Awesome Open Source
Awesome Open Source


version badge github badge lgtm badge codefactor badge codecov badge bandit badge requires badge

The number of client-side attacks has grown significantly in the past few years shifting focus on poorly protected vulnerable clients. Just as the most known honeypot technologies enable research into server-side attacks, honeyclients allow the study of client-side attacks.

A complement to honeypots, a honeyclient is a tool designed to mimic the behavior of a user-driven network client application, such as a web browser, and be exploited by an attacker's content.

Thug is a Python low-interaction honeyclient aimed at mimicking the behavior of a web browser in order to detect and emulate malicious contents.


docs badge

Documentation about Thug installation and usage can be found at


donate badge

Thug is open source and we welcome contributions in all forms!

Thug is free to use for any purpose (even commercial ones). If you use and appreciate Thug, please consider supporting the project with a donation using Paypal.


To run the full test suite using tox, run the command:


Since tox builds and installs dependencies from scratch, using pytest for faster testing is recommended:

pytest --cov thug

License information

Copyright (C) 2011-2022 Angelo Dell'Aera <[email protected]>

License: GNU General Public License, version 2

Related Awesome Lists
Top Programming Languages
Top Projects

Get A Weekly Email With Trending Projects For These Topics
No Spam. Unsubscribe easily at any time.
Python (837,392
Attack (7,174
Badge (4,845
Interaction (4,618
Web Browser (2,259
Security Tools (2,019
Tox (1,336
Shellcode (891
Honeypot (862
Virustotal (534
Low Interaction (7