Cymmetria Research releases an open source honeypot for detecting the Apache Struts exploit (CVE 2017-5638)


StrutsHoneypot is an Apache 2 mod that allows you to detect or block the exploit. The best and fastest way to get started is to launch it through Docker.

Like our previous open source honeypot, MTPot (for detecting mirai), this honeypot is released under the MIT license for the use of the community.You can download StrutsHoneypot here:

StrutsHoneypot was written by Nir Krakowski (@nirkrakowksi) and Imri Goldberg (@lorgandon), and you can contact us at with any bugs or requests.

Please consider trying out MazeRunner Community Edition, the free version of our cyber deception platform:


Share this: