LSE top 100LSE top 100Thug (19)Thug (19)

Tool and Usage

Thug is a low-interaction honeyclient to test for client-side attacks. It mimics a client application, like a web browser and sees if attack code is fired.

Why this tool?

The honeypot concept is a well-known technique to collect attack patterns on servers and systems. Tools like Thug are considered to be a honeyclient, or client honeypot. These tools collect attacks against client applications. For example by mimicking a web application and visit a malicious page to see if any code is attacking the application.

Usage and audience

This tool is categorized as a client honeypot and honeypot.

Thug is commonly used for learning, malware analysis, or threat discovery. Target users for this tool are security professionals.

Tool review

The review and analysis of this project resulted in the following remarks for this security tool:


  • + The source code of this software is available

Author and Maintainers

Thug is under development by Angelo Dell'Aera.


Support operating systems

Thug is known to work on Linux.

This tool page was recently updated. Found an improvement? Become an influencer and submit an update.
Project details
Latest release0.9.17 [2018-02-12]
Last updatedFeb. 15, 2018

Project health

This score is calculated by different factors, like project age, last release date, etc.


 Project website
GitHub iconThug GitHub project

Related terms