Audience
Cybersecurity, InfoSec, Blueteam, Selfhosters, Homelabbers, SMBs, Security concious people.
About HoneyWire
HoneyWire is an open-source deception platform deploying canary tripwires across internal networks to detect lateral movement and intrusion activity.
How it works:
- TUI wizard instantly deploys lightweight, distroless "HoneyWires" onto any Linux host.
- Synthetic services run silently with zero reason for legitimate users or scanners to interact with them.
- If an attacker touches a HoneyWire, a high-fidelity alert routes directly to the centralized Hub.
Deployment Types:
- Web Router Decoy: Emulates admin router logins to trap web reconnaissance.
- Canary TCP Tarpit: Binds to critical ports to log payloads and slow attacks.
- File Canary (FIM): Monitors files to flag unauthorized access to decoy assets.
- ICMP Canary: Detects stealthy ping sweeps and raw network mapping.
- Network Scan Detector: Catches port scanning across local subnets.
The Hub:
A self-hosted, Web-UI control center managing node configurations, fleet, and alert routing, with frictionless UX.