GSoC 2025

content/gsoc/_index.md

@@ -2,7 +2,7 @@
 title: "Google Summer of Code"
 ---
 
-The Honeynet Project has participated 15 times in the Google Summer of Code. Throughout the years, it has been an important and successful event for the organization. Many former GSoC students have become successful contributors, GSoC mentors and admins themselves. Every year Google Summer of Code provides a breeze of fresh air into the Honeynet Project, motivating students, mentors and organization members alike.
+The Honeynet Project has participated 16 times in the Google Summer of Code. Throughout the years, it has been an important and successful event for the organization. Many former GSoC students have become successful contributors, GSoC mentors and admins themselves. Every year Google Summer of Code provides a breeze of fresh air into the Honeynet Project, motivating students, mentors and organization members alike.
 
 Every year we are trying to gather as many successful students as possible at our in-person workshop to provide an opportunity for the students to present their work, meet their mentors and many members of the organization.
 
@@ -16,4 +16,4 @@ We have compiled a list of [frequently asked question]({{< ref "gsoc/faq.md" >}}
 
 ### Contacting Us
 
-If you have any questions, please drop by in our [Discord](https://discord.gg/68B8Ru5fSU) and say "hi" (note that our members do have to sleep and come from timezones all over the world, so please be patient and wait a few hours if you have a specific question).
+If you have any questions, please drop by in our [Discord](https://discord.gg/68B8Ru5fSU) and say "hi" (note that our members do have to sleep and come from timezones all over the world, so please be patient and wait a few hours if you have a specific question).

content/gsoc/faq.md

@@ -3,10 +3,10 @@ title: "Frequently Asked Questions"
 ---
 
 - **Where can I find the list of project ideas for this year?**  
-Our project ideas can be found [here](https://www.honeynet.org/gsoc/gsoc-2024/google-summer-of-code-2024-project-ideas/)
+Our project ideas can be found [here](https://www.honeynet.org/gsoc/gsoc-2025/google-summer-of-code-2025-project-ideas/)
 
 - **How do I get started?**  
-Read through the list of [ideas](https://www.honeynet.org/gsoc/gsoc-2024/google-summer-of-code-2024-project-ideas/) and identify the project ideas you find interesting. Play around with our tools! Install the project, use it. Have a look at the issue tracker.
+Read through the list of [ideas](https://www.honeynet.org/gsoc/gsoc-2025/google-summer-of-code-2025-project-ideas/) and identify the project ideas you find interesting. Play around with our tools! Install the project, use it. Have a look at the issue tracker.
 
 - **How do I start contributing to a project?**  
 Often projects have issues tagged which are considered good starting points. Updating documentation is often a low barrier start and gets you familiar with the process of contributing to an open source project.

content/gsoc/gsoc-2025/_index.md

@@ -0,0 +1,69 @@
+---
+title: "GSoC 2025"
+date: "2024-12-23"
+---
+
+
+* * *
+
+### We are applying again as a mentor organization for GSoC in 2025
+
+This will be the 16th time that Honeynet is participating in the Google Summer of Code program to accelerate the creation of information- and cyber security related tools that are free and open source software. Thank you to all mentors who submitted their project ideas and will volunteer as mentors throughout the summer.
+
+On this page you will learn more about GSoC 2025 and our efforts on developing and improving our projects.
+
+### Project Ideas
+
+- [GSoC 2025 Project Ideas](google-summer-of-code-2025-project-ideas)
+
+Often students ask us what kind of projects we are likely to be offering in a coming year. If you want to get an idea of the kind of projects ideas we proposed and the accepted projects we ran during GSoC 2009-2024, you can view these here:
+
+- [GSoC 2024 Project Ideas](/gsoc/gsoc-2024/google-summer-of-code-2024-project-ideas/)
+- [GSoC 2023 Project Ideas](/gsoc/gsoc-2023/google-summer-of-code-2023-project-ideas/)
+- [GSoC 2022 Project Ideas](/gsoc/gsoc-2022/google-summer-of-code-2022-project-ideas/)
+- [GSoC 2021 Project Ideas](/gsoc/gsoc-2021/google-summer-of-code-2021-project-ideas/)  
+- [GSoC 2020 Project Ideas](/gsoc/gsoc-2020/google-summer-of-code-2020-project-ideas/)  
+- [GSoC 2018 Project Ideas](/gsoc/gsoc-2018/google-summer-of-code-2018-project-ideas/)
+- [GSoC 2017 Project Ideas](/gsoc/gsoc-2017/google-summer-of-code-2017-project-ideas/)
+- [GSoC 2016 Project Ideas](/gsoc/gsoc-2016/google-summer-of-code-2016-project-ideas/)
+- [GSoC 2015 Project Ideas](/gsoc/gsoc-2015/google-summer-of-code-2015-project-ideas/)
+- [GSoC 2014 Project Ideas](/gsoc/gsoc-2014/google-summer-of-code-2014-project-ideas/)  
+- [GSoC 2013 Project Ideas](/gsoc/gsoc-2013/google-summer-of-code-2013-project-ideas/)
+- [GSoC 2012 Project Ideas](/gsoc/gsoc-2012/google-summer-of-code-2012-project-ideas/)
+- [GSoC 2011 Project Ideas](/gsoc/gsoc-2011/google-summer-of-code-2011-project-ideas/)
+- [GSoC 2010 Project Ideas](/gsoc/gsoc-2010/google-summer-of-code-2010-project-ideas/)
+- [GSoC 2009 Project Ideas](/gsoc/gsoc-2009/google-summer-of-code-2009-project-ideas/)
+
+### Contacting Us
+
+If you have any questions, please drop by in our [Discord](https://discord.gg/68B8Ru5fSU) and say "hi" (note that our members do have to sleep and come from timezones all over the world, so please be patient and wait a few hours if you have a specific question).
+
+### Organizational Administrators
+
+Our GSoC 2025 organizational administrators this year are:
+
+- Lukas Rist (lead)
+- Maximilian Hils
+- Emmanouil Vasilomano
+
+### Why get involved with the Honeynet Project?
+
+1. We are an enthusiastic and passionate group of volunteers dedicated to the ideals of open source and sharing our security research and development knowledge with the community
+2. For over ten years, we have pioneered research in the field of honeypots, releasing many freely available [tools](/projects), [challenges](/challenges) and [Know Your Enemy whitepapers](/papers) that are often considered groundbreaking when first published
+3. We wrote the book on the topic, and regularly present on our R&D activities at conferences all over the world
+4. We have active volunteer member chapters in many countries and from many different backgrounds, with a wide variety of skills and experience they are happy to share
+5. We have always been committed to the concepts of open source software and freely share everything we do, including each chapter publishing regular status reports on their recent activity
+6. We maintain active public and private communities of developers and researchers who use and contribute to our tools each day
+7. We provide our members and the community with the public and private infrastructure necessary to support distributed collaborative remote working, such as IRC channels, mailing lists, subversion repositories, Trac instances for ticket management and wikis, content management systems, blogs, live deployments with real end users for testing and regular feedback, etc.
+8. We are hands on, supportive and keen to involve more talented people in projects we are really passionate about
+9. We have a strong track history of mentoring new members and successfully delivering open source projects, tools and research that demonstrably benefit the community
+10. The vast majority of our GSoC projects were delivered successfully and our students were happy, with a number of the tools created going on to become widely used within the security community
+11. Students from GSoC have gone on to become active members of the honeynet community, including proposing project ideas for future GSoCs or offering to be project mentors and organization administrators (so we can't be too unpleasant a bunch to get involved with!)
+12. We have ex-GSoC students actively serving on our Board of Directors and in Executive Officer positions, so GSoC has definitely proven to be a great career path for students wanting to get more involved in open source and information security R&D.
+13. Honeypots and honeynet technology, research and tools have filtered down benefits to many areas of IT, web development, operational service management, Internet education and computer security research
+
+### Other ways to get involved
+
+[GSoC](//summerofcode.withgoogle.com/) is not the only way you can become involved in the with honeynet technologies and open source software - check out our current series of [forensic challenges](/challenges). Or learn more about the practical, real world application of honeynet technology in our popular series of ["Know Your Enemy"](/papers) whitepapers.
+
+Feel free to contact us at on [Discord](https://discord.gg/68B8Ru5fSU) or at [[email protected]](mailto:[email protected]) at any time.

content/gsoc/gsoc-2025/application.md

@@ -0,0 +1,32 @@
+---
+title: "GSoC 2025 application template"
+date: "2024-12-23"
+---
+
+These are the questions we require potential [Google Summer of Code](https://summerofcode.withgoogle.com/) participants to complete. **Please use [Google's official interface](https://summerofcode.withgoogle.com/) to submit both drafts for feedback and your final proposal.** You can always update your submission up until the deadline. Submission received by email, Discord, or through direct contact with a mentor will not count.
+
+Your Name:  
+Discord Username:  
+Email Address:  
+Nationality:  
+Primary Spoken Language:
+
+1. Top project choice (can be one of our project ideas or your own)
+2. Are you willing and able to work on other projects instead?
+3. Please describe you preferred coding languages and experience.
+4. Please describe any Windows, Unix or Mac OS X development experience relevant to your chosen project. If your project does not require OS-specific expertise, feel free to leave it empty.
+5. Please describe any previous usage with Honeynet Project tools or honeypots in general.
+6. Please describe any previous Honeynet Project or honeypot related development experience, including details of any patches, code or ideas you may have previously submitted.
+7. Please describe any previous open source development experience, including projects you have worked on.
+8. What school do you attend and what is your specialty/major at the school?
+9. How many years have you attended there?
+10. What city/country will you be spending this summer in?
+11. How much time do you expect to have for this project?
+12. Please list all jobs, summer classes, vacations and/or other commitments that you'll need to work around.
+13. Have you participated in any previous Summer of Code projects? If so please describe your projects and experience, including what you liked or didn't like about the experience
+14. Have you applied for (or intend to apply for) any other Google Summer of Code 2022 projects? If so, which ones?
+15. If you have a URL for your resume/CV, please list it here.
+16. If you wish to list any personal/blog URLs, do so here.
+17. Please describe your proposed project in detail, including deliverables and expected timeline with milestones (this is the long answer, so spend most time here!).
+18. Why are you well suited to perform this project and why are you interested in it?
+19. Have any of our members met you face to face, such as at one of our recent public events? If so, please list who/where.

content/gsoc/gsoc-2025/ideas.md

@@ -0,0 +1,34 @@
+---
+title: "Google Summer of Code 2025 Project Ideas"
+date: "2024-12-23"
+url: "/gsoc/gsoc-2025/google-summer-of-code-2025-project-ideas"
+type: "ideas"
+---
+### Getting Started
+
+This page contains a list of potential project ideas that we are keen to develop during GSoC 2025. If you would like to apply as a GSoC student, please follow these two steps to get started:
+
+1. Read through this page and identify the project ideas you find interesting. Play around with our tools!
+2. Join us on Discord and talk to your potential mentors on [Discord](https://discord.gg/68B8Ru5fSU)
+
+If there are any questions, please don’t hesitate and get in touch! 🙂
+
+### GSoC and The Honeynet Project
+
+During the previous years of GSoC, the Honeynet Project's students have created a wide range of very successful open source security projects, many of which have gone on to become the industry standard open source tools in their respective fields.
+
+We are also always interested in hearing any ideas for additional relevant computer security and honeynet-related R&D projects (although remember that to qualify for receiving GSoC funding from Google your project deliverables need to fit in to [GSoC's project timescales](//developers.google.com/open-source/gsoc/faq)!). If you have a suitable and interesting project, we will always try and find the right resources to mentor it and support you.
+
+Please note - even if you aren't an [eligible GSoC participant](//developers.google.com/open-source/gsoc/faq), we are also always looking for general volunteers who are enthusiastic and interested in getting involved in honeynet R&D.
+
+Each sponsored GSoC 2025 project will have one or more mentors available to provide a guaranteed contact point to students, plus one or more technical advisors to help applicants with the technical direction and delivery of the project (often the original author of a tool or its current maintainer, and usually someone recognized as an international expert in their particular field). Our Google Summer of Code organizational administrators will also be available to all sponsored GSoC students for general advice and logistical support. We'll also provide hosting for project infrastructure, if required.
+
+For all questions about the Honeynet Project, the GSoC program or our projects, please contact us on [Discord](https://discord.gg/68B8Ru5fSU) (preferred)** or email us at [[email protected]](mailto:[email protected]).
+
+**Application template**
+
+If you are considering applying to participate with us in GSoC 2025 please find our [application template here]({{< ref "application.md" >}}). Use it when you are preparing your application on the official GSoC site and don't hesitate to ask your mentors for feedback before submitting!
+
+* * *
+
+# GSoC 2025 Project Ideas Overview

content/gsoc/gsoc-2025/ideas/Glutton.md

@@ -0,0 +1,20 @@
+---
+title: "Implementing Protocol Parsers for Glutton Using Spicy"
+date: "2025-01-07"
+project_url: "https://github.com/mushorg/glutton"
+hours: "175 or 350 hours"
+mentor: "Muhammad Bilal Arif"
+project_type: "Improving an existing tool"
+---
+
+
+Glutton is a powerful **Generic Low Interaction Honeypot** designed to emulate various network services and capture malicious activity for security analysis. Its strength lies in its generic nature, supporting a wide range of network protocols.
+
+The goal of this project is to:
+
+* Develop a Go wrapper to integrate [Spicy](https://github.com/zeek/spicy) with Glutton.
+* Implement protocol parsers for HTTP and DNS as initial examples.
+* Provide documentation to explain the implementation.
+
+The primary required skill is proficiency in Go programming and familiarity with Linux networking.  
+An understanding of network monitoring tools like Spicy or similar is a nice-to-have skill.

content/gsoc/gsoc-2025/ideas/artemis.md

@@ -0,0 +1,19 @@
+---
+title: "Extending the Artemis scanner"
+date: "2024-12-23"
+project_url: "https://github.com/CERT-Polska/Artemis"
+hours: "175 or 350 hours"
+mentor: "Krzysztof Zając"
+project_type: "Improving an existing tool"
+---
+
+Artemis is a modular vulnerability scanner that checks various aspects of website security and builds easy-to-read messages to send to organizations to get the vulnerabilities fixed.
+Multiple national-level CSIRTs use it to improve the security of their constituencies.
+
+The goal of this project is to:
+
+* research what existing tools to add to the Artemis scanning pipeline,
+* extend Artemis with modules detecting different types of vulnerabilities,
+* improve Artemis in other aspects: performance, UI, etc.
+
+The primary required skill is Python programming and a familiarity with the Linux environment. Skill with web security topics is also desired.

content/gsoc/gsoc-2025/ideas/drakvuf-sandbox.md

@@ -0,0 +1,20 @@
+---
+title: "Extending the DRAKVUF Sandbox analytic pipeline"
+date: "2024-12-23"
+project_url: "https://github.com/CERT-Polska/drakvuf-sandbox/"
+hours: "175 or 350 hours"
+mentor: "Jarosław Jedynak"
+project_type: "Improving an existing tool"
+---
+
+DRAKVUF Sandbox is an open source automated black-box malware analysis system using virtual machine introspection (VMI) with DRAKVUF (https://drakvuf.com) engine under the hood.
+
+As DRAKVUF Sandbox monitors behavior of malware samples it collects a lot of detailed data, like API calls, syscalls, network traffic, etc., however despite this vast amount of information, most of it is not exposed directly to the first-line operators and analysts using the sandbox.
+
+The goal of this project is to:
+
+* extend DRAKVUF Sandbox with useful heuristics for detecting the most common malware types and behaviours
+* detect typical malicious patterns like code injection, and create a behaviour graph that can be easily grokked by the analysts (currently a subset of this feature is provided by a thirdparty project proc2dot)
+* improve the integration of DRAKVUF Sandbox with the rest of the analytic pipeline. This will make it possible to display the analysis results more directly in other tools
+
+Primary required skill is Python programming and a familiarity with Linux environment. Knowledge of how OS works under the hood and other low-level topics is also very desired. Skill with malware analysis or IT security topics is nice to have, but absolutely not necessary - we will help with any malware-specific design issues.

content/gsoc/gsoc-2025/ideas/drakvuf.md

@@ -0,0 +1,14 @@
+---
+title: "DRAKVUF Rust & Python bindings"
+date: "2024-12-23"
+project_url: "https://github.com/tklengyel/drakvuf"
+hours: "90, 175 or 350 hours"
+mentor: "Tamas Lengyel"
+project_type: "Improving an existing tool"
+---
+
+DRAKVUF is a hypervisor-based malware analysis system written in mostly C & C++. It is designed to be high performant and stealthy, so malware won't be able to detect the analysis tools.
+
+This project will focus on creating automatic Rust & Python binding generators for the core DRAKVUF libraries (libdrakvuf & libinjector). The goal is to automate the binding generation process, so future changes to the core library APIs will get automatically adjusted in the respective language bindings. Test-cases will need to be created and added to the CI to ensure the bindings remain operational.
+
+The ideal candidate for this project should be at least on an intermediate level in either C, C++, Python or Rust, and will be willing to learn the others on the go.

content/gsoc/gsoc-2025/ideas/honeyscanner.md

@@ -0,0 +1,14 @@
+---
+title: "Improving the functionality of Honeyscanner: a honeypot vulnerability analyzer"
+date: "2024-12-23"
+project_url: "https://github.com/honeynet/honeyscanner"
+hours: "90, 175 or 350 hours"
+mentor: "Emmanouil Vasilomanolakis, Ricardo Yaben and Shreyas Srinivasa"
+project_type: "Improving an existing tool"
+---
+
+Honeyscanner is a vulnerability analyzer for honeypots designed to automatically attack a given honeypot, in order to determine if the honeypot is vulnerable to specific types of cyber attacks.
+
+Honeyscanner uses a variety of attacks, ranging from exploiting vulnerable software libraries to DoS, and fuzzing attacks. The analyzer then provides an evaluation report to the honeypot administrator, offering advice on how to enhance the security of the honeypot. Targeted toward security enthusiasts, open-source communities, and companies, Honeyscanner provides a much needed safety check for various honeypots.
+
+This project aims at improving the code base, add new attacks to the Honeyscanner arsenal, as well as add support for more honeypots.