d677cd20b9
Feature: Enhance Performance, Logging & Stability: Precompile Regex, Command Matching, Golang 1.24, History Cleanup & memLimitMiB Flag. ( #182 )
...
* Feat: Add support for logging which "command" was matched for SSH and HTTP strategies.
* Feat: Convert to precompiling regexp at config load time. This allows for errors to be presented to the user during startup, and provides better performance for complex regexp.
* Feat:Bump Golang version to latest stable 1.24
* Feat: Add a cleanup routine for HistoryStore, default TTL for events is 1 hour since last interaction.
* Feat: Add new command line flag "memLimitMiB" with a default value of 100.
---------
Signed-off-by: Bryan Nolen <bryan@arc.net.au >
Signed-off-by: Mario Candela <mario.candela.personal@gmail.com >
Co-authored-by: Mario Candela <mario.candela.personal@gmail.com >
2025-03-23 19:16:34 +01:00
b062416c00
Feat: Add FallbackCommand for HTTP Strategy, refactor packages strategies ( #175 )
...
Add FallbackCommand for HTTP Strategy, refactor packages strategies, improve histories implementations.
2025-03-13 08:06:46 +01:00
933f02911b
feat: Improve SSH LLM honeypot, preserve session after attacker logout ( #179 )
...
* Migrate from deprecated library "golang.org/x/crypto/ssh/terminal" to "golang.org/x/term"
* Feat: Inject OpenAI secret key from environment variable
* Feat: Add test for OpenAI secret key injection from environment variable
* Fix: Correct llmModel value in http-80.yaml configuration
* Feat: Add OPEN_AI_SECRET_KEY environment variable to docker-compose.yml
* Feat: Implement session management for SSHStrategy with command history
2025-03-09 13:17:04 +01:00
1f59685530
Feat: Improve HTTP Headers serializer json log #172 ( #173 )
...
* Changed Event struct, field headers from string to map[string][]string
* Add integration test for http Headers
2025-03-01 12:31:34 +01:00
8963bbc86d
Fix: mapping LLMModel for SSH inline, removed old comments on docker-c… ( #168 )
...
Fix mapping LLMModel for SSH inline, removed old comments on docker-compose.yml
2025-02-20 22:41:28 +01:00
38297faed2
Feat: Refactoring LLM Plugin, update docs. ( #165 )
...
Refactoring LLM Plugin, update docs.
2025-02-16 22:48:59 +01:00
db804474d3
Add support for TLS based HTTP connections. ( #158 )
...
* Add support for TLS based HTTP connections, With Unit Tests.
2025-02-13 20:54:22 +01:00
c3d2ff885d
Feat: LLM Honeypot allow specifying the custom prompt #152 ( #153 )
...
* implement new feature, custom prompt
* Add doc for custom prompt
2025-01-14 08:45:30 +01:00
8e81a8721e
Feat: manage SSH inline command ( #130 )
...
manage SSH inline command
2024-09-07 12:54:37 +02:00
0b5486964b
feat: add source ip and source port ( #126 )
...
add source ip and source port
2024-08-30 08:28:56 +02:00
a1e96738fb
Feat: beelzebub cloud integrations ( #117 )
...
* improve beelzebub cloud integration
* refactoring cloud integration, fix unit test
* add unit test get honeypots
* improve code coverage
2024-08-01 20:05:05 +02:00
2088163b54
Feature: add support for llama, refactor yaml service interface ( #115 )
...
* refactor and add llama LMM support
* update readme
* improve code coverage
2024-07-21 20:11:18 +02:00
59f40a166b
Feat: Improve LMM SSH Honeypot ( #112 )
...
* add LMM Honeypot HTTP Server
* improve unit test code coverage
* integrate LLM plugin into http honeypot strategy
* improve code coverage
* fix typos
* improve OpenAI plugin with gpt-4, adpt new API amd map new object
* improve LLM SSH honeypot, fix updated README.md
2024-06-23 16:00:31 +02:00
93d7804ba3
Feat: add LMM Honeypot HTTP Server ( #110 )
...
* add LMM Honeypot HTTP Server
* improve unit test code coverage
* integrate LLM plugin into http honeypot strategy
* improve code coverage
* fix typos
* improve OpenAI plugin with gpt-4, adpt new API amd map new object
2024-06-23 10:55:06 +02:00
5e5d0494a9
refactor: Improve Go docs ( #74 )
...
* add go docs, package: parser
* add go docs, package: protocols
* add go docs, package: tracer
2023-10-15 20:54:53 +02:00
07ffdd839f
Refactoring, improve code coverage ( #72 )
...
* Refactoring, improve code coverage
* Add unit test for gelAllFilesNameByDirName
* Add codecov coverage into README.md
* Improve coverage readFileBytesByFilePath
2023-10-09 01:16:53 +02:00
34a80b06f3
Feature: Refactor import for release v3 ( #71 )
...
Refactor import for release v3
2023-10-08 17:45:31 +02:00
fd57d6ed92
fix unit test
2023-10-05 21:57:30 +02:00
9b4b399df0
Refactor import, edit go module with github.com
2023-10-05 21:40:34 +02:00
a7c69c8849
refactoring: Tiny refactoring ( #47 )
...
* tiny refactoring name convention, and file name.
* added command line arguments files
* fix typo comment
2023-06-01 00:15:21 +02:00
49a4022f56
feat: Trace command output for SSH Strategy ( #35 )
...
manage command output SSH strategy
2023-04-14 22:35:11 +02:00
6468b5aa6f
refactor:Added Integration test and tiny refactoring ( #23 )
...
* Refactoring name convention
* Added integration test
* Added Makefile
* Bump golang.org/x/crypto from 0.0.0-20220826181053-bd7e27e6170d to 0.6.0
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.0.0-20220826181053-bd7e27e6170d to 0.6.0.
- [Release notes](https://github.com/golang/crypto/releases )
- [Commits](https://github.com/golang/crypto/commits/v0.6.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-type: direct:production
update-type: version-update:semver-minor
...
* Upgrade go from 1.16 to 1.20
* Added integration test: HTTP, TCP, SSH
* Added Makefile Improve README.md
* Fixed unit test CI
* Fixed go-version
* Added integration test into C.I. actions
---------
Signed-off-by: Mario Candela <m4r10.php@gmail.com >
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-02-26 18:04:05 +01:00
d062435818
feat: Add ChatBot GPT-3 integration ( #16 )
...
* Added dependency go-resty
* Configured Parser to read plugin configurations
* Add example ssh with ChatGPT plugin
* Add client ChatBot
* Improve logging
* Add integration with plugin OpenAIChatGPT
* Improve readme with ChatBot Example
* Add contributed ChatGPT question
* Refactoring
* Refactoring and improve unit test
2022-12-16 23:02:16 +01:00
882066f0a6
Implemented tcp honeypot
2022-07-03 17:15:38 +02:00
39a23b0075
Improve initial TCP honeypot structure
2022-07-03 12:39:27 +02:00
ab5a4f8137
Refactoring Tracer and ProtocolManager
2022-06-04 17:14:46 +02:00
1aafe73505
SSH log rawCommand, added new password on SSH honeypot
2022-06-03 14:05:11 +02:00
25904ff751
Configured Description filed into Event and Service configuration
2022-05-31 22:39:56 +02:00
f9b3d11122
Fixed bug headers HTTP
2022-05-29 17:05:13 +02:00
f52bab90eb
Refactoring Event object, and HTTP handler
2022-05-29 16:18:40 +02:00
957d87c75d
Added is on password handler SSH Strategy, and refactored the traceStrategy name
2022-05-22 21:49:23 +02:00
d93e097c70
Refactoring enum with value
2022-05-17 23:32:00 +02:00
296cf26861
POC mongodb tracing
2022-05-17 00:17:39 +02:00
60cffd6b26
Improve code quality
2022-05-14 16:51:00 +02:00
db8476693e
Improve protocolManager_test.go
2022-05-11 22:58:21 +02:00
3c5ac84ef0
Refactoring protocolManager.go and tracer.go, improce dependency injection
2022-05-11 22:58:03 +02:00
24ff11099c
Improve new field on Event, and refactored the Protocol field with a Protocol enum
2022-05-10 22:50:29 +02:00
98f9835079
Refactoring and improve tracer on HTTPStrategy
2022-05-10 22:49:23 +02:00
e1a1f20e6c
Added tracer dependency into hypertextTransferProtocolStrategy.go
2022-05-09 23:21:14 +02:00
1d04476935
Injected tracer dependency into protocolManager.go
2022-05-09 23:19:19 +02:00
a68ee305ca
Configured tracer into protocolStrategy.go
2022-05-09 23:18:48 +02:00
b43d09ecf2
Configure tracer on secureShellStrategy.go
2022-05-09 23:18:20 +02:00
7b7eeb3e15
first commit
2022-05-08 20:49:53 +02:00
