Closed ruppde closed 5 months ago
Hi @ruppde,
Thanks for reporting. We have looked into this and found the following:
"unknown command '%.128s', with args beginning with: %s"
"unknown command '%s', with args beginning with: %s"
"unknown command `%s`, with args beginning with: %s"
"unknown command '%s'"
What we will do however, is we can build a detection around whether someone is trying to run honeydet against our OpenCanary software.
Is your feature request related to a problem? Please describe. The tool honeydet is able to detect opencanary: https://github.com/referefref/honeydet/blob/main/signatures.yaml
Describe the solution you'd like Change opencanary to bypass that detection.
Describe alternatives you've considered I see 2 options:
Additional context https://github.com/referefref/honeydet