Esta página se muestra en inglés. Una traducción al español está en curso.
MCP ConfigsMay 14, 2026·2 min de lectura

Beelzebub — LLM Deception Runtime (MCP Honeypot)

Beelzebub deploys LLM-powered decoys across SSH/HTTP/TCP/TELNET/MCP; verified 1,989★ and ships Docker Compose, Helm, and a structured CLI.

MCP Hub
MCP Hub · Community
Listo para agents

Este activo puede ser leído e instalado directamente por agents

TokRepo expone un comando CLI universal, contrato de instalación, metadata JSON, plan según adaptador y contenido raw para que los agents evalúen compatibilidad, riesgo y próximos pasos.

Native · 94/100Política: permitir
Superficie agent
Cualquier agent MCP/CLI
Tipo
Mcp
Instalación
Docker
Confianza
Confianza: Established
Entrada
docker compose up -d
Comando CLI universal
npx tokrepo install 1c7efabc-889b-530c-93fd-62bbe5736356
contrato de instalaciónJSON de metadataplan adaptadorcontenido raw
Introducción

Beelzebub deploys LLM-powered decoys across SSH/HTTP/TCP/TELNET/MCP; verified 1,989★ and ships Docker Compose, Helm, and a structured CLI.

Best for: Security teams building realistic decoys and testing prompt-injection / tool-call attack surfaces

Works with: Docker Compose, Go build, or Kubernetes via Helm; optional OpenAI/Ollama backends

Setup time: 10-25 minutes

Key facts (verified)

  • GitHub: 1989 stars · 190 forks · pushed 2026-05-13.
  • License: GPL-3.0 · owner avatar + repo URL verified via GitHub API.
  • README-backed entrypoint: docker compose up -d.

Main

  • Start with Docker Compose to validate the runtime loop, then switch to Helm once you know which deception services you want in production.

  • Treat YAML configuration as versioned security content: iterate decoy behaviors and replay incidents with comparable configs.

  • Use the CLI to validate config before rollouts, and test prompt-injection payloads only in a controlled lab.

Source-backed notes

  • README describes multi-protocol decoy services including SSH, HTTP, TCP, TELNET, and MCP.
  • README provides launch paths: Docker Compose, local Go build (./beelzebub run), and Kubernetes via Helm.
  • README documents a structured CLI and flags for config paths and memory limits.

FAQ

  • Is this only a honeypot?: No — README positions it as an active deception runtime with LLM-backed interactions.
  • Can I start without Kubernetes?: Yes — Docker Compose is the quickest validation; Helm is for scaling and operations.
  • What’s a safe first test?: Run a minimal config and test injection payloads in a controlled environment before exposure.
🙏

Fuente y agradecimientos

Source: https://github.com/beelzebub-labs/beelzebub > License: GPL-3.0 > GitHub stars: 1989 · forks: 190

Discusión

Inicia sesión para unirte a la discusión.
Aún no hay comentarios. Sé el primero en compartir tus ideas.

Activos relacionados

LLM Wiki — Local Research Wiki via MCP

LLM Wiki turns a local folder into a Markdown wiki + SQLite index, then lets Claude connect over MCP to read sources and keep pages/citations updated.

MCP Configs
AI Open Source

codedb — MCP-Native Code Intelligence Server

Zig-powered code intelligence server with 16 MCP tools + HTTP/CLI for indexing, search, and dep graphs; verified 797★, pushed 2026-05-12.

MCP Configs
MCP Hub

TUUI — Desktop MCP Client for Local Toolchains

TUUI is a desktop MCP client for orchestrating tools and cross-vendor LLM APIs; verified 1147★ and pushed 2026-05-14.

MCP Configs
MCP Hub

slack-mcp-server — Slack MCP with Stealth/OAuth

Slack MCP server for channels, DMs, search, and smart history fetch via stdio/SSE/HTTP transports; verified 1594★, pushed 2026-04-30.

MCP Configs
MCP Hub
Inicio🔍Buscar👤Yo