Kippo is a Python based honeypot application that saves all the malware an attacker tries to dump onto a fake filesystem. It provides functionality for a fake login screen, bogus password and user generation, and complete logging of what the attacker tries to run on the system. Its dependencies are a little out of date, so the installation of the program was not easy to configure. The end result is worth it. We are running it on a different port than 22 to try to catch craftier intruders.