HoneyDrive – Honeypots In A Box

Find your website's Achilles' Heel


HoneyDrive is a pre-configured honeypot system in virtual hard disk drive (VMDK format) with Ubuntu Server 11.10 32-bit edition installed. It currently contains Kippo SSH honeypot. Additionally it includes useful scripts and utilities to analyze and visualize the data it captures. Lastly, other helpful tools like tshark (command-line Wireshark), pdftools, etc. are also present.

In the future more software will be added such as Dionaea malware honeypot and Honeyd.

You can get the latest version (0.1) of HoneyDrive which contains Kippo SSH honeypot and related scripts (kippo-graph, kippo-stats, kippo-sessions, etc). Everything is pre-configured to work.

After downloading the file, you must uncompress it and then you simply have to create a new virtual machine (suggested software: Oracle VM VirtualBox) and select the VMDK drive as its hard disk.

You can download HoneyDrive here:

HoneyBox.7z

Or read more here.


Posted in: Countermeasures, Network Hacking

, , , , , , , ,

Recent in Countermeasures:
- Cuckoo Sandbox – Automated Malware Analysis System
- Fully Integrated Defense Operation (FIDO) – Automated Incident Response
- MISP – Malware Information Sharing Platform

Related Posts:

Most Read in Countermeasures:
- AJAX: Is your application secure enough? - 120,107 views
- Password Hasher Firefox Extension - 117,778 views
- NDR or Backscatter Spam – How Non Delivery Reports Become a Nuisance - 57,727 views

Malwarebytes Anti-Exploit Premium | 1 Year 1 PC for $24.95


11 Responses to HoneyDrive – Honeypots In A Box

  1. Tom November 20, 2012 at 7:16 pm #

    You Tweet box overlays the first paragraph’s left-hand side using Firefox 17.0 browser making reading it a bother.

    It would help if the tweet box were either user movable or placed statically in the upper right-hand corner of your web page away from the text paragraphs.

    • Darknet November 21, 2012 at 7:27 am #

      Hey Tom, I just grabbed Firefox 17 to check it out, no problems over here. It may be an add-on you are using, try clearing cache etc and see if that helps. This is how I see it:

      http://cl.ly/image/3r2j1x3G021f

      • Bruce D. Meyer November 21, 2012 at 3:54 pm #

        Viewed with 16.0, 16.2, 17 and IE 9. All look proper.

        • Darknet November 21, 2012 at 4:21 pm #

          Thanks for the confirmation Bruce – I thought I’d tested it fairly well.

  2. fx November 21, 2012 at 9:54 am #

    Now is dionaea installed or not yet? Your article has conflicting statements there.

    • Darknet November 21, 2012 at 2:18 pm #

      Yah sorry, bad editing on my part. The previous version had all of those, but due to a naming conflict (it was called HoneyBox) some things have changed. A version should be released soon with the additional software.

  3. glaslos November 21, 2012 at 11:08 am #

    From the dev web page:

    NOTE: The description is not very accurate for the current state of HoneyDrive. Right now only Kippo SSH honeypot and its related tools are included, but all of the above will be present in future releases.

    • Darknet November 21, 2012 at 2:19 pm #

      Yup that’s right :)

  4. Hanan November 22, 2012 at 9:39 am #

    When you will add Dionaea ?

  5. Ion November 25, 2012 at 2:11 pm #

    Hello friends, this is Ion, I’m developing this project…
    Soon I will release a new GUI version based on Xubuntu with more tools and Dionaea of course. Stay tuned, I will make sure to inform this site as well. Regards.

    • Darknet November 26, 2012 at 11:27 am #

      Thanks for dropping by, and do keep us updated :)