The Honeynet Project - R&D for Honeypot/Honeynet Technology and InfoSec Research

Founded in 1999, The Honeynet Project is an international, non-profit (501c3) research organization dedicated to improving the security of the Internet at no cost to the public.

Our achievements are based on the principles of open source and volunteer efforts, with all software or papers created being licensed as open source and made freely available to the community.

We help coordinate the development, deployment, advancement and research findings of honeypot and anti-malware related technologies. With over 45 international chapters, 250 members and over 30 open source research projects around around the world, we are a mature, highly diverse and international organization.

Simply put, our goal is to make a difference. We accomplish this via:

Awareness - We raise awareness of the threats and vulnerabilities that exist in the Internet today. Many individuals & organizations do not realize they are a target, nor understand who is attacking them, how, or why. We provide this information, so people can better understand that they are a target, and understand the basic measures they can take to mitigate these threats. This is provided through our Know Your Enemy series of papers.

Tools - For organizations interested in continuing their own research about cyber threats, we provide the tools and techniques we have developed. All tools are specifically licensed open source. Organizations all over the world use our tools.

Information - In addition to raising awareness, we provide details to better secure assets. Historically, information about attackers has been limited to the tools they use. We provide critical additional information, such as their motives in attacking, how they communicate, when they attack systems and their actions after compromising a system. We provide this service through our Know Your Enemy whitepapers and our periodic Scan of the Month challenges.

The Honeynet Project uses GSoC as a incubator for new R&D projects, and to recruit active new members.

lightbulb_outline View ideas list


  • django
  • c
  • python
  • docker
  • c++


  • Security
  • honeypot
  • fuzzing
  • hypervisor introspection
  • network analysis
  • malware analysis
comment IRC Channel
mail_outline Contact email

The Honeynet Project 2021 Projects

  • Filip Adamik
    A Stitch In Time (saves nine)
    This proposal tackles several smaller/simpler challenges of the HosTaGe application. It focusses on addressing Logging, API Key Maintenance and...
  • krishna11
    Cloning and compatibility improvements for Snare
    I plan to work heavily on improving the cloning capabilities of Snare, modify and upgrade aiohttp to be compatible with Tanner (v3.7.4) and add...
  • Jan Gruber
    Extending DRAKVUF by an I/O-emulation module in order to camouflage its sandbox nature
    To be a reliable black-box malware analysis system DRAKVUF has to mitigate the observer effect, which can be accomplished by defeating...
  • Manorit Chawdhry
    Implementing Linux support in Drakvuf-Sandbox
    Drakvuf-sandbox is a malware analysis tool that is used to analyze the behavior of the malware in a contained environment. It uses the Drakvuf engine...
  • Shubham Pandey (sp35)
    IntelOwl Connectors Manager and Integrations
    IntelOwl is an Open Source Intelligence (OSINT) solution designed with the intent to help the community to get threat intelligence data about an...
  • Sarthak Khattar
    IntelOwl Improvements
    This project proposes a new, more robust way of verifying Analyzers’ configurations via strict rules through database models/serializers and a new...
  • Toshiaki Tanaka
    Make mitmweb’s UI rich and easy to use
    Mitmproxy provides a lot of features for debugging, testing, and penetration testing. Mitmproxy is already a really awesome tool at this moment, but...
  • Yu-Shiang Dang
    New Rule Generation Technique & Make Quark Everywhere Among Security Open Source Projects
    Quark-Engine is a rule-based android malware detection tool, However, as a contributor of both Quark and its side projects (quark-rule-generate,...
  • Hariom Chaturvedi
    PcapMonkey Improvements
    PcapMonkey provides an easy way to analyze .pcap using Suricata, Zeek, and Elastic SIEM. The goal of this proposal is to improve and enhance...
  • Sheng-Feng
    Replacing the core library of Quark-Engine
    In this proposal, I mainly focus on two dimensions provided by Quark-Engine, including resilience and performance. According to the mentor, there are...
  • Abhimanyu Rawat
    RIoTPot - Honeypot for IOT/OT devices
    A honeypot for IOT/OT protocols with a dynamic response system that records the attack data. A tool which can help securing IOT/OT infrastructure and...