SNARE is a web application honeypot sensor attracting all sort of maliciousness from the Internet. The web page is generated by cloning a real web application and injecting known vulnerabilities. SNARE connects to TANNER, a remote data analysis, and classification service, to evaluate HTTP requests and composing the response then served by SNARE.
Aim: Spend the summer improving SNARE/TANNER.
- Reconstructing SNARE and CLONER code-base with syntax changing.
- Improve storing and analysing sessions in TANNER.
- Improve TANNER-web UI functionalities.
- Implement Tanner api authorization.
- Investigate various types of server fingerprinting and evaluate how SNARE performs.
- Move SNARE/TANNER to landscape.io.
- Dependency management using pipenv. (backup for goal #4)