AI Agent Deception Platform -- honeypots, fingerprinting, and intelligence for autonomous AI threats
Project description
Oubliette
AI Agent Deception Platform -- honeypots, fingerprinting, and intelligence for autonomous AI threats.
Shield defends. Dungeon attacks. Oubliette traps.
What It Does
Oubliette deploys realistic honeypot MCP servers that attract, contain, fingerprint, and extract intelligence from AI agents. Unlike static honeypots, Oubliette generates interconnected fake environments where every response references shared state -- making the deception resistant to fingerprinting by sophisticated agents.
- Deception Layer -- 15+ honey tools per profile forming coherent fake infrastructure
- Fingerprinting Engine -- passive behavioral analysis + active probes classify agents as LLM, script, human, or compromised
- Intelligence Layer -- events persisted to SQLite, exportable as STIX 2.1, CEF, or JSON
Quick Start
pip install oubliette-trap
# Start honeypot (stdio transport for Claude Code)
oubliette-trap serve
# Network-accessible honeypot
oubliette-trap serve --transport sse --port 8080
# With active fingerprinting probes
oubliette-trap serve --profile default --active-probes
# Export collected intelligence
oubliette-trap export --format stix --output agents.json
oubliette-trap export --format cef --output events.log
With Claude Code
Add to your MCP config:
{
"mcpServers": {
"oubliette": {
"command": "oubliette-trap",
"args": ["serve"]
}
}
}
How It Works
- Agent discovers the honeypot via MCP server listing
- Agent calls honey tools (list_services, get_credentials, etc.)
- Responses form a coherent fake environment with planted breadcrumbs
- Fingerprinting engine classifies the agent type from behavioral signals
- Optional active probes (instruction traps, canary tokens) confirm LLM agents
- All interactions persisted and exportable as threat intelligence
Built By
Oubliette Security -- AI security, cyber deception, and red teaming for defense applications.
License
Apache 2.0
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file oubliette_trap-0.2.0.tar.gz.
File metadata
- Download URL: oubliette_trap-0.2.0.tar.gz
- Upload date:
- Size: 46.3 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.14.2
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
c4b0be324530e86cd2b5cfbf488cfaa6b51614f8d063425d1be0b4a27c322636
|
|
| MD5 |
fc03ea4f1c27c9ac9b9eb58d56f80b72
|
|
| BLAKE2b-256 |
7a305c7b0449f35259f72ef15aa5eec5964d16aa43265e7bbe3170ca110cf64c
|
File details
Details for the file oubliette_trap-0.2.0-py3-none-any.whl.
File metadata
- Download URL: oubliette_trap-0.2.0-py3-none-any.whl
- Upload date:
- Size: 46.9 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.14.2
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
647ffd86b46a9b34d1a5195a75530584063733cc9faa8614880ae6b183b70d72
|
|
| MD5 |
3a045c33b94680058662f42cf30ddeb3
|
|
| BLAKE2b-256 |
7ce33398d17603dd2c36316d9ccc74dd581c25a7d3a176f2544d94e5248e5594
|
