Very simple but effective docker deployed honeypot to detect port scanning in your environment.

Edit or add ports within the brackets on line 14 of honey_ports.sh

for p in {80,3306}; do

Also expose corresponding ports in line 17 of dockerfile

EXPOSE 80 3306

docker build -t honey_ports .

sudo docker run -d -v /var/log:/logs_out honey_ports

By default logs of attempted connections will be written to "hp_connections.log" which is stored on a mounted volume on the host.