You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Kurt Wilson dc8c0f8da2
disable session recording
2 years ago
README.md add link to older v1 notes 3 years ago
live-sites-blocklist disable session recording 2 years ago
live-sites.txt Update live-sites.txt 3 years ago
old-sites.txt wikicram is v2 3 years ago

README.md

How do Honorlock's honeypot sites actually work? This repo contains efforts to find and list Honorlock honeypot domains. Since we don't know how many there are, these lists are probably far from complete.

live-sites.txt lists.. well... live sites.

live-sites-blocklist is an uBlock list you can import.

old-sites.txt contains sites that used to host HL honeypots, but don't now.

Don't cheat, folks.

some random notes/observations

Until a few days ago (27/3/2021), all of the new sites had noindex,nofollow set on all of them. As of today, it looks like the sites are now indexable by search engines!

A simple query targeting their privacy policy (they listened!) seems to work: "complaints directly to us at privacy@hlprivacy.com". I'm using the privacy policy as it seems to be constant between sites - the front matter is different for each site.

The v2 sites don't appear to use Quizlet sets as filler - it looks like it's only 'used' questions (although I should verify further). The v2 sites also use their character swapping on all questions (the v1 sites only swapped characters on real questions, which is how the scraper script detected them). v2 sites also have different internal structure - questions are stored via custom post metadata, and are retrievable via the Wordpress JSON API!!! Demo here

Other observations: Remember the battlemedialab account that appeared in wpscan on the v1 sites? We know now where they come in: they write the front matter on the v2 sites.

Looks like our uBlock submission worked: only sites that I didn't submit got upgraded to v2 (which is why it took me so long to notice them), so thats cool. I'm probably not going to submit them to uBlock, as my entire grounds for doing so was the absence of a privacy policy, which the v2 sites now have.

Also, if you're reading this: Hello Honorlock!

on the v1 sites

This file originally contained instructions/info on their v1 sites - I'm removing it to keep this file clean - find the old text in the git commit history.