Alex-Devera/tpotce
1
0
Fork 0
mirror of https://github.com/telekom-security/tpotce.git synced 2025-04-19 21:52:27 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

tweaking

Browse source
This commit is contained in:
Marco Ochse 2018-03-29 16:21:00 +00:00
parent 8257ae0a09
commit 136e741334
9 changed files with 80 additions and 20 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
docker/heralding/Dockerfile
View file

@ -11,6 +11,7 @@ RUN apk -U upgrade && \
libffi-dev \ libffi-dev \
libressl-dev \ libressl-dev \
postgresql-dev \ postgresql-dev \
procps \
python3 \ python3 \
python3-dev \ python3-dev \
py-virtualenv && \ py-virtualenv && \

1
docker/nginx/Dockerfile
View file

@ -1,5 +1,4 @@
FROM alpine FROM alpine
MAINTAINER MO
# Include dist # Include dist
ADD dist/ /root/dist/ ADD dist/ /root/dist/

11
docker/nginx/docker-compose.yml
View file

@ -6,12 +6,21 @@ services:
# nginx service # nginx service
nginx: nginx:
build: .
container_name: nginx container_name: nginx
restart: always restart: always
tmpfs:
- /var/tmp/nginx/client_body
- /var/tmp/nginx/proxy
- /var/tmp/nginx/fastcgi
- /var/tmp/nginx/uwsgi
- /var/tmp/nginx/scgi
- /run
network_mode: "host" network_mode: "host"
ports: ports:
- "64297:64297" - "64297:64297"
image: "dtagdevsec/nginx:1710" image: "dtagdevsec/nginx:1804"
read_only: true
volumes: volumes:
- /data/nginx/cert/:/etc/nginx/cert/ - /data/nginx/cert/:/etc/nginx/cert/
- /data/nginx/conf/nginxpasswd:/etc/nginx/nginxpasswd - /data/nginx/conf/nginxpasswd:/etc/nginx/nginxpasswd

19
docker/p0f/Dockerfile
View file

@ -1,12 +1,17 @@
FROM alpine FROM alpine
MAINTAINER MO
# Add source # Add source
ADD . /opt/p0f ADD . /opt/p0f
# Install packages # Install packages
RUN apk -U upgrade && \ RUN apk -U upgrade && \
apk add bash build-base git jansson-dev libpcap-dev procps && \ apk add bash \
build-base \
git \
jansson-dev \
libcap \
libpcap-dev \
procps && \
# Setup user, groups and configs # Setup user, groups and configs
addgroup -g 2000 p0f && \ addgroup -g 2000 p0f && \
@ -15,13 +20,19 @@ RUN apk -U upgrade && \
# Download and compile p0f # Download and compile p0f
cd /opt/p0f && \ cd /opt/p0f && \
./build.sh && \ ./build.sh && \
setcap cap_sys_chroot,cap_setgid,cap_net_raw=+ep /opt/p0f/p0f && \
# Clean up # Clean up
apk del build-base git jansson-dev libpcap-dev && \ apk del --purge build-base \
apk add jansson libpcap && \ git \
jansson-dev \
libpcap-dev && \
apk add jansson \
libpcap && \
rm -rf /root/* && \ rm -rf /root/* && \
rm -rf /var/cache/apk/* rm -rf /var/cache/apk/*
# Start suricata # Start suricata
WORKDIR /opt/p0f WORKDIR /opt/p0f
USER p0f:p0f
CMD /bin/bash -c "exec /opt/p0f/p0f -u p0f -j -o /var/log/p0f/p0f.json -i $(/sbin/ip address | grep '^2: ' | awk '{ print $2 }' | tr -d [:punct:])" CMD /bin/bash -c "exec /opt/p0f/p0f -u p0f -j -o /var/log/p0f/p0f.json -i $(/sbin/ip address | grep '^2: ' | awk '{ print $2 }' | tr -d [:punct:])"

6
docker/p0f/docker-compose.yml
View file

@ -1,12 +1,14 @@
version: '2.1' version: '2.2'
services: services:
# P0f service # P0f service
p0f: p0f:
build: .
container_name: p0f container_name: p0f
restart: always restart: always
network_mode: "host" network_mode: "host"
image: "dtagdevsec/p0f:1710" image: "dtagdevsec/p0f:1804"
read_only: true
volumes: volumes:
- /data/p0f/log:/var/log/p0f - /data/p0f/log:/var/log/p0f

26
docker/rdpy/Dockerfile
View file

@ -1,12 +1,21 @@
FROM alpine FROM alpine
MAINTAINER MO
# Include dist # Include dist
ADD dist/ /root/dist/ ADD dist/ /root/dist/
# Get and install dependencies & packages # Get and install dependencies & packages
RUN apk -U upgrade && \ RUN apk -U upgrade && \
apk add bash build-base git libffi-dev openssl openssl-dev procps python python-dev py-pip py-setuptools && \ apk add bash \
build-base \
git \
libffi-dev \
openssl \
openssl-dev \
procps \
python \
python-dev \
py-pip \
py-setuptools && \
apk -U add --repository https://dl-cdn.alpinelinux.org/alpine/edge/testing/ \ apk -U add --repository https://dl-cdn.alpinelinux.org/alpine/edge/testing/ \
py-qt && \ py-qt && \
@ -18,7 +27,11 @@ RUN apk -U upgrade && \
cd /home/rdpy && \ cd /home/rdpy && \
git clone https://github.com/t3chn0m4g3/rdpy && \ git clone https://github.com/t3chn0m4g3/rdpy && \
pip install --no-cache-dir --upgrade cffi && \ pip install --no-cache-dir --upgrade cffi && \
pip install twisted pyopenssl qt4reactor service_identity rsa pyasn1==0.3.4 && \ pip install twisted \
pyopenssl \
qt4reactor \
service_identity \
rsa pyasn1==0.3.4 && \
cd rdpy && \ cd rdpy && \
python setup.py install && \ python setup.py install && \
@ -29,7 +42,12 @@ RUN apk -U upgrade && \
# Clean up # Clean up
rm -rf /root/* && \ rm -rf /root/* && \
apk del build-base libffi-dev openssl-dev python-dev py-pip py-qt && \ apk del --purge build-base \
libffi-dev \
openssl-dev \
python-dev \
py-pip \
py-qt && \
rm -rf /var/cache/apk/* rm -rf /var/cache/apk/*
# Start rdpy # Start rdpy

6
docker/rdpy/docker-compose.yml
View file

@ -1,6 +1,6 @@
# T-Pot (Standard) # T-Pot (Standard)
# For docker-compose ... # For docker-compose ...
version: '2.1' version: '2.2'
networks: networks:
rdpy_local: rdpy_local:
@ -9,12 +9,14 @@ services:
# Rdpy service # Rdpy service
rdpy: rdpy:
build: .
container_name: rdpy container_name: rdpy
restart: always restart: always
networks: networks:
- rdpy_local - rdpy_local
ports: ports:
- "3389:3389" - "3389:3389"
image: "dtagdevsec/rdpy:1710" image: "dtagdevsec/rdpy:1804"
read_only: true
volumes: volumes:
- /data/rdpy/log:/var/log/rdpy - /data/rdpy/log:/var/log/rdpy

15
etc/compose/collect.yml
View file

@ -139,14 +139,22 @@ services:
- /sys:/host/sys:ro - /sys:/host/sys:ro
- /var/run/docker.sock:/var/run/docker.sock - /var/run/docker.sock:/var/run/docker.sock
# Nginx service # nginx service
nginx: nginx:
container_name: nginx container_name: nginx
restart: always restart: always
tmpfs:
- /var/tmp/nginx/client_body
- /var/tmp/nginx/proxy
- /var/tmp/nginx/fastcgi
- /var/tmp/nginx/uwsgi
- /var/tmp/nginx/scgi
- /run
network_mode: "host" network_mode: "host"
ports: ports:
- "64297:64297" - "64297:64297"
image: "dtagdevsec/nginx:1710" image: "dtagdevsec/nginx:1804"
read_only: true
volumes: volumes:
- /data/nginx/cert/:/etc/nginx/cert/ - /data/nginx/cert/:/etc/nginx/cert/
- /data/nginx/conf/nginxpasswd:/etc/nginx/nginxpasswd - /data/nginx/conf/nginxpasswd:/etc/nginx/nginxpasswd
@ -195,7 +203,8 @@ services:
container_name: p0f container_name: p0f
restart: always restart: always
network_mode: "host" network_mode: "host"
image: "dtagdevsec/p0f:1710" image: "dtagdevsec/p0f:1804"
read_only: true
volumes: volumes:
- /data/p0f/log:/var/log/p0f - /data/p0f/log:/var/log/p0f

15
etc/compose/tpot.yml
View file

@ -228,14 +228,22 @@ services:
- /sys:/host/sys:ro - /sys:/host/sys:ro
- /var/run/docker.sock:/var/run/docker.sock - /var/run/docker.sock:/var/run/docker.sock
# Nginx service # nginx service
nginx: nginx:
container_name: nginx container_name: nginx
restart: always restart: always
tmpfs:
- /var/tmp/nginx/client_body
- /var/tmp/nginx/proxy
- /var/tmp/nginx/fastcgi
- /var/tmp/nginx/uwsgi
- /var/tmp/nginx/scgi
- /run
network_mode: "host" network_mode: "host"
ports: ports:
- "64297:64297" - "64297:64297"
image: "dtagdevsec/nginx:1710" image: "dtagdevsec/nginx:1804"
read_only: true
volumes: volumes:
- /data/nginx/cert/:/etc/nginx/cert/ - /data/nginx/cert/:/etc/nginx/cert/
- /data/nginx/conf/nginxpasswd:/etc/nginx/nginxpasswd - /data/nginx/conf/nginxpasswd:/etc/nginx/nginxpasswd
@ -296,7 +304,8 @@ services:
container_name: p0f container_name: p0f
restart: always restart: always
network_mode: "host" network_mode: "host"
image: "dtagdevsec/p0f:1710" image: "dtagdevsec/p0f:1804"
read_only: true
volumes: volumes:
- /data/p0f/log:/var/log/p0f - /data/p0f/log:/var/log/p0f