Dashboard

Total Attacks

-

Last 24 Hours

-

Unique IPs

-

Blocked IPs

-

Time Wasted 💨-

Active Tarpit Sessions 0

Real-time view of attackers being tarpitted (wasting their time/resources) and ripping ass 💨

IP Address	Target	Phase	Progress	Duration

No active tarpit sessions

Top Attacking IPs

IP Address	Attempts	Action

Attack Methods

Method	Count

Top Call Destinations 📞

Country	Calls

Geographic Analytics

Attacks by Country

Country	Unique IPs	Attacks

Attacks by ASN

ASN	Name	IPs	Attacks

Blocked IPs

Public Blocklists

These URLs can be used by firewalls and security tools to automatically fetch the blocklist:

All IPs (JSON): /api/public/blocklist
All IPs (Text): /api/public/blocklist.txt
IPv4 Only: /api/public/blocklist-ipv4.txt
IPv6 Only: /api/public/blocklist-ipv6.txt

External Blocklist Sources

Import IPs from public threat intelligence feeds like APIBAN.

IP Address	Source	Reason	First Seen	Last Seen	Hits	Actions

Whitelisted IPs

IP Address	Description	Added By	Created	Actions

Honeypot Logs

Time	Source IP	Port	Protocol	Method	Dest	URI	User Agent	Actions

Export Blocklist

Juniper Router Export

Export Format

Prefix List Name

Filter Name

Abuse Reports

Send Abuse Report

Enter an IP address to look up its abuse contact and send a report.

Blocked Abuse Emails

Emails in this list won't receive abuse reports (e.g., IANA, invalid contacts).

Email	Reason	Added By	Date	Actions

Report History

Date	IP Address	Abuse Contact	Organization	Attacks	Status	Actions

Settings

SMTP Configuration

Configure SMTP settings for sending abuse reports to network operators.

SMTP Host

Port

SMTP Username

SMTP Password

From Email Address

From Name

Abuse Reporting

Report Cooldown (days)

Minimum days between sending reports for the same IP address.

Honeypot Settings

Auto-Block Threshold

Number of attack attempts before automatically blocking an IP.

Blocklist Expiry (days)

Days before blocked IPs expire and are removed from the blocklist.

SIP Tarpit

Tarpit wastes attacker resources by sending endless 180 Ringing responses to INVITE requests, tying up their scanner.

Enable SIP Tarpit

Only tarpit IPs already on blocklist

When enabled, only IPs that are already blocked will be tarpitted. Disable to tarpit all INVITE requests.

Delay between responses (ms)

Number of ringing responses

Default: 30 rings at 20s each = 10 min ringing + 5-20 min "call" = up to 30 min wasted per INVITE.

Rate Limiting / Throttling

Limit responses and log entries per IP to prevent resource exhaustion from aggressive scanners.

Response Throttling

Enable response throttling

Stop responding after an IP exceeds the request limit. They still get logged (subject to log throttling).

Max responses per IP per minute

Set to 0 for unlimited. Default: 30 responses/minute per IP.

Log Throttling

Enable log throttling

Limit database writes per IP to prevent log flooding. IPs are still blocked even when logs are throttled.

Max log entries per IP per minute

Set to 0 for unlimited. Default: 10 log entries/minute per IP.

User Management

Username	Email	Role	Last Login	Status	Actions

SIP Server

Dashboard

Total Attacks

Last 24 Hours

Unique IPs

Blocked IPs

Time Wasted 💨

Active Tarpit Sessions 0

Top Attacking IPs

Attack Methods

Top Call Destinations 📞

Geographic Analytics

Attacks by Country

Attacks by ASN

Blocked IPs

Public Blocklists

External Blocklist Sources

Whitelisted IPs

Honeypot Logs

Export Blocklist

Juniper Router Export

Abuse Reports

Send Abuse Report

Blocked Abuse Emails

Report History

Settings

SMTP Configuration

Abuse Reporting

Honeypot Settings

SIP Tarpit

Rate Limiting / Throttling

Response Throttling

Log Throttling

User Management