Skip to content

yarienkiva/honeypot-dlink-CVE-2024-3273

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

13 Commits
output
output
 
 
404.req
404.req
 
 
README.md
README.md
 
 
honey.req
honey.req
 
 
server.py
server.py
 
 
wget_clone_http.sh
wget_clone_http.sh
 
 

Repository files navigation

honeypot-dlink-CVE-2024-3273

Quick and dirty honeypot for CVE-2024-3273. This template can be used to setup a basic honeypot in ~10min.

TL;DR:

  • Find (fofa, shodan, onyphe, ...).
  • Clone it with the wget_clone_http.sh.
  • Manual tinkering to make the honeypot more realistic (cloning isn't perfect so some files 404).
  • Add rule matching the exploit path (and exploit handling logic) to server.py.
  • Save and run!

Files are downloaded with the --save-headers flag set (equivalent to curl's --include) to mimic the headers the server we're masquarading as would send.

Sources:

About

Quick and dirty honeypot for CVE-2024-3273

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages