In March 2016 we released T-Pot 16.03 and the positive feedback encouraged us to continue development and share all the improvements with the community and are proud to present to you …

T-Pot 16.10

T-Pot 16.10 now uses Ubuntu Server 16.04 LTS and is based on

docker

and includes dockerized versions of the following honeypots

• conpot,
• cowrie,
• dionaea,
• elasticpot,
• emobility,
• glastopf and
• honeytrap

Furthermore we use the following tools

• ELK stack to beautifully visualize all the events captured by T-Pot.
• Elasticsearch Head a web front end for browsing and interacting with an Elastic Search cluster.
• Netdata for real-time performance monitoring.
• Portainer a web based UI for docker.
• Suricata a Network Security Monitoring engine.
• Wetty a web based SSH client.

TL;DR

1. Meet the system requirements. The T-Pot installation needs at least 4 GB RAM and 64 GB free disk space as well as a working internet connection.
2. Download the T-Pot ISO from GitHub or create it yourself.
3. Install the system in a VM or on physical hardware with internet access.
4. Enjoy your favorite beverage - watch and analyze.

Table of Contents

• Changelog
• Technical Concept
• System Requirements
• Installation
  • Prebuilt ISO Image
  • Create your own ISO Image
  • Running in a VM
  • Running on Hardware
  • First Run
  • System Placement
• Options
  • SSH and web access
  • Kibana Dashboard
  • Tools
  • Maintenance
  • Community Data Submission
• Roadmap
• Disclaimer
• FAQ
• Contact
• Licenses
• Credits
• Stay tuned
• Fun Fact

Changelog

• Ubuntu 16.04 LTS is now being used as T-Pot’s OS base
• Size does matter