code.mwcollect.org

Home

The mwcollect.org main page (the blog) is currently offline due to server maintenance. The mwcollect Alliance is still available and running.

mwcollect.org code repository for public access.

mwcollectd is a malware and attack trace collection daemon, uniting the best of honeytrap and nepenthes.
HoneyBow is a framework that builds around VMWare and also sits inside of the guest to create a high-interaction malware collection honeypot
pyprofjsploit is a library for low-interaction client honeypot creation based on libemu

libscizzle (2010-07-20 16:41)
```
 _ _ _              _         _      
| (_) |__  ___  ___(_)_______| | ___ 
| | | '_ \/ __|/ __| |_  /_  / |/ _ \
| | | |_) \__ \ (__| |/ / / /| |  __/
|_|_|_.__/|___/\___|_/___/___|_|\___|
```
libscizzle is shellcode detection library built around the x86 32bit virtualizing library libcpu, which this binary release links against statically (so you really only need that one .so).
libemu (2009-07-03 18:47)
libemu was originally written by Paul Baecher and Markus Koetter; since some of my patches didn't make it into their repository, I've branched my own here. The GIT repository can be found at http://git.mwcollect.org/libemu/ .

Compiling libemu does not differ from compiling the original libemu, so please refer to http://libemu.carnivore.it/ for documentation.
mwcollectd (2009-05-03 17:09)
mwcollectd is a versatile malware collection daemon, uniting the best features of nepenthes and honeytrap licensed under the LGPL.

The GIT repository can be pulled from http://git.mwcollect.org/mwcollectd/

Please refer to the Wiki for the Documentation and information on Installing mwcollectd.
libnetworkd (2009-03-16 16:22)
libnetworkd is a generic library for rapid asynchronous C++ network daemon development.
pyprofjsploit (2009-03-04 12:38)
pyprofjsploit is a library for low-interaction client honeypot creation based on libemu