unsubbed.co

beelzebub

Beelzebub is a self-hosted networking & VPN tool that provides honeypot framework designed to provide a highly secure environment for detecting and analyzing.

Unknown Free mariocandela/beelzebub beelzebub-honeypot.com MIT 4 deploy options Plugins REST API Mobile App

Overview

A secure low code honeypot framework, leveraging AI for System Virtualization. Traditional security fails when attackers are already inside. Beelzebub delivers full-stack AI deception across your entire infrastructure Kubernetes clusters, APIs, AI agent tools, IoT devices. Catching lateral movement with zero false positives, slashing MTTR from hours to seconds, and cutting SOC costs by 60%.

Key Features

Source: GitHub README

  • Low-code configuration: YAML-based, modular service definition
  • LLM integration: The LLM convincingly simulates a real system, creating high-interaction honeypot experiences, while actually maintaining low-interaction architecture for enhanced security and easy management
  • Multi-protocol support: SSH, HTTP, TCP, TELNET, MCP (detect prompt injection against LLM agents)
  • Prometheus metrics & observability: Built-in metrics endpoint for monitoring
  • Event tracing: Multiple output strategies (stdout, RabbitMQ, Beelzebub Cloud)
  • Docker & Kubernetes ready: Deploy anywhere with provided configurations
  • ELK stack ready: Official integration available at Elastic docs

Getting Started

Source: GitHub README

You can run Beelzebub via Docker, Go compiler(cross device), or Helm (Kubernetes).

Normalized Features

Source: tool-features-normalized.json

ai integration, docker, docker compose, elasticsearch, helm, kubernetes, metrics, mobile app, mysql, plugins, postgresql, rest api.

Deploy

Docker

Self-host with Docker Compose

Coolify

One-click via Coolify panel
elestio

Elestio

Managed hosting from $9/mo
pikapods

PikaPods

Simple managed hosting

Features

Integrations & APIs

  • Plugin / Extension System
  • REST API

AI & Machine Learning

  • AI / LLM Integration

Analytics & Reporting

  • Metrics & KPIs

Mobile & Desktop

  • Mobile App

Category

Networking & VPN (99)

Compare beelzebub

B
beelzebub vs
Traefik

Both are networking tools. beelzebub has 8 unique features, Traefik has 5.

Related Networking & VPN Tools

View all 99 →

Caddy

71K

A fast, extensible web server with automatic HTTPS — zero-config TLS certificates for every site, built-in reverse proxy, and a simple Caddyfile config format.

networking Apache-2.0

Traefik

62K

Cloud-native application proxy and ingress controller that auto-discovers services and handles TLS certificates, load balancing, and routing with zero manual configuration.

networking MIT

Pi-hole

56K

Network-wide ad blocking DNS server that protects every device on your network without installing anything on individual devices.

networking

Headscale

37K

An open source, self-hosted implementation of the Tailscale control server.

networking BSD-3-Clause

AdGuard Home

33K

Network-wide software for blocking ads and tracking. Covers all your home devices with no client-side software needed.

networking GPL-3.0

Nginx Proxy Manager

32K

Expose your services easily and securely. Manage Nginx proxy hosts with a simple, powerful interface and free SSL via Let's Encrypt.

networking MIT