WordPress Honeypots

Honeypots with WordPress!

This section of the Toolkit provides a listing of various cyber threat hunting tools for the technical analysts within stakeholder organizations. Below are a series of hotlinks and short descriptions of honeypots used alongside WordPress.

  • https://wordpress.org/plugins/honnypotter/ – “A honeypot for logging all failed login-attempts.” (Ingesen, M. (1971, January 01). HonnyPotter. Retrieved April 20, 2017, from https://wordpress.org/plugins/honnypotter/ )
  • https://github.com/dustyfresh/HoneyPress – “HoneyPress, a WordPress honeypot in a docker container.” (D. (2016, September 28). Dustyfresh/HoneyPress. Retrieved April 20, 2017, from https://github.com/dustyfresh/HoneyPress)
  • https://github.com/freak3dot/wp-smart-honeypot-“WordPress plugin to reduce comment spam with a smarter honeypot.”(F. (2016, March 28). Freak3dot/wp-smart-honeypot. Retrieved April 20, 2017, from https://github.com/freak3dot/wp-smart-honeypot)
  • https://github.com/gbrindisi/wordpot-“Wordpot is a WordPress honeypot which detects probes for plugins, themes, timthumb and other common files used to fingerprint a wordpress installation.”(G. (2015, June 16). Gbrindisi/wordpot. Retrieved April 20, 2017, from https://github.com/gbrindisi/wordpot)