Getting Started

Create Your Account

Visit /register to create your free account. You'll need:

• An email address (for verification and alerts)
• An organization name (this becomes your org slug, e.g. acme-corp)
• A password (minimum 8 characters)

Explore the Dashboard

The dashboard at lobsterhoney.com/app is your command center. Here you'll find:

• Overview -- Real-time statistics: total hits, agents detected, tripwires fired, and prompts captured
• Incidents -- Detailed incident feed with full session analysis
• Traps -- Manage your deployed traps and create new ones
• Analytics -- Historical data, classification breakdowns, and trends

LobsterHoney automatically seeds your organization with default traps to get you started quickly.

Deploy a Trap

Your traps are accessible at /s/your-org-slug/. Each trap has a unique path within your org. The default traps include:

• /s/your-org-slug/robots.txt -- A trap disguised as a robots.txt file
• /s/your-org-slug/.env -- A canary credentials trap
• /s/your-org-slug/api/v1/config -- An API endpoint trap

To deploy a trap on your own infrastructure, simply link or redirect to your LobsterHoney trap URL from strategic locations: HTML comments, hidden links, configuration files, or API documentation.

Verify with curl

Test that your trap is working:

You should receive a response that looks like a normal file. Check your dashboard -- a new session should appear within seconds showing the hit.

View Detections

Return to the dashboard to see your test hit. The scoring engine will classify it based on observed signals. Your manual curl test will score low -- real AI agent hits trigger multiple detection signals and score much higher.