From f45abc91173438b9149a7cfb5cf5515a85873e1f Mon Sep 17 00:00:00 2001
From: Harald Eilertsen <haraldei@anduin.net>
Date: Thu, 4 Jul 2024 12:28:04 +0200
Subject: Initial primitive honeypot

---
 index.html            |  0
 index.php             |  0
 payloads/.gitkeep     |  0
 trap-post-payload.php | 19 +++++++++++++++++++
 4 files changed, 19 insertions(+)
 create mode 100644 index.html
 create mode 100644 index.php
 create mode 100644 payloads/.gitkeep
 create mode 100644 trap-post-payload.php

diff --git a/index.html b/index.html
new file mode 100644
index 0000000..e69de29
diff --git a/index.php b/index.php
new file mode 100644
index 0000000..e69de29
diff --git a/payloads/.gitkeep b/payloads/.gitkeep
new file mode 100644
index 0000000..e69de29
diff --git a/trap-post-payload.php b/trap-post-payload.php
new file mode 100644
index 0000000..86918f9
--- /dev/null
+++ b/trap-post-payload.php
@@ -0,0 +1,19 @@
+<?php
+$data = [
+	'SERVER_NAME' => $_SERVER['SERVER_NAME'],
+	'REMOTE_ADDR' => $_SERVER['REMOTE_ADDR'],
+	'REMOTE_PORT' => $_SERVER['REMOTE_PORT'],
+	'REQUEST_METHOD' => $_SERVER['REQUEST_METHOD'],
+	'REQUEST_URI' => $_SERVER['REQUEST_URI'],
+	'QUERY_STRING' => $_SERVER['QUERY_STRING'],
+	'REQUEST_TIME' => $_SERVER['REQUEST_TIME'],
+	'REQUEST_HEADERS' => getallheaders(),
+	'POST' => $_POST,
+	'COOKIES' => $_COOKIE,
+	'BODY' => file_get_contents('php://input'),
+];
+
+$file_name = __DIR__ . "/payloads/{$data['REQUEST_TIME']}-{$data['SERVER_NAME']}.json";
+error_log("Trapped request, saving to {$file_name}");
+file_put_contents($file_name, json_encode($data));
+header("HTTP/1.1 404 Not Found");
-- 
cgit v1.2.3