sathvik-shettyy/honeypot-demo

``` # 🛡️ Cloud Honeypot SOC 平台 A cloud-based honeypot and security monitoring system that uses OpenCanary to simulate vulnerable services and a Flask dashboard to visualize captured attack activity. ## 📌 概述 This project demonstrates a deception-based security approach where fake services are exposed to attract malicious activity. All events are logged and displayed through a simple SOC-style web interface for analysis and monitoring. ## ⚙️ 功能 - Lightweight honeypot using Cowrie (but I prefer Opencanary when u'll shift to AWS) - Simulated services (SSH, HTTP, FTP, etc.) - Centralized log collection - Flask-based security dashboard - REST API for accessing logs and stats - Cloud deployment ready (Docker / Railway / Render) ## 🧱 架构 OpenCanary (Honeypot Sensor) → Log Files → Flask Backend → Web Dashboard ## 🚀 快速开始 ### 安装依赖 ```bash pip install -r requirements.txt ``` ### 运行应用 ``` python app.py ``` ## 📊 Endpoints * `/` → 系统状态 * `/logs` → 捕获的事件 * `/stats` → 事件统计 * `/ui` → Dashboard 界面 ## ⚠️ 免责声明 本项目仅供教育和研究目的使用。 ## 🛡️ 目的 旨在探索云环境中的基于欺骗的安全技术、honeypot 日志记录以及 SOC 风格的监控。

标签：AWS, BOF, CISA项目, Docker, DPI, Flask, FTP模拟, HTTP模拟, IP 地址批量处理, Python, Railway, Render, REST API, SOC平台, SSH模拟, Web安全仪表盘, 威胁情报, 安全运营中心, 安全防御评估, 底层分析, 开发者工具, 插件系统, 无后门, 欺骗防御, 漏洞模拟, 网络安全审计, 网络安全教育, 网络映射, 蓝队演练, 蜜罐, 蜜网, 证书利用, 请求拦截, 逆向工具, 集中式日志