7bde19b403
fix
2016-09-18 12:40:17 +00:00
37db3abed3
initialize flags correctly
2016-09-18 15:57:25 +04:00
eec4d716f2
set PYTHONPATH
2016-09-18 15:54:23 +04:00
eacff8c767
add cowrie.command.input for the raw inputted command
2016-09-18 10:27:07 +00:00
3d8085e86a
bannerfile is optional
2016-09-07 12:15:20 +04:00
0b92ec370d
remove default issue.net
2016-09-07 12:10:47 +04:00
4841a8b83c
without semicolon works
2016-09-07 11:36:07 +04:00
588abd830a
set PYTHONPATH explicitly
2016-09-07 11:20:19 +04:00
a438ee8272
Fixed interact by using the correct variable....wrong variable name in interact.py ( #254 )
2016-09-07 11:17:54 +04:00
b38add4e1e
Merge branch 'master' of https://github.com/micheloosterhof/cowrie
2016-09-07 11:14:34 +04:00
710a8221ae
single space between command and arguments
2016-09-06 17:41:44 +04:00
96447d2789
Fix unit tests due to log path ( #249 )
...
* Fix unit tests due to log path
* Add fake formatting function which just returns true
2016-09-06 01:39:38 +04:00
9c730b7257
implement 'ls -d' flag
2016-09-05 23:16:55 +04:00
4b9b86356f
Fix #219
2016-09-05 23:09:49 +04:00
d41602a766
log from transport now instead of protocol
2016-09-05 21:59:43 +04:00
6ea509321f
remove SSH specific for logging to enable telnet logging
2016-09-05 21:00:34 +04:00
21e5ba8b5a
i think travis gets upset about pycrypto
2016-09-05 02:23:18 +04:00
309b4efbec
Merge branch 'master' of https://github.com/micheloosterhof/cowrie
2016-09-05 01:22:34 +04:00
2c77ef44f8
Fix #243 : don't log passwd change as file download
2016-09-05 01:22:00 +04:00
87bc9237ee
add note about raspberry pi installation ( #236 )
2016-09-05 01:12:32 +04:00
2bef5c0db8
move lastlog to log/ as suggested by @boozezela
2016-09-05 01:10:39 +04:00
803f91e91e
small tweaks
2016-09-05 01:00:00 +04:00
35954277e2
roll back trial change
2016-09-05 00:44:11 +04:00
56fe7c0353
explicitly run cowrie.test
2016-09-05 00:37:16 +04:00
43fd43481a
split off factory from transport.
2016-09-04 22:36:54 +04:00
6fd4e43c59
formatting in README
2016-09-04 21:23:49 +04:00
d42ac579c4
rewrite of install instructions ( #235 )
...
* untested improvements to Install.md
* fixed missing pycrypto in requirements.txt
* table of contents
* removing citation
* beautification
* remove red hat instructions (they were wrong)
* PYTHONPATH might need to be set regardless
* bugfix
* reorganize, sweeping improvements
* finishing touches
2016-08-31 22:31:12 +04:00
30b2d3c8b9
accept -P switch for wget
2016-08-26 14:13:28 +00:00
eb8d3033f9
update README
2016-08-22 17:14:17 +04:00
ea31ba515d
Merge branch 'master' of https://github.com/micheloosterhof/cowrie
2016-08-22 16:09:11 +04:00
a69fbf4aa2
telnet changelog
2016-08-22 16:08:49 +04:00
7da1b3479c
listen_ssh_addr -> listen_addr
2016-08-22 12:07:24 +00:00
ef68617ec2
remove 'reset' starttime functionality
2016-08-22 15:58:25 +04:00
1602fa735a
make telnet optional, small prompt fixes
2016-08-22 15:56:53 +04:00
31bdc68b0d
Fix: Removing timeout on login after a successful login
...
Timeout will then be defined by HoneyPotBaseProtocol class. Just like
for SSH.
2016-08-22 15:56:53 +04:00
61318e3c21
New tasks for better customization of Telnet experience
2016-08-22 15:56:53 +04:00
97b6cd1bbd
Refactoring: tasks added and cleaned-up
2016-08-22 15:56:53 +04:00
8374646843
Implemented an alternate code path for proper Telnet clients
...
Fixes access from both nc style clients and fat Telnet clients. Only
tested with python socket and telnet client from inetutils 1.9.4.
2016-08-22 15:56:53 +04:00
b4bf14b43d
Achieved maximum compatibility with nc like clients
...
Will figure out how to make it work with both Telnet and nc later.
2016-08-22 15:56:53 +04:00
7e027fc8f5
Improve compatibility: No longer send a WILL SGA upon connection
...
These are still attempts at improving things.
2016-08-22 15:56:53 +04:00
29facd6ffe
Protocol changes to prevent Telnet data to appear before password prompt
...
Not perfect because there is no ECHO when entering Username... A proper
fix will need more testing but I need to gather data now.
2016-08-22 15:56:53 +04:00
92cc6ee597
Refactoring: MyTelnet gets a proper name
2016-08-22 15:56:53 +04:00
670274ad83
Naming fix: HoneyPotTelnetAuthTransport -> HoneyPotTelnetAuthProtocol
2016-08-22 15:56:53 +04:00
1dfe826231
Removed debug code that I should have removed earlier
...
If repository wasn't working for you before, backport this patch.
Sorry.
2016-08-22 15:56:53 +04:00
65ec25497d
Fixed nested CRLF replacements
...
\r\r\n was sent instead of \r\n due to the protocol hiearchy
implementation. Fixed it by subclass TelnetTransport and removing the
extra \r.
2016-08-22 15:56:53 +04:00
b11db57425
Fixed Telnet feature negotiation
...
- all echo bugs resolved with a Telnet client
- A dump client (like ncat) can still perform authentication and
interact
This last point is important since I'm looking at malware right now
which doesn't understand Telnet special bytes and my previous
implementation was preventing it from reaching an authenticated state.
2016-08-22 15:56:53 +04:00
640652207d
Basic Telnet support implemented
...
A squash merge of GoSecure/cowrie telnet-poc branch:
https://github.com/GoSecure/cowrie/tree/telnet-poc
Rebased on current upstream master.
August 2016 update: Resolved several conflicts when rebasing
2016-08-22 15:56:53 +04:00
bae58890f5
Revert configparser to fix https://github.com/micheloosterhof/cowrie/issues/224
2016-08-22 10:47:12 +00:00
d23d5ce932
updated
2016-08-21 12:43:13 +04:00
27bf5345ee
send to slack
2016-08-21 12:33:29 +04:00
