diff --git a/docker/adbhoney/Dockerfile b/docker/adbhoney/Dockerfile index ba9a4a0f..e249b746 100644 --- a/docker/adbhoney/Dockerfile +++ b/docker/adbhoney/Dockerfile @@ -1,4 +1,4 @@ -FROM alpine:latest +FROM alpine:3.12 # # Include dist ADD dist/ /root/dist/ @@ -13,7 +13,9 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \ python3-dev && \ # # Install adbhoney from git - git clone --depth=1 https://github.com/huuck/ADBHoney /opt/adbhoney && \ + git clone https://github.com/huuck/ADBHoney /opt/adbhoney && \ + cd /opt/adbhoney && \ + git checkout ad7c17e78d01f6860d58ba826a4b6a4e4f83acbd && \ cp /root/dist/adbhoney.cfg /opt/adbhoney && \ sed -i 's/dst_ip/dest_ip/' /opt/adbhoney/adbhoney/core.py && \ sed -i 's/dst_port/dest_port/' /opt/adbhoney/adbhoney/core.py && \ diff --git a/docker/adbhoney/docker-compose.yml b/docker/adbhoney/docker-compose.yml index 58e62f11..03fb50f2 100644 --- a/docker/adbhoney/docker-compose.yml +++ b/docker/adbhoney/docker-compose.yml @@ -14,7 +14,7 @@ services: - adbhoney_local ports: - "5555:5555" - image: "dtagdevsec/adbhoney:2006" + image: "ghcr.io/telekom-security/adbhoney:2006" read_only: true volumes: - /data/adbhoney/log:/opt/adbhoney/log diff --git a/docker/ciscoasa/Dockerfile b/docker/ciscoasa/Dockerfile index 85dcaa71..57d7100f 100644 --- a/docker/ciscoasa/Dockerfile +++ b/docker/ciscoasa/Dockerfile @@ -1,4 +1,4 @@ -FROM alpine:latest +FROM alpine:3.12 # # Include dist ADD dist/ /root/dist/ @@ -23,8 +23,9 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \ # Get and install packages mkdir -p /opt/ && \ cd /opt/ && \ - git clone --depth=1 https://github.com/cymmetria/ciscoasa_honeypot && \ + git clone https://github.com/cymmetria/ciscoasa_honeypot && \ cd ciscoasa_honeypot && \ + git checkout d6e91f1aab7fe6fc01fabf2046e76b68dd6dc9e2 && \ pip3 install --no-cache-dir -r requirements.txt && \ cp /root/dist/asa_server.py /opt/ciscoasa_honeypot && \ chown -R ciscoasa:ciscoasa /opt/ciscoasa_honeypot && \ diff --git a/docker/ciscoasa/docker-compose.yml b/docker/ciscoasa/docker-compose.yml index bf85bc48..bb2a466f 100644 --- a/docker/ciscoasa/docker-compose.yml +++ b/docker/ciscoasa/docker-compose.yml @@ -13,7 +13,7 @@ services: ports: - "5000:5000/udp" - "8443:8443" - image: "dtagdevsec/ciscoasa:2006" + image: "ghcr.io/telekom-security/ciscoasa:2006" read_only: true volumes: - /data/ciscoasa/log:/var/log/ciscoasa diff --git a/docker/citrixhoneypot/Dockerfile b/docker/citrixhoneypot/Dockerfile index 4326568a..7416f480 100644 --- a/docker/citrixhoneypot/Dockerfile +++ b/docker/citrixhoneypot/Dockerfile @@ -1,4 +1,4 @@ -FROM alpine:latest +FROM alpine:3.12 # # Install packages RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \ @@ -15,7 +15,9 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \ # Install CitrixHoneypot from GitHub # git clone --depth=1 https://github.com/malwaretech/citrixhoneypot /opt/citrixhoneypot && \ # git clone --depth=1 https://github.com/vorband/CitrixHoneypot /opt/citrixhoneypot && \ - git clone --depth=1 https://github.com/t3chn0m4g3/CitrixHoneypot /opt/citrixhoneypot && \ + git clone https://github.com/t3chn0m4g3/CitrixHoneypot /opt/citrixhoneypot && \ + cd /opt/citrixhoneypot && \ + git checkout f59ad7320dc5bbb8c23c8baa5f111b52c52fbef3 && \ # # Setup user, groups and configs mkdir -p /opt/citrixhoneypot/logs /opt/citrixhoneypot/ssl && \ diff --git a/docker/citrixhoneypot/docker-compose.yml b/docker/citrixhoneypot/docker-compose.yml index 16eea88f..dd2c5d6c 100644 --- a/docker/citrixhoneypot/docker-compose.yml +++ b/docker/citrixhoneypot/docker-compose.yml @@ -14,7 +14,7 @@ services: - citrixhoneypot_local ports: - "443:443" - image: "dtagdevsec/citrixhoneypot:2006" + image: "ghcr.io/telekom-security/citrixhoneypot:2006" read_only: true volumes: - /data/citrixhoneypot/logs:/opt/citrixhoneypot/logs diff --git a/docker/conpot/Dockerfile b/docker/conpot/Dockerfile index e16be97e..11fc4b9f 100644 --- a/docker/conpot/Dockerfile +++ b/docker/conpot/Dockerfile @@ -41,7 +41,6 @@ RUN apk -U add \ sed -i 's/port="6230"/port="623"/' /opt/conpot/conpot/templates/ipmi/ipmi/ipmi.xml && \ pip3 install --no-cache-dir -U setuptools && \ pip3 install --no-cache-dir . && \ - pip3 install --no-cache-dir pysnmp-mibs && \ cd / && \ rm -rf /opt/conpot /tmp/* /var/tmp/* && \ setcap cap_net_bind_service=+ep /usr/bin/python3.8 && \ diff --git a/docker/conpot/docker-compose.yml b/docker/conpot/docker-compose.yml index 4b315497..57c7fd39 100644 --- a/docker/conpot/docker-compose.yml +++ b/docker/conpot/docker-compose.yml @@ -35,7 +35,7 @@ services: - "2121:21" - "44818:44818" - "47808:47808" - image: "dtagdevsec/conpot:2006" + image: "ghcr.io/telekom-security/conpot:2006" read_only: true volumes: - /data/conpot/log:/var/log/conpot @@ -58,7 +58,7 @@ services: ports: # - "161:161" - "2404:2404" - image: "dtagdevsec/conpot:2006" + image: "ghcr.io/telekom-security/conpot:2006" read_only: true volumes: - /data/conpot/log:/var/log/conpot @@ -80,7 +80,7 @@ services: - conpot_local_guardian_ast ports: - "10001:10001" - image: "dtagdevsec/conpot:2006" + image: "ghcr.io/telekom-security/conpot:2006" read_only: true volumes: - /data/conpot/log:/var/log/conpot @@ -102,7 +102,7 @@ services: - conpot_local_ipmi ports: - "623:623" - image: "dtagdevsec/conpot:2006" + image: "ghcr.io/telekom-security/conpot:2006" read_only: true volumes: - /data/conpot/log:/var/log/conpot @@ -125,7 +125,7 @@ services: ports: - "1025:1025" - "50100:50100" - image: "dtagdevsec/conpot:2006" + image: "ghcr.io/telekom-security/conpot:2006" read_only: true volumes: - /data/conpot/log:/var/log/conpot diff --git a/docker/cowrie/Dockerfile b/docker/cowrie/Dockerfile index d3aa058e..6b3f1cc6 100644 --- a/docker/cowrie/Dockerfile +++ b/docker/cowrie/Dockerfile @@ -1,4 +1,4 @@ -FROM alpine:latest +FROM alpine:3.12 # # Include dist ADD dist/ /root/dist/ diff --git a/docker/cowrie/docker-compose.yml b/docker/cowrie/docker-compose.yml index 181a9bd7..1d232138 100644 --- a/docker/cowrie/docker-compose.yml +++ b/docker/cowrie/docker-compose.yml @@ -18,7 +18,7 @@ services: ports: - "22:22" - "23:23" - image: "dtagdevsec/cowrie:2006" + image: "ghcr.io/telekom-security/cowrie:2006" read_only: true volumes: - /data/cowrie/downloads:/home/cowrie/cowrie/dl diff --git a/docker/cyberchef/Dockerfile b/docker/cyberchef/Dockerfile index 90258091..abc36bd7 100644 --- a/docker/cyberchef/Dockerfile +++ b/docker/cyberchef/Dockerfile @@ -13,7 +13,7 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \ # # Install CyberChef cd /root && \ - git clone https://github.com/gchq/cyberchef --depth=1 && \ + git clone https://github.com/gchq/cyberchef -b v9.21.0 && \ chown -R nobody:nobody cyberchef && \ cd cyberchef && \ npm install && \ diff --git a/docker/cyberchef/docker-compose.yml b/docker/cyberchef/docker-compose.yml index 6bb8c3b9..e8a16d07 100644 --- a/docker/cyberchef/docker-compose.yml +++ b/docker/cyberchef/docker-compose.yml @@ -14,5 +14,5 @@ services: - cyberchef_local ports: - "127.0.0.1:64299:8000" - image: "dtagdevsec/cyberchef:2006" + image: "ghcr.io/telekom-security/cyberchef:2006" read_only: true diff --git a/docker/docker-compose.yml b/docker/docker-compose.yml index 3bb1f328..bc6d9df1 100644 --- a/docker/docker-compose.yml +++ b/docker/docker-compose.yml @@ -10,98 +10,98 @@ services: # Adbhoney service adbhoney: build: adbhoney/. - image: "dtagdevsec/adbhoney:2006" + image: "ghcr.io/telekom-security/adbhoney:2006" # Ciscoasa service ciscoasa: build: ciscoasa/. - image: "dtagdevsec/ciscoasa:2006" + image: "ghcr.io/telekom-security/ciscoasa:2006" # CitrixHoneypot service citrixhoneypot: build: citrixhoneypot/. - image: "dtagdevsec/citrixhoneypot:2006" + image: "ghcr.io/telekom-security/citrixhoneypot:2006" # Conpot IEC104 service conpot_IEC104: build: conpot/. - image: "dtagdevsec/conpot:2006" + image: "ghcr.io/telekom-security/conpot:2006" # Cowrie service cowrie: build: cowrie/. - image: "dtagdevsec/cowrie:2006" + image: "ghcr.io/telekom-security/cowrie:2006" # Dicompot service dicompot: build: dicompot/. - image: "dtagdevsec/dicompot:2006" + image: "ghcr.io/telekom-security/dicompot:2006" # Dionaea service dionaea: build: dionaea/. - image: "dtagdevsec/dionaea:2006" + image: "ghcr.io/telekom-security/dionaea:2006" # ElasticPot service elasticpot: build: elasticpot/. - image: "dtagdevsec/elasticpot:2006" + image: "ghcr.io/telekom-security/elasticpot:2006" # Glutton service glutton: build: glutton/. - image: "dtagdevsec/glutton:2006" + image: "ghcr.io/telekom-security/glutton:2006" # Heralding service heralding: build: heralding/. - image: "dtagdevsec/heralding:2006" + image: "ghcr.io/telekom-security/heralding:2006" # HoneyPy service honeypy: build: honeypy/. - image: "dtagdevsec/honeypy:2006" + image: "ghcr.io/telekom-security/honeypy:2006" # Honeytrap service honeytrap: build: honeytrap/. - image: "dtagdevsec/honeytrap:2006" + image: "ghcr.io/telekom-security/honeytrap:2006" # Mailoney service mailoney: build: mailoney/. - image: "dtagdevsec/mailoney:2006" + image: "ghcr.io/telekom-security/mailoney:2006" # Medpot service medpot: build: medpot/. - image: "dtagdevsec/medpot:2006" + image: "ghcr.io/telekom-security/medpot:2006" # Rdpy service rdpy: build: rdpy/. - image: "dtagdevsec/rdpy:2006" + image: "ghcr.io/telekom-security/rdpy:2006" #### Snare / Tanner ## Tanner Redis Service tanner_redis: build: tanner/redis/. - image: "dtagdevsec/redis:2006" + image: "ghcr.io/telekom-security/redis:2006" ## PHP Sandbox service tanner_phpox: build: tanner/phpox/. - image: "dtagdevsec/phpox:2006" + image: "ghcr.io/telekom-security/phpox:2006" ## Tanner API Service tanner_api: build: tanner/tanner/. - image: "dtagdevsec/tanner:2006" + image: "ghcr.io/telekom-security/tanner:2006" ## Snare Service snare: build: tanner/snare/. - image: "dtagdevsec/snare:2006" + image: "ghcr.io/telekom-security/snare:2006" ################## @@ -111,17 +111,17 @@ services: # Fatt service fatt: build: fatt/. - image: "dtagdevsec/fatt:2006" + image: "ghcr.io/telekom-security/fatt:2006" # P0f service p0f: build: p0f/. - image: "dtagdevsec/p0f:2006" + image: "ghcr.io/telekom-security/p0f:2006" # Suricata service suricata: build: suricata/. - image: "dtagdevsec/suricata:2006" + image: "ghcr.io/telekom-security/suricata:2006" ################## @@ -131,40 +131,40 @@ services: # Cyberchef service cyberchef: build: cyberchef/. - image: "dtagdevsec/cyberchef:2006" + image: "ghcr.io/telekom-security/cyberchef:2006" #### ELK ## Elasticsearch service elasticsearch: build: elk/elasticsearch/. - image: "dtagdevsec/elasticsearch:2006" + image: "ghcr.io/telekom-security/elasticsearch:2006" ## Kibana service kibana: build: elk/kibana/. - image: "dtagdevsec/kibana:2006" + image: "ghcr.io/telekom-security/kibana:2006" ## Logstash service logstash: build: elk/logstash/. - image: "dtagdevsec/logstash:2006" + image: "ghcr.io/telekom-security/logstash:2006" ## Elasticsearch-head service head: build: elk/head/. - image: "dtagdevsec/head:2006" + image: "ghcr.io/telekom-security/head:2006" # Ewsposter service ewsposter: build: ews/. - image: "dtagdevsec/ewsposter:2006" + image: "ghcr.io/telekom-security/ewsposter:2006" # Nginx service nginx: build: heimdall/. - image: "dtagdevsec/nginx:2006" + image: "ghcr.io/telekom-security/nginx:2006" # Spiderfoot service spiderfoot: build: spiderfoot/. - image: "dtagdevsec/spiderfoot:2006" + image: "ghcr.io/telekom-security/spiderfoot:2006"