HoneyLabs

Public honeypot threat-intel feed — paste an IP for a 90-day report of ports, CVE probes, payloads, and fingerprints

Servicemvpfreeglobal

A public threat-intelligence feed derived from a fleet of internet-facing honeypots that returns a 90-day report for any public IPv4, listing ASN, country, ports contacted, matched CVE probes, recent payloads, JA4 and HASSH fingerprints, and scanner classification. It helps SOC analysts, threat researchers, and security engineers determine whether an IP has been scanning or attacking and enrich IP reputation; reports are available as HTML or JSON, rate-limited and accessible via a streamable HTTP MCP server.

Website

Full match profile

Behind the summary, Matchbox keeps a richer profile of HoneyLabs - the signals our matcher actually reads to decide when to surface it. It stays private; claim the listing to see and control it.

Problem & pain-point mapping
Who we surface it to (audience fit)
What it's a strong alternative to
Trust & credibility signals

Claim HoneyLabs to unlock →

Try Matchbox with your own problem

Describe what is not working - we’ll show you whether HoneyLabs (or something else) actually fits.

Try a problem