Victor Westerlund
d791136abb
This is more of a follow-up for #1. Probably a good idea to add the new `.env.ini` to the gitignore too 🤦. Good thing that file is not really important (right now). Reviewed-on: https://codeberg.org/vlw/honeypot/pulls/2 |
||
|---|---|---|
| assets | ||
| logs | ||
| public | ||
| src | ||
| vegvisir@016b880682 | ||
| .env.example.ini | ||
| .gitignore | ||
| .gitmodules | ||
| LICENSE | ||
| README.md | ||
Work in progress
I'm reviving this project. The last commit was pushed over 2½ years ago at the time of writing! It was created (and not finished either) in the second generation of my web framework. A lot has changes since then and I think it would be fun to revive this project.
🍯 Honeypot
Yoink mouse clicks, mouse moves, keyboard pressed from the client, and the whole $_SERVER superglobal from the server on this website that is intentionally slow, and old-school looking to mimic the D-Link DIR-880L WiFi router's web interface. This is a typical WiFi router that you might find in a standard family home so maybe we can assume since the site isn't proxied, that someone hasn't changed the default credentials either? ;)
Logs are saved as timestamped JSON-files in the logs/ directory grouped under a subdirectory for each client using a [best-effort] client fingerprint.
Logging only starts when the sneaky starts. Interact with the fake login screen input elements, and we're off.
By the way, this project has nothing to do with D-Link specifically. The "mydlink" software apparently features both "WiFi-router" and IP-camera configuration from the same web interface - which adds additional
Installation
-
Clone this repo
$ git clone https://codeberg.org/vlw/honeypot -
Install the Vegvisir framework
-
Set write permission
Make sure that the user your PHP configuration runs as has write access to the
logs/directory in this repository.