Question 1

How to set up Manuka with a custom domain for production?

Accepted Answer

Point your domain to the server IP, copy the nginx config example, and run the init-letsencrypt.sh script for SSL certificates, as per the Production section. Ensure Google Pub/Sub endpoints are updated to match the domain.

Question 2

Manuka vs traditional honeypots like Canarytokens: which is better for OSINT?

Accepted Answer

Manuka specializes in OSINT reconnaissance detection with modular listeners, while Canarytokens focus on network-based alerts. Choose Manuka for early threat intelligence at the pre-attack stage, but it requires more setup.

Question 3

Can Manuka integrate with SIEM tools like Splunk?

Accepted Answer

Yes, Manuka generates hits that can be exported to third-party analysis tools, though direct integrations aren't pre-built; you'll need to develop custom connectors using the actionable intelligence outputs.

Question 4

How to add a new listener module in Manuka?

Accepted Answer

Create a new Golang server in the manuka-listener container, following the modular design, and configure it to monitor additional OSINT sources, then integrate it via Docker Compose as described in the Architecture.

Question 5

What are the security risks of deploying Manuka honeypots?

Accepted Answer

Exposing fake login pages and social profiles could attract real attackers, so ensure proper isolation and monitoring. The README recommends HTTP basic authentication for the dashboard to protect admin access.

Question 6

Is Manuka suitable for small teams with limited security budgets?

Accepted Answer

Possibly not, due to its complex setup requiring Docker expertise and Google Cloud services, which may incur costs and maintenance overhead better suited for larger, resource-rich teams.

Manuka

What is Manuka?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions