MCP ConfigsMay 14, 2026·2 min read

Beelzebub — LLM Deception Runtime (MCP Honeypot)

Beelzebub deploys LLM-powered decoys across SSH/HTTP/TCP/TELNET/MCP; verified 1,989★ and ships Docker Compose, Helm, and a structured CLI.

MCP Hub
MCP Hub · Community
Agent ready

This asset can be read and installed directly by agents

TokRepo exposes a universal CLI command, install contract, metadata JSON, adapter-aware plan, and raw content links so agents can judge fit, risk, and next actions.

Native · 94/100Policy: allow
Agent surface
Any MCP/CLI agent
Kind
Mcp
Install
Docker
Trust
Trust: Established
Entrypoint
docker compose up -d
Universal CLI install command
npx tokrepo install 1c7efabc-889b-530c-93fd-62bbe5736356
install contractmetadata JSONadapter planraw content
Intro

Beelzebub deploys LLM-powered decoys across SSH/HTTP/TCP/TELNET/MCP; verified 1,989★ and ships Docker Compose, Helm, and a structured CLI.

Best for: Security teams building realistic decoys and testing prompt-injection / tool-call attack surfaces

Works with: Docker Compose, Go build, or Kubernetes via Helm; optional OpenAI/Ollama backends

Setup time: 10-25 minutes

Key facts (verified)

  • GitHub: 1989 stars · 190 forks · pushed 2026-05-13.
  • License: GPL-3.0 · owner avatar + repo URL verified via GitHub API.
  • README-backed entrypoint: docker compose up -d.

Main

  • Start with Docker Compose to validate the runtime loop, then switch to Helm once you know which deception services you want in production.

  • Treat YAML configuration as versioned security content: iterate decoy behaviors and replay incidents with comparable configs.

  • Use the CLI to validate config before rollouts, and test prompt-injection payloads only in a controlled lab.

Source-backed notes

  • README describes multi-protocol decoy services including SSH, HTTP, TCP, TELNET, and MCP.
  • README provides launch paths: Docker Compose, local Go build (./beelzebub run), and Kubernetes via Helm.
  • README documents a structured CLI and flags for config paths and memory limits.

FAQ

  • Is this only a honeypot?: No — README positions it as an active deception runtime with LLM-backed interactions.
  • Can I start without Kubernetes?: Yes — Docker Compose is the quickest validation; Helm is for scaling and operations.
  • What’s a safe first test?: Run a minimal config and test injection payloads in a controlled environment before exposure.
🙏

Source & Thanks

Source: https://github.com/beelzebub-labs/beelzebub > License: GPL-3.0 > GitHub stars: 1989 · forks: 190

Discussion

Sign in to join the discussion.
No comments yet. Be the first to share your thoughts.

Related Assets

LLM Wiki — Local Research Wiki via MCP

LLM Wiki turns a local folder into a Markdown wiki + SQLite index, then lets Claude connect over MCP to read sources and keep pages/citations updated.

MCP Configs
AI Open Source

codedb — MCP-Native Code Intelligence Server

Zig-powered code intelligence server with 16 MCP tools + HTTP/CLI for indexing, search, and dep graphs; verified 797★, pushed 2026-05-12.

MCP Configs
MCP Hub

TUUI — Desktop MCP Client for Local Toolchains

TUUI is a desktop MCP client for orchestrating tools and cross-vendor LLM APIs; verified 1147★ and pushed 2026-05-14.

MCP Configs
MCP Hub

slack-mcp-server — Slack MCP with Stealth/OAuth

Slack MCP server for channels, DMs, search, and smart history fetch via stdio/SSE/HTTP transports; verified 1594★, pushed 2026-04-30.

MCP Configs
MCP Hub
Home🔍Search👤Me