My honeypot setup using Cowrie with Grafana to visualize aggregated logs (Loki + Alloy) deployed via Docker Compose.
This is expected to be ran on two seperate machines (host & target) with host running with a Dokploy instance.
├── host/
│ ├── docker-compose.yml # Grafana + Loki services
│ └── loki-config.yml
├── target/
│ ├── docker-compose.yml # Cowrie + Grafana Alloy services
│ ├── alloy-config.alloy
│ ├── cowrie.cfg.dist
│ ├── cowrie-development/ # Cowrie Repository for configurations
│ ├── geo/ # GeoIP databases from MaxMind
│ └── honeyfs/ # Sourced from Cowrie's honeyfs folder
For configuration and setup, visit my blog post here.
This project is for educational and research purposes only.