| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | Move index.php file to public directory.main | Harald Eilertsen | 2024-07-07 | 1 | -2/+2 |
| | | | | | | | | | | | This allows us to set doculemt root to the public directory, so that there's less chance for shady actors to access the actual modules of the system directly. Just to be on the safe side, I added a new index.php file in the root of the project, to return a forbidden status in case of a misconfigured server. | ||||
| * | Process XML-RPC requests separately. | Harald Eilertsen | 2024-07-06 | 1 | -0/+1 |
| | | | | | | | | | | | | If the XML-RPC method is wp.getUsersBlogs, we just save submitted credentials and otherwise ignore the request. We get a lot of these, and they're not really that interesting, so we don't need to save the full payload. But let's keep the credentials, so that we can build a list of passwords and user names. Other requests will be saved in full as before. | ||||
| * | Rename trap-post-payload.php and call it from index.php. | Harald Eilertsen | 2024-07-04 | 1 | -0/+3 |
| | | |||||
| * | Add license information with REUSE | Harald Eilertsen | 2024-07-04 | 1 | -0/+4 |
| | | |||||
| * | Initial primitive honeypot | Harald Eilertsen | 2024-07-04 | 1 | -0/+0 |
 |
index : volse-webtrap.git | |
| A minimal WordPress/Web honeypot in PHP | Harald Eilertsen |
| aboutsummaryrefslogtreecommitdiffstats |