Cowrie Configuration Randomization #1539
sub7erfuge
started this conversation in
Ideas
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Any possibility of merging the following python code with the Cowrie docker container as an option for use with T-Pot in order to randomize the configuration of the SSH/Telnet honeypot?
The following python script will generate a random host profile with new users, hostname, groups, file shares, harddrive(s) sizes, mounts, CPU, RAM, OS version, IP address, MAC addresses and SSH version.
In theory, this would make Cowrie honeypots much harder to detect and more attractive to attackers compared to the default Cowrie honeypot configuration.
Is anybody interested in assisting in working on this?
https://github.com/luftl0ch/cowrie-obscurer
Beta Was this translation helpful? Give feedback.
All reactions