honeypot-mcp-server

Thinh-nguyen-03/honeypot-mcp-server

3.2

If you are the rightful owner of honeypot-mcp-server and would like to certify it and/or have it hosted online, please leave a comment on the right or send an email to henry@mcphub.com.

The Honeypot MCP Server is a transaction monitoring system designed to detect and investigate fraud using Lithic honeypot cards.

Tools

  1. health_check

    System health monitoring

  2. list_available_cards

    List available honeypot cards

  3. get_card_details

    Get detailed card information

  4. create_honeypot_card

    Create new honeypot cards

  5. update_card_limits

    Update card spending limits

  6. toggle_card_state

    Activate/deactivate cards

  7. get_transaction

    Get single transaction details

  8. search_transactions

    Search transactions with filters

  9. get_recent_transactions

    Get recent transactions for a card

  10. get_transactions_by_merchant

    Get transactions by merchant

  11. get_transaction_details

    Get comprehensive transaction information

  12. subscribe_to_alerts

    Set up transaction alerts

  13. get_live_transaction_feed

    Monitor real-time transactions

Honeypot MCP Server

Node.js

Overview

The Honeypot MCP Server is a transaction intelligence system built on the Model Context Protocol (MCP). It enables AI agents acting as vulnerable elderly personas to provide card details to scammers, then monitors and analyzes the resulting fraudulent transactions to gather intelligence about scammer operations and methods.

Features

  • 13 MCP Tools: Comprehensive set of tools for transaction monitoring and card management
  • Transaction Intelligence: Advanced transaction search and analysis capabilities
  • Card Management: Create and manage honeypot cards via Lithic API
  • Real-time Monitoring: Live transaction feeds and alert subscriptions
  • MCP Protocol: Native support for Model Context Protocol with HTTP and Stdio transports

Quick Start

Prerequisites

  • Node.js 18.0.0+
  • Supabase account and database
  • Lithic API access

Installation

git clone <repository-url>
cd honeypot-mcp-server
npm ci

Configuration

Create a .env file with the following variables:

# Core Configuration
NODE_ENV=production
PORT=3000

# Database
SUPABASE_URL=https://your-project.supabase.co
SUPABASE_SERVICE_KEY=your_service_key

# Financial API
LITHIC_API_KEY=your_lithic_api_key
LITHIC_ENV=production

# Optional Features
LITHIC_WEBHOOK_SECRET=your_webhook_secret
ENABLE_POLLING=true
POLLING_INTERVAL_MS=5000
MCP_TRANSPORT=http

Testing

# Run test suite
npm test

# Run security tests
npm run test:security

# Run performance tests
npm run test:performance

Running

# Start the server
npm start

# Check health
curl http://localhost:3000/health

MCP Tools

The server provides 13 tools organized by category:

System Operations (1 tool)

  • health_check - System health monitoring

Card Management (5 tools)

  • list_available_cards - List available honeypot cards
  • get_card_details - Get detailed card information
  • create_honeypot_card - Create new honeypot cards
  • update_card_limits - Update card spending limits
  • toggle_card_state - Activate/deactivate cards

Transaction Intelligence (5 tools)

  • get_transaction - Get single transaction details
  • search_transactions - Search transactions with filters
  • get_recent_transactions - Get recent transactions for a card
  • get_transactions_by_merchant - Get transactions by merchant
  • get_transaction_details - Get comprehensive transaction information

Real-Time Intelligence (2 tools)

  • subscribe_to_alerts - Set up transaction alerts
  • get_live_transaction_feed - Monitor real-time transactions

Transaction Intelligence

The system provides comprehensive transaction monitoring and analysis including:

  • Advanced transaction search and filtering
  • Real-time transaction monitoring
  • Merchant-specific transaction analysis
  • Card-based transaction tracking
  • Live transaction feed capabilities

Core Focus: Streamlined transaction intelligence for monitoring and investigation workflows.

Technology Stack

  • Runtime: Node.js with ES Modules
  • Database: Supabase (PostgreSQL)
  • Financial API: Lithic Virtual Card Platform
  • Protocol: Model Context Protocol (MCP)
  • Testing: Vitest framework

API Integration

MCP Client Example

import { Client } from '@modelcontextprotocol/sdk/client/index.js';
import { StdioClientTransport } from '@modelcontextprotocol/sdk/client/stdio.js';

const transport = new StdioClientTransport({
  command: 'node',
  args: ['src/mcp-server.js']
});

const client = new Client({
  name: 'fraud-detection-agent',
  version: '1.0.0'
}, {
  capabilities: { tools: {} }
});

await client.connect(transport);
const tools = await client.listTools();

Health Check

const health = await client.callTool({
  name: 'health_check',
  arguments: { includeDetails: true }
});

Development

Project Structure

src/
ā”œā”€ā”€ config/           # Configuration and client setup
ā”œā”€ā”€ handlers/         # MCP tool implementations
ā”œā”€ā”€ schemas/          # Tool input/output schemas
ā”œā”€ā”€ services/         # Business logic services
ā””ā”€ā”€ utils/           # Utilities and helpers

tests/
ā”œā”€ā”€ unit/            # Unit tests
ā”œā”€ā”€ integration/     # Integration tests
ā”œā”€ā”€ security/        # Security tests
ā””ā”€ā”€ performance/     # Performance tests

Testing

The project includes comprehensive test coverage:

  • Unit tests for all handlers and services
  • Integration tests for MCP protocol compliance
  • Security tests for authentication and data handling
  • Performance tests for response times

Deployment

See for detailed deployment instructions.

The application can be deployed on:

  • Railway (recommended, with included railway.json)
  • Docker containers
  • Traditional servers

License

This project is licensed under the MIT License - see the file for details.