This project is an experimental study conducted in the context of our studies at the Université de Technologie de Compiègne.
The goal is to create a high interaction honeypot system to collect and analyse brute-force attacks over the SSH protocol.

We currently have several virtual machines running a patched version of OpenSSH, and bridged to several IP ranges. Our data is then correlated to a geolocation database to get geographical information for our stats.

You can contact us at root@xdec.net.

You can now download our school report in English. This report is also available in French.

The BlackNet Project uses the following technologies:

• Apache Web Server
• Geolitecity Database
• Google
• MySQL
• Nginx
• OpenSSH Server
• Debian
• PHP
• Python
• Rsyslog
• VirtualBox
• jQuery

Authors:

• Romain Bezut
• Vivien Bernet-Rollande