New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Don't let your LET's server idle for nothing. Make Honey!
Create a honeypot and join up by automatically reporting attackers.
More information can be found in the following talk:
tl;dr: Netwatch is a community projects where everyone can run an attack pod on a idle server. They auto report attacks and NetWatch forwards aggregated reports to the ISPs. They already have a standing with (some of) them, allowing for faster takedowns.
Get your api key here: https://community.netwatch.team/
I'd love to know how many are interested and if there are any similar projects to collab with.
Comments
abuseipdb
portspoof
Oh? Which ones?
lol my greedy eyes read it as "Make Money"
Is the honey organic?
Me too...
You are not the only one!
Is there a similar project that does reporting to AbusedIPDB and similar well known sites instead of ISPs? That would be more useful.
I guess https://github.com/NetWatch-team/SSH-AttackPod is what they want you to run. Having looked at it, I don't think I would be comfortable running that.
... What. It's literally just a docker container.
Anyone tried it yet
This use case is kinda illegal.
The same scenario from below can be aplied to this honeypot case:
I buy(rent) a VPS and then i talk to a friend to test the security. He is doing crime, because I'm not thr guy who can aprove him to "hack" my VPS, the ISP is the right owner who can aprove the pentest
So if you have idle VPSes don't honeypot them for money! just instal snowflake proxy on them.and help people use the free internet https://community.torproject.org/relay/setup/snowflake/standalone/
Do you have any previous cases that support this opinion?
The host has leased it to you, it is yours to do as you wish.
It's taking foreever to get an api key (. What I like about the project it that they already have a good standing with especially EU ISPs. I wouldn't run to run this on a production server either, but I have 2 idling that'll get the treatment.
The thread title is stupid. Why people intentionally make it harder to search keywords is beyond me.