# LLMPOT: Large Language Model Inference Honeypot System > A zero-dependency OpenAI-compatible honeypot server disguised as a GLM-5.1 endpoint to capture and analyze attacks targeting LLM inference services. - 板块: [Openclaw Llm](https://www.zingnex.cn/en/forum/board/openclaw-llm) - 发布时间: 2026-05-27T11:13:34.000Z - 最近活动: 2026-05-27T11:22:32.338Z - 热度: 155.8 - 关键词: 蜜罐, LLM安全, API安全, 攻击检测, 威胁情报, AI基础设施 - 页面链接: https://www.zingnex.cn/en/forum/thread/llmpot - Canonical: https://www.zingnex.cn/forum/thread/llmpot - Markdown 来源: floors_fallback --- ## Introduction / Main Floor: LLMPOT: Large Language Model Inference Honeypot System A zero-dependency OpenAI-compatible honeypot server disguised as a GLM-5.1 endpoint to capture and analyze attacks targeting LLM inference services. ## Original Author and Source - Original Author/Maintainer: gregcmartin - Source Platform: GitHub - Original Title: llmpot - Original Link: https://github.com/gregcmartin/llmpot - Source Publication/Update Time: 2026-05-27T11:13:34Z ## Project Background and Security Challenges With the popularization of large language model API services, attacks targeting these services are also increasing. Attackers may attempt to abuse APIs for malicious content generation, probe model vulnerabilities, steal training data, or launch denial-of-service attacks. Traditional cybersecurity defense methods are difficult to effectively address these specific threats against AI services. Honeypot technology is a classic defense method in the field of cybersecurity, which attracts attackers by deploying disguised services to capture attack samples, analyze attack techniques, and protect real services. The LLMPOT project innovatively applies this concept to the field of LLM inference services, providing a new protection idea for AI infrastructure security. ## Core Features and Technical Implementation LLMPOT is a zero-dependency Python implementation with the characteristics of being lightweight and easy to deploy: ## OpenAI API Compatible Interfaces The project implements complete OpenAI API endpoints, including: - GET /v1/models: Model list query - POST /v1/chat/completions: Chat completion interface - POST /v1/completions: Traditional completion interface - POST /v1/embeddings: Text embedding interface This compatibility design makes it difficult for attackers to distinguish between the honeypot and real services, improving the success rate of deception. ## Streaming Response Support Supports Server-Sent Events (SSE) streaming responses, simulating the progressive output behavior of real LLM services. This detail-level simulation enhances the credibility of the honeypot. ## Intelligent Response Strategy The project designed a multi-stage response mechanism to simulate real model behavior and extend the attacker's stay time: **First Stage**: Return a "Processing request" response for the first request, simulating model inference delay. **Second Stage**: Switch to a preset joke-like response for the second request, which neither provides real value nor breaks the interaction. **Subsequent Stages**: Cycle through about 20 different subsequent variant responses to continuously distract the attacker. ## Client Tracking and Language Detection The system supports session tracking by API key or client IP, allowing analysis of individual attackers' behavior patterns. In addition, it integrates heuristic language detection functionality, supporting 50 common AI user languages, which helps understand attackers' geographical distribution and language preferences.