qeeqbox / chameleon Goto Github PK

Hi
seems to be experiencing issues while running the script.
attaching Pastebin link for the logs.
Running on CentOS 7

Step 7/8 : EXPOSE ${PORTS}
ERROR: Service 'honeypots' failed to build: EXPOSE requires at least one argument

syslog_1 | syslog-ng: Error setting capabilities, capability management disabled; error='Operation not permitted'
somthing to help me here

Hi! Is there any way to find out which ip and which pair login-password was used when successful login was?

Hi and thank your for this project,

Is it possible to get a log file/output like syslog from the honeypots?
I plan to use chameleon on the internal network and I have centralised logging that would alert when there are failed logins.

Thank you

I deployed current project on raspberry pie 4 but got error in "pip3 install postgresql", after reading Microsoft's documentation, I came to a solution by adding line RUN apt-get install freetds-dev -y in honeypot docker file.
I installed docker-compose using pip3 command because using curl or apt-get install command didn't work. So after all this, there came an error which states that database named chameleon doesn't exist. I cross checked it by looking into postgresql's container and there was no database named chameleon. Looking forward for solution.
Following is the attached pictures of error.

Thanks

Hi! Is there any way to run as a service? i know about dcreen, but this is not the option

Hey ! I'm working on a project and i want to send the data collected by the honeypots to MISP .Is it possible to access the colected data and save it as json format/csv file or even txt .

hi
im using ubuntu 18.04
after runnig run.sh when i choose Deploy (7) i get an error of Unable to locate package python-psycopg2
i get same on ubuntu 20.04 too
full log :

root@ubuntu:~/chameleon# ./run.sh deploy

QeeqBox Chameleon v2021.V.02.05 starter script -> https://github.com/qeeqbox/Chameleon
Current servers (DNS, HTTP Proxy, HTTP, HTTPS, SSH, POP3, IMAP, STMP, RDP, VNC, SMB, SOCK5, TELNET and Postgres)`

[x] Install & update pre-requirements
Hit:1 http://us.archive.ubuntu.com/ubuntu bionic InRelease
Get:2 http://security.ubuntu.com/ubuntu bionic-security InRelease [88.7 kB]
Get:3 http://us.archive.ubuntu.com/ubuntu bionic-updates InRelease [88.7 kB]
Get:4 http://us.archive.ubuntu.com/ubuntu bionic-backports InRelease [74.6 kB]
Fetched 252 kB in 4s (68.6 kB/s)
Reading package lists... Done
[x] Init deploy
[x] Install & update requirements
Hit:1 http://us.archive.ubuntu.com/ubuntu bionic InRelease
Get:2 http://us.archive.ubuntu.com/ubuntu bionic-updates InRelease [88.7 kB]
Get:3 http://us.archive.ubuntu.com/ubuntu bionic-backports InRelease [74.6 kB]
Err:4 http://security.ubuntu.com/ubuntu bionic-security InRelease
Temporary failure resolving 'security.ubuntu.com'
Fetched 163 kB in 15s (10.9 kB/s)
Reading package lists... Done
W: Failed to fetch http://security.ubuntu.com/ubuntu/dists/bionic-security/InRelease Temporary failure resolving 'security.ubuntu.com'
W: Some index files failed to download. They have been ignored, or old ones used instead.
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
100 633 100 633 0 0 536 0 0:00:01 0:00:01 --:--:-- 536
100 16.7M 100 16.7M 0 0 258k 0 0:01:06 0:01:06 --:--:-- 202k
/usr/local/bin/docker-compose
Good
/usr/bin/docker
Good
[x] Fixing ports
Creating network "chameleon_backend" with the default driver
Creating network "chameleon_frontend" with the default driver
Building honeypots
Step 1/8 : FROM python:3.8
---> 79372a158581
Step 2/8 : RUN echo iptables-persistent iptables-persistent/autosave_v4 boolean true | debconf-set-selections && echo iptables-persistent iptables-persistent/autosave_v6 boolean true | debconf-set-selections && apt-get update -y && apt-get install -y iptables-persistent tcpdump nmap iputils-ping python-psycopg2 lsof psmisc dnsutils libffi-dev libssl-dev
---> Running in 0f6ba4d3b433
Get:1 http://deb.debian.org/debian bullseye InRelease [116 kB]
Get:2 http://deb.debian.org/debian bullseye-updates InRelease [39.4 kB]
Get:3 http://deb.debian.org/debian bullseye/main amd64 Packages [8180 kB]
Get:4 http://security.debian.org/debian-security bullseye-security InRelease [44.1 kB]
Get:5 http://security.debian.org/debian-security bullseye-security/main amd64 Packages [70.3 kB]
Get:6 http://deb.debian.org/debian bullseye-updates/main amd64 Packages [2300 B]
Fetched 8452 kB in 5min 20s (26.4 kB/s)
Reading package lists...
Reading package lists...
Building dependency tree...
Reading state information...
E: Unable to locate package python-psycopg2
ERROR: Service 'honeypots' failed to build: The command '/bin/sh -c echo iptables-persistent iptables-persistent/autosave_v4 boolean true | debconf-set-selections && echo iptables-persistent iptables-persistent/autosave_v6 boolean true | debconf-set-selections && apt-get update -y && apt-get install -y iptables-persistent tcpdump nmap iputils-ping python-psycopg2 lsof psmisc dnsutils libffi-dev libssl-dev' returned a non-zero code: 100

Choose an option:

1. Setup requirements (docker, docker-compose)
2. Test the project (All servers and Sniffer)
3. Run deploy
4. Run dev
5. Run test

This is a great looking product.

When I run the docker 'm getting the following error:

Downloading https://files.pythonhosted.org/packages/2d/d3/41b3db87f262debadb153900d4e6f8d61aa87187dd6fedd855ed24e8526d/rsa-4.7.1.tar.gz
rsa requires Python '>=3.5, <4' but the running Python is 2.7.17
The command '/bin/sh -c pip install scapy netifaces pyftpdlib sqlalchemy pyyaml paramiko==2.7.1 impacket twisted rdpy==1.3.2 psutil requests redis mysql-connector-python pygments' returned a non-zero code: 1

Seems like the installer is executing at python2.7 and so it wont install rsa which requires new python.

Any ideas on this?

Hello Dev,
Can you make this a version for CentOS.

root@test:/chameleon# sudo chmod +x ./run.sh
root@test:/chameleon# sudo ./run.sh deploy

QeeqBox Chameleon starter script -> https://github.com/qeeqbox/Chameleon
Current servers (DNS, HTTP Proxy, HTTP, HTTPS, SSH, POP3, IMAP, STMP, RDP, VNC, SMB, SOCK5, TELNET and Postgres)

[x] System updating
Hit:1 http://archive.ubuntu.com/ubuntu jammy InRelease
Hit:2 https://download.docker.com/linux/ubuntu jammy InRelease
Hit:3 https://artifacts.elastic.co/packages/8.x/apt stable InRelease
Get:4 http://security.ubuntu.com/ubuntu jammy-security InRelease [110 kB]
Get:5 http://archive.ubuntu.com/ubuntu jammy-updates InRelease [119 kB]
Hit:6 http://archive.ubuntu.com/ubuntu jammy-backports InRelease
Fetched 229 kB in 1s (200 kB/s)
Reading package lists... Done
[x] Install requirements
Reading package lists... Done
Building dependency tree... Done
Reading state information... Done
jq is already the newest version (1.6-2.1ubuntu3).
curl is already the newest version (7.81.0-1ubuntu1.16).
sudo is already the newest version (1.9.9-1ubuntu2.4).
0 upgraded, 0 newly installed, 0 to remove and 2 not upgraded.
[x] Init deploy
/usr/bin/docker
[x] Install docker.io xdg-utils linux-headers
Reading package lists... Done
Building dependency tree... Done
Reading state information... Done
linux-headers-5.15.0-105-generic is already the newest version (5.15.0-105.115).
xdg-utils is already the newest version (1.1.3-4.1ubuntu3~22.04.1).
Some packages could not be installed. This may mean that you have
requested an impossible situation or if you are using the unstable
distribution that some required packages have not yet been created
or been moved out of Incoming.
The following information may help to resolve the situation:

The following packages have unmet dependencies:
containerd.io : Conflicts: containerd
E: Error, pkgProblemResolver::Resolve generated breaks, this may be caused by held packages.
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0
0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0Warning: Failed to create the file /usr/local/bin/docker-compose: Is a
Warning: directory
0 16.7M 0 863 0 0 999 0 4:53:23 --:--:-- 4:53:23 4336
curl: (23) Failure writing output to destination
[x] Setting up docker-compose
[x] Checking docker & docker-compose
/usr/bin/docker
Good
[x] Fixing ports
/usr/bin/docker
/usr/bin/docker

Choose an option:

1. Setup requirements (docker, docker-compose)
2. Test the project (All servers and Sniffer)
3. Run deploy
4. Run dev
5. Run test

^C

if set version of honeypots==0.51 the wont start

Hi!
If i do: ./run.sh test - all ok, if ./run.sh deploy - i get error

Hello,

first of all, many thanks for this really impressive work!

I want to change the listen port for SSH and I want to disable DNS Server.
How can I do that?
I tried to change ssh_server.py, or to move dns_server in another location, but failed

Many thanks for your help

Hey there,
I really enjoy using the chamleon project. Thanks for the great work :)
Is it possible to show potential attackers my own website when they access my server on port 80/443?
Best wishes!

Great product, and thanks in advance for any attention.

I notice my honey services all work, i can connect to them, but only the ssh counter is incrementing.

so I can connect to telnet for example, and you can see it reflect in the ports open window, but no increment. I'm stumped. Any ideas greatly appreciated.

Hi,
first I want to say thank you for this easy to use project.

But is there a way to make the data persistent?
I want to have a history in grafana even after rebooting the host or restarting the containers.

In the config.json I see the "db_options":["drop"] parameter. But when I remove this parameter grafana won't start.

Every time I edit the default dashboard to a customised one it gets back to its default one on rerunning the script "run.sh". Is there a way to edit the current dashboard? I am trying to remove some of the panels.

Hoping for an immediate response.

Thanks.