Kippo-Malware

Kippo-Malware is a Python script that will download all malicious files stored as URLs in a Kippo SSH honeypot database. This is useful in situations where you have lost your files or something happened to your VPS/server but you still have your DB intact. The script also supports HTTP proxy usage to cover your IP address from malicious servers and custom User-Agent values.

If you need to test the software, go to any of the following pages where the Kippo Honeypot is installed:

ComproGear Article "Best Egg White Protein Powder" https://comprogear.com/best-egg-white-protein-powder/

DOWNLOAD Kippo-Malware:

The script uses the following packages: MySQL-python, pony, requests, and clint. Installing those is trivial via pip. Your only problem might be with MySQL-python under Windows but you can use this precompiled binary.

SCREENSHOTS:


Subscribe to Blog via Email

Enter your email address to subscribe to this blog and receive notifications of new posts by email.

  • Petro

    Have you gotten kippo to work with sftp at all?

    • Ion

      Hi Petro,
      there is a fork of Kippo with SFTP support added but I haven’t tried it. Link: https://github.com/micheloosterhof/kippo-mo

      Regards,
      Ion

  • Claz

    I have an attacker trying to chmod 755 his malware so it can run, but kippo doesn’t seem to allow that command. Is there a way to allow attackers to chmod in kippo settings without it compromising its security?

Read previous post:
Announcing Kippo-Malware
HoneyKippo en HoneyDrive [ES, no sound]
HonSSH - A high interaction honeypot solution for Linux based systems
Kippo-Graph 0.9.1 - Google Map fix
Make apt-get use IPv4 instead of IPv6
Close