[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#335536: ITP: nepenthes -- versatile tool to collect malware by emulating widespread vulnerabilities



Package: wnpp
Severity: wishlist
Owner: Luciano Bello <luciano@linux.org.ar>

* Package name    : nepenthes
  Version         : 0.1.2 
  Upstream Author : Nepenthes Development Team <nepenthesdev@users.sourceforge.net>
* URL             : http://nepenthes.sourceforge.net/
* License         : GPL
  Description     : versatile tool to collect malware by emulating widespread vulnerabilities

 Nepenthes is a low interaction honeypot like honeyd or mwcollect. Low
 Interaction Honeypots emulate _known_ vulnerabilities to collect
 information about potential attacks. Nepenthes is designed to emulate
 vulnerabilties worms use to spread, and to capture these worms. As
 there are many possible ways for worms to spread, Nepenthes is modular.
 There are module interface to
     * resolve dns asynchronous
     * emulate vulnerabilities
     * download files
     * submit the downloaded files
     * trigger events (sounds abstract and it is
     * abstract but is still quite useful)
     * shellcode handler

-- System Information:
Debian Release: testing/unstable
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: i386 (i686)
Shell:  /bin/sh linked to /bin/bash
Kernel: Linux 2.6.10-1-686-smp
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)



Reply to: