honeypot-investigation
CommunityHoneypot security analysis at speed.
Data & Analytics#honeypot#geolocation#threat-hunting#threat-intelligence#security-analysis#KQL#incident-reporting
AuthorSCStelz
Version1.0.0
Installs0
System Documentation
What problem does it solve?
Honeypot environments are decoys that attract attackers and provide early visibility into attacker techniques and methods.
Core Features & Use Cases
- Automated honeypot analysis: aggregates failed connections, inbound activity, and service usage to reveal attacker behavior.
- Threat intelligence correlation: enriches attacker IPs with feeds, reputation, and threat context to prioritize responses.
- Executive reporting: generates structured markdown reports suitable for leadership and incident response teams.
Quick Start
Run honeypot-investigation on a target honeypot (e.g., honeypot-server-01) for the last 48 hours to produce a comprehensive report.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: honeypot-investigation Download link: https://github.com/SCStelz/security-investigator/archive/main.zip#honeypot-investigation Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.