feat: add MokN integration v1.0.0

[mokn-acasteleiro]

Description

This PR adds the documentation for the MokN - Baits module in the Threat Intelligence category.

The integration allows Sekoia.io to poll MokN bait login attempts from the MokN API and ingest them as normalized events. It is designed to help analysts detect malicious authentication activity observed on MokN bait services and enrich investigations with attacker context.

What this module covers:

• Collection of MokN bait attempts through a polling trigger
• Ingestion of attempt metadata such as timestamps, credentials submitted, source IP, geographic context, headers, user-agent, JA4H fingerprint, attacker reputation, and credential leak context
• Response actions to comment an attempt and request a credential check directly from Sekoia.io automation

This documentation also includes:

• Prerequisites and API key creation steps in MokN
• Intake configuration steps in Sekoia.io
• Trigger configuration details

[github-actions]

Newest code from mokn-acasteleiro has been published to preview environment

🚀 Latest deployment was built on 2026-05-18 10:58:02 (8b4dac096783350237796f1c40f485b5ab478e7d).

[mchupeau-sk]

Hello @mokn-acasteleiro,

For the documentation, can you remove the action part.

You can see the Microsoft Entra ID documentation for the connector part.

[mokn-acasteleiro]

Hello @mchupeau-sk,

I have just pushed the version without the action part.
Is there anything else I should edit ?

Have a good day!