yalih
Malware detector
A honeypot designed to detect malicious websites through various techniques including signature matching and pattern recognition.
YALIH (Yet Another Low Interaction Honeyclient) is a low Interaction Client honeypot designed to detect malicious websites through signature, anomaly and pattern matching techniques
69 stars
10 watching
10 forks
Language: Python
last commit: over 5 years ago
Linked from 1 awesome list
paralax/awesome-honeypotsRelated projects:
| Repository | Description | Stars |
|---|---|---|
 naorlivne/dshp | A honeypot designed to detect and respond to unauthorized access attempts with customizable alerts and automated responses. | 16 |
 fnzv/yafh | A honeypot designed to detect and study malicious activity via SSH and TELNET connections | 9 |
 ajackal/arctic-swallow | A tool designed to detect and respond to low-interaction attacks by mimicking a vulnerable system | 2 |
 zeroq/amun | A Python-based low-interaction honeypot designed to detect and analyze malicious network activity | 60 |
 betheroot/pghoney | A low-interaction Postgres honeypot designed to detect and respond to potential security threats by simulating a Postgres database | 18 |
 madirish/kojoney2 | An SSH honeypot designed to fingerprint attacker behavior and identify malicious activity | 38 |
 sahilm/hived | A honeypot system that detects and reports malicious network activity | 3 |
 morian/blacknet | A honeypot system designed to detect and log SSH attempts on multiple IP addresses. | 21 |
 jaksi/sshesame | An SSH honeypot that logs activity without executing commands or making network requests | 1,551 |
 sjinks/mysql-honeypotd | A low-interaction MySQL honeypot designed to detect and deter MySQL-related attacks. | 32 |
 chh/stack-honeypot | A middleware that inserts a trap into responses to detect and prevent spam bot attempts. | 23 |
 jadb/honeypot | A PHP SDK for detecting and mitigating malicious traffic by identifying suspicious IP addresses and URLs. | 3 |
 gfoss/phpmyadmin_honeypot | A honeypot designed to detect and log attempts to access unauthorized phpMyAdmin functionality | 66 |
 magisterquis/sshhipot | A tool that simulates an interactive SSH connection to detect and analyze potential attacks | 168 |
 0x4d31/galah | A honeypot system designed to detect and analyze HTTP requests using large language models | 419 |