Available on crate feature
react-honeypot only.Expand description
§React2Shell Honeypot — Attack Vector Detection & Attacker Intelligence
A realistic React Server Components (RSC) honeypot that detects 45+ attack vectors while silently collecting comprehensive attacker intelligence.
§Capabilities
- Attack Detection — SQLi, XSS, SSRF, SSTI, LFI/RFI, command injection, NoSQLi, XXE, deserialization, JWT attacks, GraphQL injection, CRLF, path traversal, prototype pollution, and 30+ more categories
- Attacker Profiling — IP, GeoIP, User-Agent, OS/browser fingerprint, request cadence, technique enumeration, session correlation
- Realistic RSC Simulation — Fake Server Action endpoints, plausible error messages, timing jitter, progressive response sizes
- Structured Intelligence — JSON-serializable event logs, severity scoring, risk classification, MITRE ATT&CK mapping
Structs§
- Attack
Event - An individual detected attack event.
- Attacker
Profile - Accumulated profile of an attacker across multiple requests.
- Browser
Fingerprint - Parsed browser and OS information from User-Agent.
- Detection
Result - Result of analyzing a single request.
- Honeypot
Config - Configuration for the honeypot engine.
- Honeypot
Engine - The core honeypot detection and intelligence engine.
- Honeypot
State - The complete honeypot state.
- RawRequest
- Raw request input for analysis.
Enums§
- Severity
- Severity level for a detected attack.