Sometimes you just want a simple honeypot that collects credentials, nothing more. Heralding is that honeypot! Currently, the following protocols are supported: ftp, telnet, ssh, http, https, pop3, pop3s, imap, imaps, and smtp.
You need Python 3.5.0 or higher.
– Fixed asynssh issue (#111)
For step by step instructions on how to install and run heralding in a Python virtual environment using Ubuntu, see this guide. Otherwise, the basic installation instructions are below.
To install the latest stable (well, semi-stable) version, use pip:
pip install heralding
Make sure that requirements and pip are installed. A simple way to do this on a Debian-based OS is:
sudo apt-get install python-pip python-dev build-essential libssl-dev libffi-dev git clone https://github.com/johnnykv/heralding.git cd heralding sudo pip install -r requirements.txt
And finally start the honeypot:
mkdir tmp cd tmp sudo heralding
Starting the honeypot
Viewing the collected data