HoneyLabs

honeylabs.net

Open-source honeypot telemetry, query-ready.

Visit
HoneyLabs screenshot
/ About /

HoneyLabs operates internet-facing honeypot sensors that collect adversary scans, fingerprints, and probe payloads, storing 90 days of data. Users can look up any public IPv4 address to see its recent scanning activity via a free browser/curl endpoint, an MCP interface for AI agents, or a JSON-RPC HTTP API. A free tier allows 500 credits per day with no account required for basic lookups, while a paid Pro tier offers 50,000 credits per day.

/ How it works /

Honeypot sensors exposed to the internet log all inbound probes and payloads, which are indexed and made queryable via free per-IP lookups, an MCP tool interface, or a JSON-RPC API.

/ Who it's for /

security researchers, developers, and AI agents needing adversary intelligence and IP enrichment data

/ More info /

Background.

Status
launched
Business model
freemium
/ Discovered patterns /

Similar projects.

Coming soonSpektrail’s read on Security

Editorial take on the space this project sits in — momentum signals, adjacent moves, our call on whether the wedge is real. Get pinged when we publish a new read or when the landscape shifts.

Coming soon

Have a take on this space?

Tell us what you’d build differently, where you think the incumbents miss, or what we’ve gotten wrong about this project. Comments + reactions are coming soon.