Just released SignalTrace v2.1.0 — my self-hosted honeypot and link tracker for phishing simulations and recon detection.
New in this release: Docker support, a Splunk app with Dashboard Studio dashboard, dark mode and mobile layout, better bot scoring with spoofed UA detection and expanded path risk lists, and a round of security fixes.
Free, open source, MIT licensed.
2026-04-05 RDP #Honeypot IOCs - 630 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec
Top IPs:
143.198.111.35 - 495
111.10.207.196 - 18
198.235.24.30 - 9
Top ASNs:
AS14061 - 504
AS396982 - 36
AS9808 - 18
Top Accounts:
hello - 504
Test - 24
test - 18
Top ISPs:
DigitalOcean, LLC - 504
Google LLC - 36
China Mobile communications corporation - 18
Top Clients:
Unknown - 630
Top Software:
Unknown - 630
Top Keyboards:
Unknown - 630
Top IP Classification:
hosting - 549
Unknown - 63
mobile - 18
Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key
2026-04-05 RDP #Honeypot IOCs - 420 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec
Top IPs:
143.198.111.35 - 330
111.10.207.196 - 12
198.235.24.30 - 6
Top ASNs:
AS14061 - 336
AS396982 - 24
AS9808 - 12
Top Accounts:
hello - 336
Test - 16
test - 12
Top ISPs:
DigitalOcean, LLC - 336
Google LLC - 24
China Mobile communications corporation - 12
Top Clients:
Unknown - 420
Top Software:
Unknown - 420
Top Keyboards:
Unknown - 420
Top IP Classification:
hosting - 366
Unknown - 42
mobile - 12
Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key
2026-04-05 RDP #Honeypot IOCs - 210 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec
Top IPs:
143.198.111.35 - 165
111.10.207.196 - 6
198.235.24.30 - 3
Top ASNs:
AS14061 - 168
AS396982 - 12
AS9808 - 6
Top Accounts:
hello - 168
Test - 8
test - 6
Top ISPs:
DigitalOcean, LLC - 168
Google LLC - 12
China Mobile communications corporation - 6
Top Clients:
Unknown - 210
Top Software:
Unknown - 210
Top Keyboards:
Unknown - 210
Top IP Classification:
hosting - 183
Unknown - 21
mobile - 6
Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key
2026-04-04 RDP #Honeypot IOCs - 294 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec
Top IPs:
143.198.111.35 - 111
80.94.95.221 - 39
206.189.89.171 - 24
Top ASNs:
AS14061 - 135
AS204428 - 42
AS396982 - 39
Top Accounts:
hello - 135
Administr - 48
Domain - 27
Top ISPs:
DigitalOcean, LLC - 135
SS-Net - 42
Google LLC - 39
Top Clients:
Unknown - 294
Top Software:
Unknown - 294
Top Keyboards:
Unknown - 294
Top IP Classification:
hosting - 177
Unknown - 99
mobile - 18
Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key
2026-04-04 RDP #Honeypot IOCs - 196 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec
Top IPs:
143.198.111.35 - 74
80.94.95.221 - 26
206.189.89.171 - 16
Top ASNs:
AS14061 - 90
AS204428 - 28
AS396982 - 26
Top Accounts:
hello - 90
Administr - 32
Domain - 18
Top ISPs:
DigitalOcean, LLC - 90
SS-Net - 28
Google LLC - 26
Top Clients:
Unknown - 196
Top Software:
Unknown - 196
Top Keyboards:
Unknown - 196
Top IP Classification:
hosting - 118
Unknown - 66
mobile - 12
Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key
2026-04-04 RDP #Honeypot IOCs - 98 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec
Top IPs:
143.198.111.35 - 37
80.94.95.221 - 13
206.189.89.171 - 8
Top ASNs:
AS14061 - 45
AS204428 - 14
AS396982 - 13
Top Accounts:
hello - 45
Administr - 16
Domain - 9
Top ISPs:
DigitalOcean, LLC - 45
SS-Net - 14
Google LLC - 13
Top Clients:
Unknown - 98
Top Software:
Unknown - 98
Top Keyboards:
Unknown - 98
Top IP Classification:
hosting - 59
Unknown - 33
mobile - 6
Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key
2026-04-03 RDP #Honeypot IOCs - 1212 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec
Top IPs:
143.198.111.35 - 990
80.94.95.221 - 63
80.66.83.75 - 27
Top ASNs:
AS14061 - 993
AS204428 - 63
AS396982 - 36
Top Accounts:
hello - 990
Administr - 78
test - 39
Top ISPs:
DigitalOcean, LLC - 993
SS-Net - 63
Google LLC - 36
Top Clients:
Unknown - 1212
Top Software:
Unknown - 1212
Top Keyboards:
Unknown - 1212
Top IP Classification:
hosting - 1035
Unknown - 138
mobile - 39
Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key
2026-04-03 RDP #Honeypot IOCs - 808 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec
Top IPs:
143.198.111.35 - 660
80.94.95.221 - 42
80.66.83.75 - 18
Top ASNs:
AS14061 - 662
AS204428 - 42
AS396982 - 24
Top Accounts:
hello - 660
Administr - 52
test - 26
Top ISPs:
DigitalOcean, LLC - 662
SS-Net - 42
Google LLC - 24
Top Clients:
Unknown - 808
Top Software:
Unknown - 808
Top Keyboards:
Unknown - 808
Top IP Classification:
hosting - 690
Unknown - 92
mobile - 26
Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key
2026-04-03 RDP #Honeypot IOCs - 404 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec
Top IPs:
143.198.111.35 - 330
80.94.95.221 - 21
80.66.83.75 - 9
Top ASNs:
AS14061 - 331
AS204428 - 21
AS396982 - 12
Top Accounts:
hello - 330
Administr - 26
test - 13
Top ISPs:
DigitalOcean, LLC - 331
SS-Net - 21
Google LLC - 12
Top Clients:
Unknown - 404
Top Software:
Unknown - 404
Top Keyboards:
Unknown - 404
Top IP Classification:
hosting - 345
Unknown - 46
mobile - 13
Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key
Greg Vedders
RDP Snitch