Dec 26 2011
Happy X-Mas! Get your honeypot gift: the new version of Kippo-Graph Kippo-Graph reached version 0.5 and includes a new component: Kippo-Input, where I have put seperate input-related tables about various commands. New graphs have also been added where suitable, and Kippo-Graph currently displays 15 in total. Two extras are the links for the files attackers …
Dec 21 2011
New version of Kippo-Graph released, with brand new features! I have utilized the “QGoogleVisualizationAPI” PHP Wrapper for Google’s Visualization API by Thomas Schäfer and Kippo-Graph now has a component called Kippo-Geo that extracts geolocation information from the stored IP addresses and visualizes the data using Google Maps. Download Kippo-Graph 0.4 from here: kippo-graph-0.4 An example …
Dec 20 2011
New version of Kippo-Graph with 3 additional graph charts and minor fixes. Download it here: kippo-graph-0.3 Instructions inside the README.txt file. CHANGES: Version 0.3: + Added 3 new input-related graphs. + Updated graph gallery. + Fixed minor web UI and graph details. + Added TODO.txt. + Updated README.txt For comments, suggestions, fixes, please use the …
Dec 15 2011
Since I had some more time today, I decided to continute working on Kippo-Graph in order to make it usable and add the much needed web interface. I am pleased to say that it has a template now and it looks far better. See the README.txt file for instructions. You can download it from here: …
Dec 15 2011
Kippo-Graph is a simple script I wrote today to visualize statistics from a Kippo SSH honeypot. It uses the Libchart PHP chart drawing library by Jean-Marc Trémeaux. Kippo-Graph currently shows 7 charts: top 10 passwords, top 10 usernames, top 10 username/password combos, success ratio, connections per IP, probes per day, ssh clients. You can download …
Dec 13 2011
Continuing on the previous posts about Kippo, and assuming you have already setup, configured it and logged some probes or intrusions, let’s take a look at some of the scripts, front-ends, commands, and other useful 3rd party stuff available in our disposal to get a better understading of what’s going on with our honeypots.
Dec 08 2011
Continuing on the previous post about Kippo SSH honeypot, let’s see how we can make our lives easier and log its events in a MySQL database instead of the difficult to read text-based log files (located at kippo-dir/log by default). This post assumes that you have already followed the procedure and successfully installed Kippo on …
