Suricata honeypot is running on a quite old version of suricata. Managed to install 6.0.3 and libhtp as well, everything went fine but i got no communication with MHN server. It seems that hpfeeds is not doing anything or it's not correctly installed.
But MHN server does see the suricata honeypot on the sensors list...it just doesn't detect any attacks from suricata...and i cant seem to find hpfeeds logs in the pot as well...
Fast.log is catching the attacks though, i can see it, they just don't get reported to the MHN server.
Is it doable with some tweaking or is it a lost cause?
Thanks mates!
Suricata honeypot is running on a quite old version of suricata. Managed to install 6.0.3 and libhtp as well, everything went fine but i got no communication with MHN server. It seems that hpfeeds is not doing anything or it's not correctly installed. But MHN server does see the suricata honeypot on the sensors list...it just doesn't detect any attacks from suricata...and i cant seem to find hpfeeds logs in the pot as well... Fast.log is catching the attacks though, i can see it, they just don't get reported to the MHN server. Is it doable with some tweaking or is it a lost cause? Thanks mates!