Available Dataset

• Dataset A
  • 4,000 executable files captured by IoTPOT between 2016/10/02 and 2017/10/02
• Dataset B
  • 1,276 executable files captured by X-Pot between 2020/3/15 and 2020/5/20
  • 284 executable files captured by X-Pot between 2020/6/22 and 2020/7/21
• Dataset C
  • 86,496 executable files captured by IoTPOT between 2018/09/14 and 2020/05/20
• Dataset D
  • 124,799 executable files captured by IoTPOT between 2020/05/21 and 2022/12/31
  • 17,290 executable files captured by X-Pot between 2020/11/21 and 2022/12/31
• Dataset E
  • 26,325 executable files captured by IoTPOT between 2023/01/01 and 2023/12/31
  • 5,299 executable files captured by X-Pot between 2023/01/01 and 2023/12/31
• (NEW!!)Dataset F
  • 15,967 executable files captured by IoTPOT between 2024/01/01 and 2024/12/31
  • 4,820 executable files captured by X-Pot between 2024/01/01 and 2024/12/31

The details of our honeypots are described in the following papers.

• Seiya Kato, Rui Tanabe, Katsunari Yoshioka, Tsutomu Matsumoto, "Adaptive Observation of Emerging Cyber Attacks targeting Various IoT Devices," IFIP/IEEE International Symposium on Integrated Network Management (IM), 2021.
• Rui Tanabe, Tatsuya Tamai, Akira Fujita, Ryoichi Isawa, Katsunari Yoshioka, Tsutomu Matsumoto, Carlos Ganan and Michel Van Eeten, "Disposable Botnets: Examining the Anatomy of IoT Botnet Infrastructure," Proc. International Conference on Availability, Reliability, and Security (ARES2020), 2020.
• Yin Minn Pa Pa, Shogo Suzuki, Katsunari Yoshioka, and Tsutomu Matsumoto, Takahiro Kasama, Christian Rossow, "IoTPOT: Analysing the Rise of IoT Compromises," 9th USENIX Workshop on Offensive Technologies (USENIX WOOT 2015), 2015.

2,979,218 malware download URLs observed by IoTPOT between 2018-09-14 and 2019-12-31