HoneyLabs
honeylabs.netOpen-source honeypot telemetry, query-ready.
Securityhoneypotthreat-intelligenceip-lookupopen-sourcemcpjson-rpcnetwork-security
About
HoneyLabs operates internet-facing honeypot sensors that collect adversary scans, fingerprints, and probe payloads, storing 90 days of data. Users can look up any public IPv4 address to see its recent scanning activity via a free browser/curl endpoint, an MCP interface for AI agents, or a JSON-RPC HTTP API. A free tier allows 500 credits per day with no account required for basic lookups, while a paid Pro tier offers 50,000 credits per day.
Problem
Security teams lack an easy way to look up what malicious scanning activity a given IP address has been involved in.
For
security researchers, developers, and AI agents needing adversary intelligence and IP enrichment data
How it works
Honeypot sensors exposed to the internet log all inbound probes and payloads, which are indexed and made queryable via free per-IP lookups, an MCP tool interface, or a JSON-RPC API.
Business model
freemium
Status
launched