Run proxy mode + pool in Docker

cowrie / cowrie

Cowrie SSH/Telnet Honeypot https://cowrie.readthedocs.io

https://www.cowrie.org/

Other

5.11k stars 876 forks source link

Run proxy mode + pool in Docker #2021

Open jiangyin97 opened 9 months ago

jiangyin97 commented 9 months ago

I use the image https://hub.docker.com/r/cowrie/cowrie, but I get an error when starting it. The command to start it is：

docker run -d -p 2222:2222 -e COWRIE_HONEYPOT_BACKEND=proxy -e COWRIE_BACKEND_POOL_POOL_ONLY=false -e COWRIE_PROXY_BACKEND=pool -e COWRIE_PROXY_POOL=local -e COWRIE_TELNET_ENABLED=yes -v /var/cowrie:/data/ --name cowrieTest cowrie/cowrie

The error log: 企业微信截图_17016959824919

It seems to indicate that this image does not support high interaction (proxy mode).

micheloosterhof commented 9 months ago

So, this has never been tested. Right now it's missing the software to run the system emulation, but it might run as proxy mode only (with the system emulation on another system). It's an intersting idea maybe worth exploring.

micheloosterhof commented 9 months ago

I think to run the full thing will need some work on the networking side.