HoneyLabs
Open-source honeypot telemetry, query-ready.

HoneyLabs operates internet-facing honeypot sensors that collect adversary scans, fingerprints, and probe payloads, storing 90 days of data. Users can look up any public IPv4 address to see its recent scanning activity via a free browser/curl endpoint, an MCP interface for AI agents, or a JSON-RPC HTTP API. A free tier allows 500 credits per day with no account required for basic lookups, while a paid Pro tier offers 50,000 credits per day.
Honeypot sensors exposed to the internet log all inbound probes and payloads, which are indexed and made queryable via free per-IP lookups, an MCP tool interface, or a JSON-RPC API.
security researchers, developers, and AI agents needing adversary intelligence and IP enrichment data
Background.
- Status
- launched
- Business model
- freemium
Similar projects.
Editorial take on the space this project sits in — momentum signals, adjacent moves, our call on whether the wedge is real. Get pinged when we publish a new read or when the landscape shifts.
Have a take on this space?
Tell us what you’d build differently, where you think the incumbents miss, or what we’ve gotten wrong about this project. Comments + reactions are coming soon.