Kippo-Malware

Kippo-Malware is a Python script that will download all malicious files stored as URLs in a Kippo SSH honeypot database. This is useful in situations where you have lost your files or something happened to your VPS/server but you still have your DB intact. The script also supports HTTP proxy usage to cover your IP address from malicious servers and custom User-Agent values.

DOWNLOAD Kippo-Malware:

The script uses the following packages: MySQL-python, pony, requests, and clint. Installing those is trivial via pip. Your only problem might be with MySQL-python under Windows but you can use this precompiled binary.

SCREENSHOTS:

kippo-malware

Subscribe to Blog via Email

Enter your email address to subscribe to this blog and receive notifications of new posts by email.

  • Petro

    Have you gotten kippo to work with sftp at all?

  • Claz

    I have an attacker trying to chmod 755 his malware so it can run, but kippo doesn’t seem to allow that command. Is there a way to allow attackers to chmod in kippo settings without it compromising its security?

Read previous post:
Announcing Kippo-Malware
HoneyKippo en HoneyDrive [ES, no sound]
HonSSH – A high interaction honeypot solution for Linux based systems
Kippo-Graph 0.9.1 – Google Map fix
Make apt-get use IPv4 instead of IPv6
Close