, counteract attempts at unauthorized use of information systems. Generally, a honeypot consists of data (for example, in a network site) that appears to be a legitimate part of the site that seems to contain information or a resource of value to attackers, but actually, is isolated and monitored and enables blocking or analyzing the attackers. This is similar to police sting operations, colloquially known as "baiting" a suspect.

\- Wikipedia

### Why set up a honeypot:
Many bad bots will try to attack/DDoS your site. Those same bots will also go to other sites. So, with this honeypot, you can help other people by warning them.

### How to set it up:
1. Remix the project [here.](https://glitch.com/edit/#!/remix/honeypot),
2. Get a [AbuseIPDB](https://www.abuseipdb.com/account/api) API key here.
3. Place the AbuseIPDB key in the .env file under `ABUSEIPDB_API_KEY`. It looks like this: `ABUSEIPDB_API_KEY=`

### How to add more traps:
All traps are stored in `routes.js`. A normal entry looks something like:
```jsx
"/path/to/trap": ["15,19","A normal description."]
```
If you visit PROJECT_NAME.glitch.me/path/to/trap, then you would be reported for "A normal description." with the tags 'Hacking' and 'Bad web bot'
This explains more:
```jsx
"/trap": ["category,category", "Description"]
```
- "/trap": The path to the trap (website.com/trap)
- "category,category": are the nubers assoicated with categories of attacks. Can be found [here](https://www.abuseipdb.com/categories)
- "Description": The description of the attack