Honeypot for Intel's AMT Firmware Vulnerability CVE-2017-5689.

Webserver that listens on TCP port 16992. Replicates the behaviour of Intel's AMT management service. If successfully exploited, content pulled from a HP machine is served to the attacker.

Building -

# go build

Running -

# ./amthoneypot [logfile.txt]

Persistent Execution -

# nohup ./amthoneypot logfile.txt &

TODO

Add templating to make content dynamic / random
Add error checking

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

README.md

README.md

Building -

Running -

Persistent Execution -

TODO

Files

README.md

Latest commit

History

README.md

File metadata and controls

Building -

Running -

Persistent Execution -

TODO