31bdc68b0d
Fix: Removing timeout on login after a successful login
...
Timeout will then be defined by HoneyPotBaseProtocol class. Just like
for SSH.
2016-08-22 15:56:53 +04:00
61318e3c21
New tasks for better customization of Telnet experience
2016-08-22 15:56:53 +04:00
97b6cd1bbd
Refactoring: tasks added and cleaned-up
2016-08-22 15:56:53 +04:00
8374646843
Implemented an alternate code path for proper Telnet clients
...
Fixes access from both nc style clients and fat Telnet clients. Only
tested with python socket and telnet client from inetutils 1.9.4.
2016-08-22 15:56:53 +04:00
b4bf14b43d
Achieved maximum compatibility with nc like clients
...
Will figure out how to make it work with both Telnet and nc later.
2016-08-22 15:56:53 +04:00
7e027fc8f5
Improve compatibility: No longer send a WILL SGA upon connection
...
These are still attempts at improving things.
2016-08-22 15:56:53 +04:00
29facd6ffe
Protocol changes to prevent Telnet data to appear before password prompt
...
Not perfect because there is no ECHO when entering Username... A proper
fix will need more testing but I need to gather data now.
2016-08-22 15:56:53 +04:00
92cc6ee597
Refactoring: MyTelnet gets a proper name
2016-08-22 15:56:53 +04:00
670274ad83
Naming fix: HoneyPotTelnetAuthTransport -> HoneyPotTelnetAuthProtocol
2016-08-22 15:56:53 +04:00
1dfe826231
Removed debug code that I should have removed earlier
...
If repository wasn't working for you before, backport this patch.
Sorry.
2016-08-22 15:56:53 +04:00
65ec25497d
Fixed nested CRLF replacements
...
\r\r\n was sent instead of \r\n due to the protocol hiearchy
implementation. Fixed it by subclass TelnetTransport and removing the
extra \r.
2016-08-22 15:56:53 +04:00
b11db57425
Fixed Telnet feature negotiation
...
- all echo bugs resolved with a Telnet client
- A dump client (like ncat) can still perform authentication and
interact
This last point is important since I'm looking at malware right now
which doesn't understand Telnet special bytes and my previous
implementation was preventing it from reaching an authenticated state.
2016-08-22 15:56:53 +04:00
640652207d
Basic Telnet support implemented
...
A squash merge of GoSecure/cowrie telnet-poc branch:
https://github.com/GoSecure/cowrie/tree/telnet-poc
Rebased on current upstream master.
August 2016 update: Resolved several conflicts when rebasing
2016-08-22 15:56:53 +04:00
bae58890f5
Revert configparser to fix https://github.com/micheloosterhof/cowrie/issues/224
2016-08-22 10:47:12 +00:00
d23d5ce932
updated
2016-08-21 12:43:13 +04:00
27bf5345ee
send to slack
2016-08-21 12:33:29 +04:00
28f7906756
only check py3.4 for now
2016-08-20 08:29:43 +00:00
b9a7e4e8ff
explicit conch req
2016-08-20 08:24:05 +00:00
645f4fe6e5
add configparser dependency
2016-08-20 08:22:23 +00:00
6759c759e0
add service_identity to silence warnings, may also need for https output clients
2016-08-20 08:07:53 +00:00
72e34480b7
update dependencies
2016-08-20 08:07:41 +00:00
c3a0f42fb2
configparser switch
2016-08-20 08:01:56 +00:00
9e6c146be6
document py3
2016-08-16 12:46:52 +00:00
94d414b39e
revert back to trial from nosetests
2016-08-16 12:46:11 +00:00
d03cf51549
get ready for py3
2016-08-16 12:37:47 +00:00
63d31aaee5
python3 updates
2016-08-16 12:35:42 +00:00
4a307e0c38
convert testing framework to python3
2016-08-16 12:15:44 +00:00
66384911c7
twisted does not support python 3.2
2016-08-16 12:08:56 +00:00
89fd2fb038
spelling error
2016-08-16 12:04:58 +00:00
00ccafe53b
specify trusty. precise too old
2016-08-16 11:59:31 +00:00
319087eced
let's try libmpc
2016-08-16 11:54:00 +00:00
2a6dfcc0d8
install libgmp-dev
2016-08-16 11:49:20 +00:00
7849fb9768
get package for library.
2016-08-16 11:44:08 +00:00
e2418366c9
no more python 2.6
2016-08-16 11:41:27 +00:00
6f2290ce84
change paths for unittests. get ready for travis
2016-08-16 11:39:32 +00:00
df042e9398
Merge branch 'master' of https://github.com/micheloosterhof/cowrie
2016-08-14 14:34:50 +04:00
a56101f325
fixed do_chgrp in fsctl so it changes GID instead of UID ( #220 )
...
This bug was probably a result of copied code from do_chown
2016-08-11 13:04:58 +03:00
37d281ad79
add documentation to systemd entry
2016-07-28 15:17:34 +04:00
57bb3bc886
put pip reqs in requirements.txt
2016-07-28 15:10:04 +04:00
4cf4b9b1f4
Fix #206
2016-07-28 14:57:21 +04:00
ccdc056d50
fix #214
2016-07-28 14:47:30 +04:00
8ba7faae38
formatting, spelling error
2016-07-23 12:26:30 +00:00
37b20feb7e
Issue#45.. fix for "." and ".." not appearing on command line ( #212 )
...
* Update filetransfer.py
* Update filetransfer.py
* Update filetransfer.py
2016-07-23 11:20:04 +04:00
629208e4ad
update reboot/shutdown commands to disconnect
2016-07-21 14:23:36 +04:00
bdf3073510
remove format when message is added
2016-07-19 19:32:02 +04:00
7f83e43b2b
update splunk docs
2016-07-19 17:52:29 +04:00
e2ed1dd1c6
splunk HEC as default output
2016-07-19 17:42:30 +04:00
adb6731f35
splunk http event collector
2016-07-19 17:38:49 +04:00
2a3fcee166
updated
2016-07-19 01:02:47 +04:00
cff52095b5
ignore ESC keycodes
2016-07-14 13:30:57 +04:00
