How It Works? | Honeypot Fields Detective

How It Works

HoneyPot Detector scans webpages to detect forms using "honeypot" fields - hidden traps designed to catch bots while remaining invisible to humans.

What Does the Tool Do?

Scans all forms using a headless browser (Puppeteer)
Extracts all input fields, including hidden ones
Analyzes field names and types for honeypot patterns
Performs simulated submissions with dummy data
Returns detailed field status and submission results

Badge Meanings

Normal

The field appears safe and expected (e.g., standard email, name, or password fields)

Suspicious

Field has suspicious name/structure that might indicate a honeypot trap

Hidden

Input is not visible on the page (could be trap or legitimate hidden field)

Submission Feedback

Form submitted successfully
The form accepted input and redirected as expected
Blocked or flagged as bot
Submission was rejected or detected as bot-like behavior
Final URL
The destination page after submission (helps track redirection)

Multi-Form Pages

When analyzing pages with multiple forms (like login + contact forms), each form is scanned and submitted independently. Results are clearly grouped to identify which forms use honeypot techniques.