Rooba
/
cowrie
mirror of https://github.com/cowrie/cowrie.git
1
1
Fork 0
Code Issues Packages Projects Releases Wiki Activity
cowrie/CHANGELOG.md

2.2 KiB
Raw Blame History

  • 2015-04-12 JSON output is now default via 'output' plugin mechanism. Rotates daily

  • 2015-04-10 Fix for downloading files via SFTP

  • 2015-03-31 Small tweaks on session close, closing session does not close ssh transport

  • 2015-03-18 Merged 'AuthRandom' login class by Honigbij

  • 2015-02-25 Internals for dblog/ modules changed completely. Now accepts structured logging arguments, and uses eventids instead of regex parsing

  • 2015-02-20 Removed screen clear/reset on logout

  • 2015-02-19 Configuration directives have changed! ssh_addr has become listen_addr and ssh_port has become listen_port. The old keywords are still accepted for backwards compatibility

  • default behaviour is changed to disable the exit jail

  • sftp support

  • exec support

  • stdin is saved as a file in dl/ when using exec commands to support commands like 'cat >file; ./file'

  • allow wget download over non-80 port

  • simple JSON logging to kippo.json

  • accept log and deny publickey authentication

  • add uname -r, -m flags

  • add working sleep command

  • enabled ssh diffie-hellman-group-exchange-sha1 algorithm

  • add 'bash -c' support (no effect option)

  • enable support for && multiple commands

  • create uuid to uniquely identify each session

  • log and deny direct-tcpip attempts

  • add "chattr" command

  • support emacs keybindings (c-a, c-b, c-f, c-p, c-n, c-e)

  • add "sync" command

  • accept, log and deny public key authentication

  • add "uname -r" support

  • logstash and kibana config files added, based on JSON log

  • fix for honeypot detection (pre-auth differences with openssh)

  • added verbose logging of client requested key exchange parameters (for client fingerprinting)

  • fixes for behavior with non-existent files (cd /test, cat /test/nonexistent, etc)

  • fix for ability to ping/ssh non-existent IP address

  • always send ssh exit-status 0 on exec and shell

  • ls output is now alphabetically sorted

  • banner_file is deprecated. honeyfs/etc/issue.net is default

  • add 'dir' alias for 'ls'

  • add 'help' bash builtin

  • add 'users' aliased to 'whoami'

  • add 'killall' and 'killall5' aliased to nop

  • add 'poweroff' 'halt' and 'reboot' aliases for shutdown

  • add environment passing to commands

  • added 'which', 'netstat' and 'gcc' from kippo-extra

  • logging framework allows for keyword use