SlideShare a Scribd company logo

Kippo 101

Emil Tan, profile picture
Emil Tan

The document discusses Kippo, a low-interaction honeypot that emulates SSH services. It describes what a honeypot is, types of honeypots including high and low interaction, and examples of lower interaction honeypots like Kippo. It provides instructions for getting Kippo, configuring its database and configuration file, and redirecting SSH traffic to Kippo's emulated SSH service using iptables. The document aims to demonstrate how to run Kippo as a honeypot.

Technology
1 of 10
Downloaded 10 times
1
2
3
4
5
6
7
8
9
10
EmilTan Team Lead, Co-Founder http://edgis-security.org @EdgisSecurity Research Guide http://honeynet.sg Kippo 101
What is honeypot?  Information system resources which have no production values.  Its values lies in unauthorised or illicit use of the resource.  Its value lies in being probed, attacked, or compromised. -- Spitzner  KnowYour Enemy.
Types of Honeypots.  High Interactions –Actual Machine.  Low Interactions –A program.  Honeytokens.  Hybrid.
Lower Interaction Honeypots  Honeyd  Tiny Honeypot  Dionaea  Glastopf  Ghost USB  Honeyports  Conpot  Thug  Kippo
Emulating SSH
Getting the Codes  Dependencies  subversion  python-twisted  mysql-server  python-mysqldb  mysql-server  http://kippo.googlecode.com/svn/trunk/
Kippo’s Database  Tables  auth  clients  downloads  input  sensors  sessions  ttyplog
Configuring Kippo  Basic Configuration File: kippo.cfg  ssh_port = 2222  iptables –A PREROUTING –t nat –i eth0 –p tcp --dport 22 –j REDIRECT --to-port 2222  [database_mysql]  log – log files  dl – downloaded files  honeyfs – virtual file contents  txtcmds – Commands that output text
Run Kippo! Demonstration SpecialThanks to @lvdeijk for Sharing Some RecordedTTYs.
Kippo 101

More Related Content

PDF
【HITCON FreeTalk 2018 - 從晶片設計角度看硬體安全】
Hacks in Taiwan (HITCON)
 
PDF
[ElasticStack]What happens when you visualize servers exposed to the world?
Masamitsu Maehara
 
PPTX
Bsides chicago 2013 honeypots
Tazdrumm3r
 
PDF
Tick group @avar2019 20191111 cha minseok_publish
Minseok(Jacky) Cha
 
PDF
A Multidisciplinary Perspective on Cybersecurity
Emil Tan
 
PPT
A Guide to Human Geography
nefertari_1984
 
PDF
Introduction to Honeypots
Emil Tan
 
PPTX
Honeypots
Rushikesh Kulkarni
 
【HITCON FreeTalk 2018 - 從晶片設計角度看硬體安全】
Hacks in Taiwan (HITCON)
 
[ElasticStack]What happens when you visualize servers exposed to the world?
Masamitsu Maehara
 
Bsides chicago 2013 honeypots
Tazdrumm3r
 
Tick group @avar2019 20191111 cha minseok_publish
Minseok(Jacky) Cha
 
A Multidisciplinary Perspective on Cybersecurity
Emil Tan
 
A Guide to Human Geography
nefertari_1984
 
Introduction to Honeypots
Emil Tan
 
Honeypots
Rushikesh Kulkarni
 

Similar to Kippo 101 (20)

PDF
Honeypot 101 (slide share)
Emil Tan
 
PPT
Anton Chuvakin on Honeypots
Anton Chuvakin
 
PPT
Honeypot honeynet
Sina Manavi
 
PPT
Using Canary Honeypots for Network Security Monitoring
chrissanders88
 
PPT
Honeypot-A Brief Overview
SILPI ROSAN
 
PPTX
Honeypots.ppt1800363876
Momita Sharma
 
PPTX
Honeypots and honeynets
Rasool Irfan
 
DOCX
Honeypots
Jyoti Nagargoje
 
PPT
honeypots.ppt
DetSersi
 
PPTX
Honeypots
Gaurav Gupta
 
PPT
All about Honeypots & Honeynets
Mehdi Poustchi Amin
 
PPTX
Phd final
Positive Hack Days
 
PPTX
Alexey Sintsov. Honeypot that Can Bite: Reverse Penetration.
Positive Hack Days
 
PPT
Honeypot
Akhil Sahajan
 
PPT
Honeypot
Akhil Sahajan
 
PPTX
Bsides detroit 2013 honeypots
Tazdrumm3r
 
PDF
[CONFidence 2016] Leszek Miś - Honey(pot) flavored hunt for cyber enemy
PROIDEA
 
PDF
Seminar Report on Honeypot
Amit Poonia
 
PDF
Honeypots for Active Defense
Greg Foss
 
PPTX
Honey pots
Alok Singh
 
Honeypot 101 (slide share)
Emil Tan
 
Anton Chuvakin on Honeypots
Anton Chuvakin
 
Honeypot honeynet
Sina Manavi
 
Using Canary Honeypots for Network Security Monitoring
chrissanders88
 
Honeypot-A Brief Overview
SILPI ROSAN
 
Honeypots.ppt1800363876
Momita Sharma
 
Honeypots and honeynets
Rasool Irfan
 
Honeypots
Jyoti Nagargoje
 
honeypots.ppt
DetSersi
 
Honeypots
Gaurav Gupta
 
All about Honeypots & Honeynets
Mehdi Poustchi Amin
 
Phd final
Positive Hack Days
 
Alexey Sintsov. Honeypot that Can Bite: Reverse Penetration.
Positive Hack Days
 
Honeypot
Akhil Sahajan
 
Honeypot
Akhil Sahajan
 
Bsides detroit 2013 honeypots
Tazdrumm3r
 
[CONFidence 2016] Leszek Miś - Honey(pot) flavored hunt for cyber enemy
PROIDEA
 
Seminar Report on Honeypot
Amit Poonia
 
Honeypots for Active Defense
Greg Foss
 
Honey pots
Alok Singh
 
Ad

Recently uploaded (20)

PDF
NewMind AI Monthly Chronicles - July 2025
NewMind AI
 
PDF
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
PDF
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
PDF
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
PPT
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
PDF
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
PDF
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
PDF
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
PDF
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
PDF
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
PPTX
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
PDF
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
PPTX
Effective Security Operations Center (SOC) A Modern, Strategic, and Threat-In...
ReZa AdineH
 
PDF
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
PDF
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
PDF
Approach and Philosophy of On baking technology
30anthuong17
 
PPTX
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
PPTX
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
PDF
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
PDF
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
NewMind AI Monthly Chronicles - July 2025
NewMind AI
 
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
Effective Security Operations Center (SOC) A Modern, Strategic, and Threat-In...
ReZa AdineH
 
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
Approach and Philosophy of On baking technology
30anthuong17
 
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
Ad

Kippo 101