Tool and Usage
Thug is a low-interaction honeyclient to test for client-side attacks. It mimics a client application, like a web browser and sees if attack code is fired.
Why this tool?
The honeypot concept is a well-known technique to collect attack patterns on servers and systems. Tools like Thug are considered to be a honeyclient, or client honeypot. These tools collect attacks against client applications. For example by mimicking a web application and visit a malicious page to see if any code is attacking the application.
Usage and audience
Thug is commonly used for learning, malware analysis, or threat discovery. Target users for this tool are security professionals.
- + The source code of this software is available
Author and Maintainers
Thug is under development by Angelo Dell'Aera.
Support operating systems
Thug is known to work on Linux.