Download the PHP package vinksyunit/not-today-honey without Composer
On this page you can find all versions of the php package vinksyunit/not-today-honey. It is possible to download/install these versions without Composer. Possible dependencies are resolved automatically.
Table of contents
Download vinksyunit/not-today-honey
More information about vinksyunit/not-today-honey
Files in vinksyunit/not-today-honey
Download vinksyunit/not-today-honey
More information about vinksyunit/not-today-honey
Files in vinksyunit/not-today-honey
Vendor vinksyunit
Package not-today-honey
Short Description A Laravel honeypot package to simulate attractive web pages (like WordPress wp-admin) to detect attackers
License MIT
Homepage https://github.com/Vinksyunit/NotTodayHoney
Package not-today-honey
Short Description A Laravel honeypot package to simulate attractive web pages (like WordPress wp-admin) to detect attackers
License MIT
Homepage https://github.com/Vinksyunit/NotTodayHoney
FAQ
After the download, you have to make one include require_once('vendor/autoload.php');. After that you have to import the classes with use statements.
Example:
Example:
If you use only one package a project is not needed. But if you use more then one package, without a project it is not possible to import the classes with use statements.
In general, it is recommended to use always a project to download your libraries. In an application normally there is more than one library needed.
In general, it is recommended to use always a project to download your libraries. In an application normally there is more than one library needed.
Some PHP packages are not free to download and because of that hosted in private repositories.
In this case some credentials are needed to access such packages.
Please use the auth.json textarea to insert credentials, if a package is coming from a private repository.
You can look here for more information.
- Some hosting areas are not accessible by a terminal or SSH. Then it is not possible to use Composer.
- To use Composer is sometimes complicated. Especially for beginners.
- Composer needs much resources. Sometimes they are not available on a simple webspace.
- If you are using private repositories you don't need to share your credentials. You can set up everything on our site and then you provide a simple download link to your team member.
- Simplify your Composer build process. Use our own command line tool to download the vendor folder as binary. This makes your build process faster and you don't need to expose your credentials for private repositories.
Please rate this library. Is it a good library?
Informations about the package not-today-honey
A Laravel honeypot package that simulates realistic admin pages (WordPress, phpMyAdmin) to detect and block attackers.
Detect threats, automatically
- 3-level alert system — Probing → Intrusion Attempt → Attacking, each with configurable thresholds, block durations, and log levels
- Leaked credential detection — truncated SHA256 comparison against known password lists; immediate escalation to Attacking on match
Protect your real features
- Automatic IP blocking — detected attackers are blocked for configurable durations (minutes for probing, days for intrusion, weeks for attacking)
nottodayhoney.blockmiddleware — deny blocked IPs globally or per route group with a single line
Honeypot traps that fool scanners
- Realistic decoys — fake WordPress wp-login, phpMyAdmin, and generic admin pages with HTTP fingerprinting to attract CVE scanners and credential-stuffing bots
- Event-driven alerts — Laravel events at each alert level; wire up Slack, mail, or any channel via listeners
Requirements
- PHP 8.4+
- Laravel 12+
Installation
Sponsors
Special Sponsors
Blue team best practices
NotTodayHoney detects and signals — it is one layer of a defense-in-depth strategy. A honeypot without complementary layers is a smoke detector with no sprinklers.
- Understand your attack surface — the OWASP Top 10 covers the most common application-layer risks; the ASVS gives you a structured checklist
- Review code for security — authentication, authorisation boundaries, and input handling deserve attention on every change, not just security-focused sprints
- Run penetration tests — a pentest finds what automated scanners miss: logic flaws, misconfigurations, privilege escalation paths
- Monitor and respond — route
AttackerAttackingEventto an alerting pipeline; define a runbook for what your team does when an attacker is detected - Keep dependencies clean — attackers scan for known CVEs before trying credentials; run
composer auditregularly
→ Blue Team Practices in the documentation for further reading and OWASP references.
License
The MIT License (MIT). Please see License File for more information.
All versions of not-today-honey with dependencies
PHP Build Version
Package Version
Requires
php Version
^8.4|^8.5
spatie/laravel-package-tools Version ^1.16
illuminate/contracts Version ^12.0|^13.0
spatie/laravel-package-tools Version ^1.16
illuminate/contracts Version ^12.0|^13.0
The package vinksyunit/not-today-honey contains the following files
Loading the files please wait ...