Kippo-Malware is a Python script that will download all malicious files stored as URLs in a Kippo SSH honeypot database. This is useful in situations where you have lost your files or something happened to your VPS/server but you still have your DB intact. The script also supports HTTP proxy usage to cover your IP address from malicious servers and custom User-Agent values.

If you need to test the software, go to any of the following pages where the Kippo Honeypot is installed:

ComproGear Article "Best Egg White Protein Powder"

DOWNLOAD Kippo-Malware:

The script uses the following packages: MySQL-python, pony, requests, and clint. Installing those is trivial via pip. Your only problem might be with MySQL-python under Windows but you can use this precompiled binary.


Subscribe to Blog via Email

Enter your email address to subscribe to this blog and receive notifications of new posts by email.

  • Petro

    Have you gotten kippo to work with sftp at all?

    • Ion

      Hi Petro,
      there is a fork of Kippo with SFTP support added but I haven’t tried it. Link:


  • Claz

    I have an attacker trying to chmod 755 his malware so it can run, but kippo doesn’t seem to allow that command. Is there a way to allow attackers to chmod in kippo settings without it compromising its security?

Read previous post:
Announcing Kippo-Malware
HoneyKippo en HoneyDrive [ES, no sound]
HonSSH - A high interaction honeypot solution for Linux based systems
Kippo-Graph 0.9.1 - Google Map fix
Make apt-get use IPv4 instead of IPv6