Honeypot for Intel's AMT Firmware Vulnerability CVE-2017-5689.
Webserver that listens on TCP port 16992. Replicates the behaviour of Intel's AMT management service. If successfully exploited, content pulled from a HP machine is served to the attacker.
# go build
# ./amthoneypot [logfile.txt]
# nohup ./amthoneypot logfile.txt &
- Add templating to make content dynamic / random
- Add error checking