Skip to content

honeynet/ochi

5 Branches0 Tags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

dependabot[bot]dependabot[bot]
Bump github.com/golang-jwt/jwt/v4 from 4.5.1 to 4.5.2 (#116)
Mar 22, 2025
ab5bcf9 · Mar 22, 2025

History

83 Commits
.github/workflows
.github/workflows
Mar 15, 2025
backend
backend
Oct 26, 2023
frontend
frontend
Nov 15, 2023
public
public
Nov 15, 2023
scripts
scripts
Jul 16, 2023
.gitignore
.gitignore
Aug 15, 2023
.prettierignore
.prettierignore
Mar 18, 2023
.prettierrc
.prettierrc
Mar 18, 2023
LICENSE
LICENSE
May 22, 2022
Makefile
Makefile
Jul 16, 2023
README.md
README.md
Jun 25, 2023
babel.config.js
babel.config.js
May 27, 2022
go.mod
go.mod
Mar 22, 2025
go.sum
go.sum
Mar 22, 2025
jest.config.js
jest.config.js
Sep 10, 2023
package-lock.json
package-lock.json
Feb 20, 2025
package.json
package.json
Sep 28, 2024
rollup.config.js
rollup.config.js
Jul 16, 2023
server.go
server.go
Jul 16, 2023
svelte.config.js
svelte.config.js
May 27, 2022
tsconfig.json
tsconfig.json
Aug 15, 2023

Repository files navigation

Ochi

UI for events from Glutton, events streamed live from a development instance.

Motivation

Any publicly available IP address is under a constant barrage of attacks. We want to identify trends and attacks which are interesting for honeypot development. The majority of events are internet background noise, so we need to be able to identify truly new events worth investigating. Threats are happening in real time and we don't scale to preserve history. We work on a live stream with the requirement to be able to easily filter and classify events which are interesting. Eventually we want to be able to enabled to quickly react to new trends, improve our sensors to collect valuable information.

Development Requirements

  1. Golang version > 1.17
  2. Node LTS version

For windows system, some additional setup is needed (only in case of backend development)

If you have make command working in your system and got gcc compiler installed already, you can directly jump to point 2.

  1. Follow the steps mentioned here
  2. Go to your downloaded ochi folder, run command go env and check if your go environment have CGO_ENABLED="1" or not, if not then make appropriate changes in your system to have CGO_ENABLED="1".

Steps for development

  1. Clone the repo git clone https://github.com/honeynet/ochi.git
  2. run cd ochi
  3. run npm install
For Frontend development only
  1. comment the dial() and uncomment the test() in src/App.svelte
  2. run npm run dev
  3. Go to http://localhost:8080 in your browser.
For Frontend and backend development
  1. To build the project, run make build
  2. To start a local server, run make local
  3. Go to localhost:3000 in your browser
  4. To generate fake events, follow frontend development's step 1.
For using Ochi as a storage of Glutton events locally
  1. Start Ochi server with make build && make local
  2. Build Glutton server
  3. Update the Glutton config to include:
    1. producers.enabled to true here
    2. producers.http.enabled to true here
    3. producers.http.remote to http://localhost:3000/publish?token=token
  4. Start Glutton server.
  5. Open http://localhost:3000 and you should see Glutton events if everything is working as expected.

Notes

  1. If you are uncommenting test() and commenting dial(), please revert it back to its original state before generating PRs.
  2. In case you are still facing any issue while setup, feel free to ask in discussion.

About

ochi.mushmush.org

Topics

visualization honeypot

Resources

Readme

License

GPL-3.0 license
Activity
Custom properties

Stars

30 stars

Watchers

4 watching

Forks

21 forks
Report repository

Releases

No releases published

Contributors 6

Languages