[Name]
Honeypot-IDS

[Version]
Version 1.0 (Initial Stable Release)

[Homepage]
GitHub Repository / Project Documentation Page (if hosted online)

[Download]
Available as ZIP release package or downloadable from the project repository release section.

[Author]
Henil (Developer) / Project Contributors

[Licence]
MIT License
The software is free to use, modify, and distribute for educational and research purposes.

[Description]
Honeypot-IDS is a cybersecurity monitoring and intrusion detection tool designed to simulate vulnerable network services in order to attract malicious attackers and monitor their activities. It works as a decoy system that captures unauthorized access attempts, suspicious commands, brute-force attacks, SQL injection attempts, and other malicious behaviors. The tool logs all detected events, stores forensic information in a database, and provides real-time monitoring through a dashboard for analysis and research.

[Dependencies]

Python 3.x
Flask
SQLite3
Requests
Hashlib
JSON
Threading
Socket Programming Libraries
ReportLab (for reports)

[Similar Tools]

Cowrie
Dionaea
Honeyd
Snort
Suricata

[Activity]
Project started in 2026 as an academic cybersecurity research project and is actively under development for security monitoring improvements.

[How to Install]

Extract the ZIP release package
Install dependencies:
pip install flask requests reportlab
Run the tool:
python app.py
Open browser dashboard:
http://localhost:5000

[How to Use]

1. Download the Release Package

Download the Honeypot-IDS v4.0 ZIP release from the project release/download page and extract it.

Example:

unzip Honeypot-IDS-main.zip
cd Honeypot-IDS-main

2. Install Python Requirements

Make sure Python 3.9 or later is installed.

Install dependencies using:

pip install -r requirements.txt

This installs:

Flask 3.0.3
pyftpdlib 1.5.10
requests 2.31.0
werkzeug 3.0.1
user-agents
reportlab

3. Start the Honeypot Sensor

Run the honeypot service:

python honeypot.py

This starts:

HTTP Honeypot (Port 5000)
FTP Honeypot (Port 2121)
Telnet Honeypot (Port 2323)

The service captures and logs attacker activity.

4. Start the IDS Dashboard

Open another terminal and run:

python dashboard.py

This launches the monitoring dashboard.

5. Open Dashboard in Browser

Visit:

http://127.0.0.1:5000

or

http://localhost:5000

6. Monitor Threat Activity

The dashboard provides:

Live attack visualization
Attacker IP tracking
Geo-location lookup
Payload inspection
Event severity analysis
Exportable reports (PDF / TXT / HTML)

7. Stop the Tool

Press:

CTRL + C

in both terminal windows.

[Packaged]
No, the tool is not currently packaged for Debian. Manual installation is required using Python dependencies and source files.