This is a honeypot simulating a vulnerable Elasticsearch server opened to the Internet. It uses ideas from various other honeypots, like ADBHoneypot (for output plugin support), Citrix Honeypot (for general structure), Elastichoney, (for a general example of an Elasticsearch honeypot). ElasticpotPY (for the idea to use scripted responses stored in files), and Delilah (for additional ideas on what to emulate).
- a working MySQL server (only if you use the MySQL output plugin)
Check the installation document for more information how to properly install, configure, and run the honeypot.