Question 1

How do I set up a custom WordPress theme in Wordpot?

Accepted Answer

Place the theme folder in the static/wp-content/themes/ directory and create or edit a corresponding Jinja2 template in the templates/ folder, named after your theme, as described in the theme support section.

Question 2

Wordpot vs Glastopf: which honeypot is better for WordPress security?

Accepted Answer

Wordpot is specialized for WordPress, offering targeted detection of plugins and themes, while Glastopf is a more general web application honeypot. For WordPress-specific reconnaissance, Wordpot is more focused, but for broader coverage, Glastopf might be preferable.

Question 3

Does Wordpot automatically log all probe attempts, and where are the logs stored?

Accepted Answer

Wordpot detects and logs attempts to fingerprint WordPress installations, but the README does not specify log formats or storage locations. Users may need to check the code or wiki for implementation details.

Question 4

How can I extend Wordpot to simulate a specific plugin vulnerability?

Accepted Answer

You can write a custom plugin using the beta plugin system, following the guidelines on the dedicated wiki page to mimic vulnerabilities or add new functionalities.

Question 5

Is Wordpot compatible with modern WordPress versions and security threats?

Accepted Answer

The project's copyright dates to 2012, and there's no indication of recent updates, so it might not cover newer WordPress versions or emerging attack vectors without manual adjustments.

Question 6

What are the command-line options for starting Wordpot with specific settings?

Accepted Answer

Use the --help option as shown in the README to see all arguments, such as --host, --port, --title, and --plugins, allowing customization of the honeypot's behavior from the command line.

wordpot

What is wordpot?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions