honeypot-tarpits
OfficialDetect and slow automated scans with fake honeypots.
AuthorGoldenWing-360
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill provides methods for detecting malicious scanning and probing activities without requiring complex security infrastructure.
Core Features & Use Cases
- Fake admin paths: Serve decoy admin URLs that log attacker activity.
- Decoy
.envand config files: Detect probes attempting to find sensitive configurations. - Canary tokens: Place embedded credentials or URLs that fire alerts when used or accessed.
- Fake API keys in JS: Embedding fake secrets in web bundles to identify scraping.
- Tarpits: Respond with delays to sluggishly impede scanners.
- Use Case: Deploy honeypots on a small website to identify automated attack attempts and reduce false positives in security monitoring.
Quick Start
Add fake admin paths to your web server configuration and set up logging and alerting to monitor for hits.
Dependency Matrix
Required Modules
None requiredComponents
referencesassets
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: honeypot-tarpits Download link: https://github.com/GoldenWing-360/claude-security-skills/archive/main.zip#honeypot-tarpits Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.