diff --git a/installer/bin/clean.sh b/installer/bin/clean.sh
index d3f3fdcd..f970dfda 100755
--- a/installer/bin/clean.sh
+++ b/installer/bin/clean.sh
@@ -86,6 +86,14 @@ fuMAILONEY () {
   chown tpot:tpot /data/mailoney/ -R
 }
 
+# Let's create a function to clean up and prepare maltrail data
+fuMALTRAIL () {
+  rm -rf /data/maltrail/*
+  mkdir -p /data/maltrail/log/
+  chmod 760 /data/maltrail/ -R
+  chown tpot:tpot /data/maltrail/ -R
+}
+
 # Let's create a function to prepare spiderfoot db
 fuSPIDERFOOT () {
   mkdir -p /data/spiderfoot
@@ -119,6 +127,7 @@ fuEMOBILITY
 fuGLASTOPF
 fuHONEYTRAP
 fuMAILONEY
+fuMALTRAIL
 fuSPIDERFOOT
 fuSURICATA
 fuP0F
diff --git a/installer/etc/tpot/compose/all.yml b/installer/etc/tpot/compose/all.yml
index 58a48e1a..d4d13c9f 100644
--- a/installer/etc/tpot/compose/all.yml
+++ b/installer/etc/tpot/compose/all.yml
@@ -221,6 +221,16 @@ services:
     image: "dtagdevsec/mailoney:1706"
     volumes:
      - /data/mailoney/log:/opt/mailoney/logs
+
+# Maltrail service
+#  maltrail:
+#    container_name: maltrail
+#    stdin_open: true
+#    restart: always
+#    network_mode: "host"
+#    image: "dtagdevsec/maltrail:1706"
+#    volumes:
+#     - /data/maltrail/log:/var/log/maltrail
  
 # Netdata service
   netdata:
diff --git a/installer/etc/tpot/compose/tpot.yml b/installer/etc/tpot/compose/tpot.yml
index 2ca69c49..6789300b 100644
--- a/installer/etc/tpot/compose/tpot.yml
+++ b/installer/etc/tpot/compose/tpot.yml
@@ -192,6 +192,16 @@ services:
     volumes:
      - /data/mailoney/log:/opt/mailoney/logs
 
+# Maltrail service
+#  maltrail:
+#    container_name: maltrail
+#    stdin_open: true
+#    restart: always
+#    network_mode: "host"
+#    image: "dtagdevsec/maltrail:1706"
+#    volumes:
+#     - /data/maltrail/log:/var/log/maltrail
+
 # Netdata service
   netdata:
     container_name: netdata