mariocandela · mariocandela · Jul 21, 2024 · Jul 21, 2024 · Jul 21, 2024 · Jul 21, 2024
diff --git a/README.md b/README.md
@@ -104,7 +104,8 @@ $ make test.dependencies.down
 
 Beelzebub offers a wide range of features to enhance your honeypot environment:
 
-- OpenAI Generative Pre-trained Transformer act as Linux virtualization
+- Support for Ollama
+- Support for OpenAI
 - SSH Honeypot
 - HTTP Honeypot
 - TCP Honeypot
@@ -210,7 +211,49 @@ commands:
 
 #### Example SSH Honeypot
 
-###### Honeypot with GPT-3 on Port 2222
+###### Honeypot LLM Honeypots
+
+Example with OpenAI GPT-4:
+
+```yaml
+apiVersion: "v1"
+protocol: "ssh"
+address: ":2222"
+description: "SSH interactive ChatGPT"
+commands:
+  - regex: "^(.+)$"
+    plugin: "LLMHoneypot"
+serverVersion: "OpenSSH"
+serverName: "ubuntu"
+passwordRegex: "^(root|qwerty|Smoker666|123456|jenkins|minecraft|sinus|alex|postgres|Ly123456)$"
+deadlineTimeoutSeconds: 60
+plugin:
+   llmModel: "gpt4-o"
+   openAISecretKey: "sk-proj-123456"
+```
+
+###### Honeypot LLM Honeypots
+
+Example with OpenAI GPT-4:
+
+```yaml
+apiVersion: "v1"
+protocol: "ssh"
+address: ":2222"
+description: "SSH interactive ChatGPT"
+commands:
+  - regex: "^(.+)$"
+    plugin: "LLMHoneypot"
+serverVersion: "OpenSSH"
+serverName: "ubuntu"
+passwordRegex: "^(root|qwerty|Smoker666|123456|jenkins|minecraft|sinus|alex|postgres|Ly123456)$"
+deadlineTimeoutSeconds: 60
+plugin:
+   llmModel: "gpt4-o"
+   openAISecretKey: "sk-proj-123456"
+```
+
+Example with Ollama Llama3:
 
 ```yaml
 apiVersion: "v1"
@@ -219,13 +262,14 @@ address: ":2222"
 description: "SSH interactive ChatGPT"
 commands:
   - regex: "^(.+)$"
-    plugin: "OpenAIGPTLinuxTerminal"
+    plugin: "LLMHoneypot"
 serverVersion: "OpenSSH"
 serverName: "ubuntu"
 passwordRegex: "^(root|qwerty|Smoker666|123456|jenkins|minecraft|sinus|alex|postgres|Ly123456)$"
 deadlineTimeoutSeconds: 60
 plugin:
-  openAISecretKey: "Your OpenAI Secret Key"
+   llmModel: "llama3"
+   host: "http://example.com/api/chat" #default http://localhost:11434/api/chat
 ```
 
 ###### SSH Honeypot on Port 22

diff --git a/configurations/services/http-80.yaml b/configurations/services/http-80.yaml
@@ -18,41 +18,9 @@ commands:
       - "Server: Apache/2.4.53 (Debian)"
       - "X-Powered-By: PHP/7.4.29"
     statusCode: 200
-  - regex: "^(/wp-login.php|/wp-admin)$"
-    handler:
-      <html>
-        <header>
-          <title>Wordpress 6 test page</title>
-        </header>
-        <body>
-          <form action="" method="post">
-            <label for="uname"><b>Username</b></label>
-            <input type="text" placeholder="Enter Username" name="uname" required>
-
-            <label for="psw"><b>Password</b></label>
-            <input type="password" placeholder="Enter Password" name="psw" required>
-
-            <button type="submit">Login</button>
-          </form>
-        </body>
-      </html>
-    headers:
-      - "Content-Type: text/html"
-      - "Server: Apache/2.4.53 (Debian)"
-      - "X-Powered-By: PHP/7.4.29"
-    statusCode: 200
   - regex: "^.*$"
-    handler:
-      <html>
-        <header>
-          <title>404</title>
-        </header>
-        <body>
-          <h1>Not found!</h1>
-        </body>
-      </html>
-    headers:
-      - "Content-Type: text/html"
-      - "Server: Apache/2.4.53 (Debian)"
-      - "X-Powered-By: PHP/7.4.29"
-    statusCode: 404
+    plugin: "LLMHoneypot"
+    statusCode: 200
+plugin:
+  llmModel: "gpt4-o"
+  openAISecretKey: "sk-proj-123456"
diff --git a/configurations/services/ssh-2222.yaml b/configurations/services/ssh-2222.yaml
@@ -8,6 +8,6 @@ commands:
 serverVersion: "OpenSSH"
 serverName: "ubuntu"
 passwordRegex: "^(root|qwerty|Smoker666|123456|jenkins|minecraft|sinus|alex|postgres|Ly123456)$"
-deadlineTimeoutSeconds: 60
+deadlineTimeoutSeconds: 6000
 plugin:
-  openAISecretKey: ""
+  llmModel: "llama3"
diff --git a/parser/configurations_parser.go b/parser/configurations_parser.go
@@ -3,6 +3,7 @@ package parser
 
 import (
 	"fmt"
+	"github.com/mariocandela/beelzebub/v3/plugins"
 	"os"
 	"path/filepath"
 	"strings"
@@ -50,6 +51,19 @@ type Prometheus struct {
 
 type Plugin struct {
 	OpenAISecretKey string `yaml:"openAISecretKey"`
+	Host            string `yaml:"host"`
+	LLMModel        string `yaml:"llmModel"`
+}
+
+func FromString(llmModel string) (plugins.LLMModel, error) {
+	switch llmModel {
+	case "llama3":
+		return plugins.LLAMA3, nil
+	case "gpt4-o":
+		return plugins.GPT4O, nil
+	default:
+		return -1, fmt.Errorf("model %s not found", llmModel)
+	}
 }
 
 // BeelzebubServiceConfiguration is the struct that contains the configurations of the honeypot service

diff --git a/parser/configurations_parser_test.go b/parser/configurations_parser_test.go
@@ -2,6 +2,7 @@ package parser
 
 import (
 	"errors"
+	"github.com/mariocandela/beelzebub/v3/plugins"
 	"os"
 	"testing"
 
@@ -53,7 +54,12 @@ commands:
   - regex: "wp-admin"
     handler: "login"
     headers:
-      - "Content-Type: text/html"`)
+      - "Content-Type: text/html"
+plugin:
+  openAISecretKey: "qwerty"
+  llmModel: "llama3"
+  host: "localhost:1563"
+`)
 	return beelzebubServiceConfiguration, nil
 }
 
@@ -112,10 +118,10 @@ func TestReadConfigurationsServicesValid(t *testing.T) {
 	configurationsParser.gelAllFilesNameByDirNameDependency = mockReadDirValid
 
 	beelzebubServicesConfiguration, err := configurationsParser.ReadConfigurationsServices()
+	assert.Nil(t, err)
 
 	firstBeelzebubServiceConfiguration := beelzebubServicesConfiguration[0]
 
-	assert.Nil(t, err)
 	assert.Equal(t, firstBeelzebubServiceConfiguration.Protocol, "http")
 	assert.Equal(t, firstBeelzebubServiceConfiguration.ApiVersion, "v1")
 	assert.Equal(t, firstBeelzebubServiceConfiguration.Address, ":8080")
@@ -125,6 +131,9 @@ func TestReadConfigurationsServicesValid(t *testing.T) {
 	assert.Equal(t, firstBeelzebubServiceConfiguration.Commands[0].Handler, "login")
 	assert.Equal(t, len(firstBeelzebubServiceConfiguration.Commands[0].Headers), 1)
 	assert.Equal(t, firstBeelzebubServiceConfiguration.Commands[0].Headers[0], "Content-Type: text/html")
+	assert.Equal(t, firstBeelzebubServiceConfiguration.Plugin.OpenAISecretKey, "qwerty")
+	assert.Equal(t, firstBeelzebubServiceConfiguration.Plugin.LLMModel, "llama3")
+	assert.Equal(t, firstBeelzebubServiceConfiguration.Plugin.Host, "localhost:1563")
 }
 
 func TestGelAllFilesNameByDirName(t *testing.T) {
@@ -177,3 +186,16 @@ func TestReadFileBytesByFilePath(t *testing.T) {
 
 	assert.Equal(t, "", string(bytes))
 }
+
+func TestFromString(t *testing.T) {
+	model, err := FromString("llama3")
+	assert.Nil(t, err)
+	assert.Equal(t, plugins.LLAMA3, model)
+
+	model, err = FromString("gpt4-o")
+	assert.Nil(t, err)
+	assert.Equal(t, plugins.GPT4O, model)
+
+	model, err = FromString("beelzebub-model")
+	assert.Errorf(t, err, "model beelzebub-model not found")
+}
diff --git a/plugins/beelzebub-cloud.go b/plugins/beelzebub-cloud.go
@@ -36,7 +36,6 @@ func (beelzebubCloud *beelzebubCloud) SendEvent(event tracer.Event) (bool, error
 		SetHeader("Content-Type", "application/json").
 		SetBody(requestJson).
 		SetHeader("Authorization", beelzebubCloud.AuthToken).
-		SetResult(&gptResponse{}).
 		Post(beelzebubCloud.URI)
 
 	log.Debug(response)