Question 1

What are the system requirements for T-Pot?

Accepted Answer

T-Pot needs at least 8-16 GB of RAM and 128 GB of free disk space, along with a non-filtered internet connection. It's recommended for systems meeting these specs to avoid performance issues.

Question 2

How to install T-Pot on Ubuntu?

Accepted Answer

Download a supported Ubuntu ISO, install with minimal packages, ensure SSH is enabled, then run the installer script from the tpotce repository. Follow the detailed steps in the README for a successful setup.

Question 3

Does T-Pot work on Raspberry Pi?

Accepted Answer

Yes, T-Pot supports arm64 architecture and provides specific instructions for Raspberry Pi 4 with 8GB RAM, using Raspberry Pi OS 64-bit Lite, but performance may be limited compared to amd64 systems.

Question 4

How to disable data submission in T-Pot?

Accepted Answer

You can opt-out by removing the ewsposter service from the docker-compose.yml file and restarting T-Pot. The README includes step-by-step instructions for this process.

Question 5

T-Pot vs Cowrie: which is better for SSH honeypot?

Accepted Answer

Cowrie is a standalone SSH honeypot, while T-Pot includes Cowrie plus many other honeypots and tools. If you only need SSH monitoring, Cowrie is lighter; T-Pot is better for comprehensive, multi-protocol threat intelligence.

Question 6

What visualization tools does T-Pot include?

Accepted Answer

T-Pot comes with Kibana for dashboards, a live attack map for geographic visualization, CyberChef for data analysis, Elasticvue for Elasticsearch management, and Spiderfoot for OSINT, all accessible via a web UI.

T-Pot

What is T-Pot?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions