HOME ABOUT PROJECTS CONTACT

Projects

What I get around to in my free time

SSHoney


SSH stands as a cornerstone protocol for administering Linux systems worldwide. Since its inception in 1995, SSH has maintained its lightweight design, albeit with limited integrated security features. Consequently, it emerges as a prime target for adversaries aiming to exploit vulnerabilities by attempting to guess usernames and passwords to gain unauthorized access.
Enter SSHoney: a nimble Docker container leveraging a patched version of OpenSSH. Its primary function? To meticulously document all SSH login attempts, capturing usernames, passwords, and source IPs, all while ensuring that no actual logins occur. Each login event is meticulously logged, with the associated IPs promptly reported to AbuseIPDB and VirusTotal for further analysis and notification.
Furthermore, in the spirit of transparency and collaboration, I offer a comprehensive repository of all usernames and passwords utilized each day. Please use those to fostering greater awareness and proactive defense measures if possible. Explore the daily insights HERE

AbuseIPDB Contributor Badge