tpotce/docker/citrixhoneypot/Dockerfile

FROM alpine:3.19
#
# Install packages
RUN apk --no-cache -U add \
		git \
		libcap \
		openssl \
		py3-pip \
		python3 && \
#
    pip3 install --break-system-packages --no-cache-dir python-json-logger && \
#
# Install CitrixHoneypot from GitHub
    git clone https://github.com/t3chn0m4g3/CitrixHoneypot /opt/citrixhoneypot && \
    cd /opt/citrixhoneypot && \
    git checkout f59ad7320dc5bbb8c23c8baa5f111b52c52fbef3 && \
#
# Setup user, groups and configs
    mkdir -p /opt/citrixhoneypot/logs /opt/citrixhoneypot/ssl && \
    openssl req \
          -nodes \
          -x509 \
          -newkey rsa:2048 \
          -keyout "/opt/citrixhoneypot/ssl/key.pem" \
          -out "/opt/citrixhoneypot/ssl/cert.pem" \
          -days 365 \
          -subj '/C=AU/ST=Some-State/O=Internet Widgits Pty Ltd' && \
    addgroup -g 2000 citrixhoneypot && \
    adduser -S -H -s /bin/ash -u 2000 -D -g 2000 citrixhoneypot && \
    chown -R citrixhoneypot:citrixhoneypot /opt/citrixhoneypot && \
    setcap cap_net_bind_service=+ep $(readlink -f $(type -P python3)) && \
#
# Clean up
    apk del --purge git \
                    openssl && \
    rm -rf /root/* && \
    rm -rf /opt/citrixhoneypot/.git && \
    rm -rf /var/cache/apk/*
#
# Set workdir and start citrixhoneypot
STOPSIGNAL SIGINT
USER citrixhoneypot:citrixhoneypot
WORKDIR /opt/citrixhoneypot/
CMD nohup /usr/bin/python3 CitrixHoneypot.py
tweak deploy, add autoheal, start update Dockerfiles - tweak deploy a little further - start with rebuilding Dockerfiles - rework healthcheck for adbhoney CPU issues - bump adbhoney, ciscoasa, citrixhoneypot, conpot, cowriepot, ddospot to alpine 3.19 - fix conpot issue with py 3.11 - bump conpot to latest master - bump cowrie to latest master - add autoheal to tpotinit to restart unhealthy container (if healthcheck enabled) 2024-02-27 19:11:16 +00:00			`FROM alpine:3.19`
prepare for citrixhoneypot 2020-01-15 10:37:48 +00:00			`#`
			`# Install packages`
tweaking 2022-03-05 00:50:47 +00:00			`RUN apk --no-cache -U add \`
tweaking healthcheck, watch pid not cpu cleanup dockerfiles bump dicompot, heralding, elasticpot, endlessh to alpine 3.19 bump dionaea, heralding to latest master 2024-02-28 18:07:22 +00:00			`git \`
			`libcap \`
			`openssl \`
			`py3-pip \`
			`python3 && \`
prepare citrixhoneypot for JSON logging 2020-01-15 13:59:11 +00:00			`#`
tweak deploy, add autoheal, start update Dockerfiles - tweak deploy a little further - start with rebuilding Dockerfiles - rework healthcheck for adbhoney CPU issues - bump adbhoney, ciscoasa, citrixhoneypot, conpot, cowriepot, ddospot to alpine 3.19 - fix conpot issue with py 3.11 - bump conpot to latest master - bump cowrie to latest master - add autoheal to tpotinit to restart unhealthy container (if healthcheck enabled) 2024-02-27 19:11:16 +00:00			`pip3 install --break-system-packages --no-cache-dir python-json-logger && \`
prepare for citrixhoneypot 2020-01-15 10:37:48 +00:00			`#`
prepare for CitrixHoneypot 2020-01-15 12:14:23 +00:00			`# Install CitrixHoneypot from GitHub`
begin prep for move to GitHub Container Registry Start pinning Dockerfiles to specific releases / commits 2020-09-02 15:18:32 +00:00			`git clone https://github.com/t3chn0m4g3/CitrixHoneypot /opt/citrixhoneypot && \`
			`cd /opt/citrixhoneypot && \`
			`git checkout f59ad7320dc5bbb8c23c8baa5f111b52c52fbef3 && \`
prepare for citrixhoneypot 2020-01-15 10:37:48 +00:00			`#`
			`# Setup user, groups and configs`
			`mkdir -p /opt/citrixhoneypot/logs /opt/citrixhoneypot/ssl && \`
			`openssl req \`
			`-nodes \`
			`-x509 \`
			`-newkey rsa:2048 \`
			`-keyout "/opt/citrixhoneypot/ssl/key.pem" \`
			`-out "/opt/citrixhoneypot/ssl/cert.pem" \`
			`-days 365 \`
			`-subj '/C=AU/ST=Some-State/O=Internet Widgits Pty Ltd' && \`
			`addgroup -g 2000 citrixhoneypot && \`
			`adduser -S -H -s /bin/ash -u 2000 -D -g 2000 citrixhoneypot && \`
			`chown -R citrixhoneypot:citrixhoneypot /opt/citrixhoneypot && \`
tweak deploy, add autoheal, start update Dockerfiles - tweak deploy a little further - start with rebuilding Dockerfiles - rework healthcheck for adbhoney CPU issues - bump adbhoney, ciscoasa, citrixhoneypot, conpot, cowriepot, ddospot to alpine 3.19 - fix conpot issue with py 3.11 - bump conpot to latest master - bump cowrie to latest master - add autoheal to tpotinit to restart unhealthy container (if healthcheck enabled) 2024-02-27 19:11:16 +00:00			`setcap cap_net_bind_service=+ep $(readlink -f $(type -P python3)) && \`
prepare for citrixhoneypot 2020-01-15 10:37:48 +00:00			`#`
			`# Clean up`
			`apk del --purge git \`
cowrie, test reduce build times 2022-03-12 14:27:34 +00:00			`openssl && \`
prepare for citrixhoneypot 2020-01-15 10:37:48 +00:00			`rm -rf /root/* && \`
tweaking 2022-03-05 00:50:47 +00:00			`rm -rf /opt/citrixhoneypot/.git && \`
prepare for citrixhoneypot 2020-01-15 10:37:48 +00:00			`rm -rf /var/cache/apk/*`
			`#`
			`# Set workdir and start citrixhoneypot`
			`STOPSIGNAL SIGINT`
			`USER citrixhoneypot:citrixhoneypot`
			`WORKDIR /opt/citrixhoneypot/`
			`CMD nohup /usr/bin/python3 CitrixHoneypot.py`