Skip to content
This repository has been archived by the owner on Aug 17, 2021. It is now read-only.

leonjza/PHP-ShockPot

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

18 Commits
app
app
 
 
bootstrap
bootstrap
 
 
public
public
 
 
.gitignore
.gitignore
 
 
CONTRIBUTING.md
CONTRIBUTING.md
 
 
LICENSE
LICENSE
 
 
artisan
artisan
 
 
composer.json
composer.json
 
 
phpunit.xml
phpunit.xml
 
 
readme.md
readme.md
 
 
server.php
server.php
 
 

Repository files navigation

PHP-ShockPot

bashbug

PHP-ShockPot is a small honeypot aimed at showing you the interesting attempts made trying to exploit your host using the now famous "Shellshock" (also known as bashbug) bug.

Description

The 'honeypot' itself is simply a Laravel 4 application, listening on any url, checking the request headers for the presence of () {. Once this is present, its logged to a sqlite database. You can easily change this to a different database instance, provided that you configure app/config/database.php accordingly.

Installation

Installation should be relatively fast. Most of the steps are very well documented elsewhere on the interwebz, but this should serve as small guideline:

  1. Clone the repository with git clone https://github.com/leonjza/PHP-ShockPot.git.
  2. Setup a web server (Apache/Nginx doesn't matter) to serve the contents of the public/ folder to the world.
  3. Ensure the web server can write to the storage/ directory.
  4. Run the database migrations with php artisan migrate.
  5. Get composer installed and run composer install to install all of the required dependencies.
  6. Test by browsing to your instance!

Contact

@leonjza

About

Poor Man's Shellshock Honeypot

Resources

Readme

License

MIT license
Activity

Stars

3 stars

Watchers

3 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages