Tools by Pakistan Honeynet Project
- Data Analysis Interface
The Data Analysis Interface is capable of:
- uploading log files generated by iptables, snort-inline, etc;
- parsing log files and separating the needles from the haystacks;
- uploading the parsed information to a database;
- displaying collected information in a pleasant form by fetching the information directly from the database;
- formulating overview of events by combining the entries picked up from the database.
- Whomis
Whomis, a small command-line tool for GNU/Linux, was written in C to parse files containing hundreds of thousands of IPs and to generate lists of country names to which the corresponding IPs belong. Whomis is like a conventional and non-interactive Unix utility and runs in the background, determine countries from which given IPs originated. It heavily uses calls to functions provided in the GeoIP library.
Tools by Honeynet Project
- Honeywall CDROM
The Honeywall CDROM Honeywall CDROM combines all the functionality below onto a robust CDROM installation solution. Based on Honeynet Project’s latest GenIII technologies, it automates the process of installation while giving you all the tools you need to easily manage and analyze your honeynet deployments.
- You can find various other tools developed by the Honeynet Project at:
http://honeynet.org/tools/index.html