diff --git a/README.md b/README.md index 16deeb9..7193c74 100644 --- a/README.md +++ b/README.md @@ -1,40 +1,29 @@ +# Work in progress +I'm reviving this project. [The last commit was pushed over 2½ years ago](https://codeberg.org/vlw/honeypot/commit/2e4cc7e31ccc4190abfb327ecee0bdb553c3f565) at the time of writing! It was created (and not finished either) in the second generation of [my web framework](https://vegvisir.vlw.se). A lot has changes since then and I think it would be fun to revive this project. + # 🍯 Honeypot -Can the IP, HTTP Headers and more from anyone trying to log in to this site. Everything entered into this page will be saved to an SQLite database. +Yoink mouse clicks, mouse moves, keyboard pressed from the client, and the whole `$_SERVER` superglobal from the server on this website that is intentionally slow, and old-school looking to mimic the `D-Link DIR-880L` WiFi router's web interface. This is a typical WiFi router that you might find in a standard family home so maybe we can assume since the site isn't proxied, that someone hasn't changed the default credentials either? ;) + +**Logs are saved as timestamped JSON-files in the `logs/` directory grouped under a subdirectory for each client using a [best-effort] client fingerprint.** + +Logging only starts when the sneaky starts. Interact with the fake login screen input elements, and we're off. ![44302_](https://user-images.githubusercontent.com/35688133/204114986-123a5a9a-c164-49c4-a837-43d8c6f7ba45.png) -> **Note** This project is not related to D-Link in any form or fashion. I just chose their mydlink portal as it features both IP camera and WiFi router controls from the same interface, which I intend to implement fun dummies of in the future. +By the way, this project has nothing to do with D-Link specifically. The "mydlink" software apparently features both "WiFi-router" and IP-camera configuration from the same web interface - which adds additional ## Installation - -1. **Install Pragma** - - This website is built on the [Pragma web framwork](https://github.com/VictorWesterlund/pragma), and is meant as a showcase of some of it's features. - [**Install the Pragma framwork**](https://github.com/VictorWesterlund/pragma) - -2. **Clone this repo** - - Clone this repo (with submodules) anywhere Pragma can read its contents. +1. **Clone this repo** ``` - $ git clone http://github.com/VictorWesterlund/honeypot --recurse-submodules + $ git clone https://codeberg.org/vlw/honeypot ``` - -3. **Set env var** - Make a copy of the `.env.example.ini` file +2. **Install the [Vegvisir](https://vegvisir.vlw.se) framework** + + [**Run the Vegvisir install script**](https://codeberg.org/vegvisir/install#get-started) - ``` - $ cp -p .env.example.ini .env.ini - ``` +3. **Set write permission** - and set the `DB_POT` variable to an absolute path to the SQLite database to create - - ```ini - DB_POT="/home/me/pot.sql" - ```` - -## Data saved - -The database will dump the contents of `$_POST` and `$_SERVER` into a JSON string along with the timestamp since Unix epoch the request was received. + Make sure that the user your PHP configuration runs as has write access to the `logs/` directory in this repository. \ No newline at end of file