HoneyPotX for Mac2.5

Version 2.5 : many improvements. You might think some functions have disappeared. That's right, but actually those functions were obsolete. While coding the first version of HoneyPotX, actually I was a newbie programmer? As a result, as soon as I understood in a better way networks protocols/connections bases, I've noticed some functions were nonsense, badly established. For instance when an attack was detected, HoneyPotX used to try to flood closed ports, what sounds stupid of course. Now when an attack is detected, depending on the protocol you have chosen, HoneyPotX will flood remote attacker or close connection. Now let's talk about the new «Prevention» process. It will convert attacker's IP address into hostname and you'll be able to send a "complaint" email to the "abuse" service of its ISP ! Thus its account may be suspended, depending on its ISP's policy towards "hackers" (I've heard some were quite severe? :p). Notice you set the prevention email by the «Prevention» panel. Never change any string that is limited with «[» at the beginning and «]» at the end because these strings will be finally replaced with parameters : some of them are setted by yourself («Your name»), the other ones are determined by HoneyPotX (date, remote_attacker's_IP_address, remote_attacker's_hostname, attacked_port_value, service). Regarding the Fake Server System, it's a process that makes your computer react as a FTP, POP3, SMTP server. When started, each time someone connects it will answer to client's commands like a classic server but after getting username, password or the email message then the client will be told password is wong, server is busy or no message was received depending on what behaviour you have specified and which types of server you have chosen to start. «Transcript» server will only remember commands it has received, without answering anything to the client. Unfortunately, you can not listen to standard server ports that are inferior to 1024 (21 for FTP, 110 for POP3 and 25 for SMTP), unless you launches HoneyPotX with root rights of course. By the way «Port» cells («Settings» panel) are editable ! Fake Server System can be usefull to test Brutal Gift or mema. Moreover in the case someone attempts to connect to your computer believing it's a FTP, POP3 or SMTP server then you gess he way have some bad intentions. Thus you will be given it's IP address. Prevention process is not implemented is the Fake Server System, owing to the fact I believe it would not be fair considering that the attempt to connect to a server can not be punished actually? Finally, what's new again is the «Netstat» panel. "Netstat" is a UNIX shell command that allow you to get a list of every single connection involving your computer. So this panel gives you access to this great functionality quite easily. Application's default language has been set to English.