Déploiement¶

sudo apt update && sudo apt upgrade -y
sudo apt install python3 python3-pip python3-venv -y
sudo useradd -m -s /bin/bash hydra
sudo su - hydra

git clone https://github.com/grizzly2005/hydra-pdx.git
cd hydra-pdx/hydra-honeypot

python3 -m venv venv
source venv/bin/activate
pip install -r requirements.txt

cp .env.example .env
# Éditez .env avec votre clé API Groq

# Option A : Exécuter sur le port 2222 directement
SSH_PORT=2222

# Option B : Utiliser iptables pour rediriger 22 → 2222
# (déplacez d'abord le vrai SSH sur un autre port !)
sudo iptables -t nat -A PREROUTING -p tcp --dport 22 -j REDIRECT --to-port 2222

[Unit]
Description=HYDRA SSH Honeypot
After=network.target

[Service]
Type=simple
User=hydra
WorkingDirectory=/home/hydra/hydra-pdx/hydra-honeypot
ExecStart=/home/hydra/hydra-pdx/hydra-honeypot/venv/bin/python src/main.py
Restart=always
RestartSec=10
Environment=PYTHONUNBUFFERED=1

[Install]
WantedBy=multi-user.target

sudo systemctl enable hydra
sudo systemctl start hydra
sudo systemctl status hydra

curl -L https://github.com/cloudflare/cloudflared/releases/latest/download/cloudflared-linux-amd64 -o cloudflared
chmod +x cloudflared
sudo mv cloudflared /usr/local/bin/

cloudflared tunnel create hydra
cloudflared tunnel route dns hydra ssh.votredomaine.com
cloudflared tunnel run hydra

# Depuis votre machine locale
rsync -avz hydra@votre-vps:/home/hydra/hydra-pdx/hydra-honeypot/logs/ ./logs/

# Traiter avec PDX
cd pdx
python -m pdx.training.data_router split --logs-dir ../logs
python -m pdx.training.data_router generate --all