Alex-Devera/tpotce
1
0
Fork 0
mirror of https://github.com/telekom-security/tpotce.git synced 2025-04-20 06:02:24 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

tweaking

Browse source
This commit is contained in:
t3chn0m4g3 2024-03-15 22:41:12 +01:00
parent b0a6ce432a
commit 3546e31a7c
13 changed files with 36 additions and 27 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
compose/mac_win.yml
View file

@ -409,6 +409,7 @@ services:
- mailoney_local - mailoney_local
ports: ports:
- "25:25" - "25:25"
- "587:25"
image: ${TPOT_REPO}/mailoney:${TPOT_VERSION} image: ${TPOT_REPO}/mailoney:${TPOT_VERSION}
pull_policy: ${TPOT_PULL_POLICY} pull_policy: ${TPOT_PULL_POLICY}
read_only: true read_only: true

1
compose/mobile.yml
View file

@ -364,6 +364,7 @@ services:
- mailoney_local - mailoney_local
ports: ports:
- "25:25" - "25:25"
- "587:25"
image: ${TPOT_REPO}/mailoney:${TPOT_VERSION} image: ${TPOT_REPO}/mailoney:${TPOT_VERSION}
pull_policy: ${TPOT_PULL_POLICY} pull_policy: ${TPOT_PULL_POLICY}
read_only: true read_only: true

1
compose/raspberry_showcase.yml
View file

@ -364,6 +364,7 @@ services:
- mailoney_local - mailoney_local
ports: ports:
- "25:25" - "25:25"
- "587:25"
image: ${TPOT_REPO}/mailoney:${TPOT_VERSION} image: ${TPOT_REPO}/mailoney:${TPOT_VERSION}
pull_policy: ${TPOT_PULL_POLICY} pull_policy: ${TPOT_PULL_POLICY}
read_only: true read_only: true

1
compose/sensor.yml
View file

@ -428,6 +428,7 @@ services:
- mailoney_local - mailoney_local
ports: ports:
- "25:25" - "25:25"
- "587:25"
image: ${TPOT_REPO}/mailoney:${TPOT_VERSION} image: ${TPOT_REPO}/mailoney:${TPOT_VERSION}
pull_policy: ${TPOT_PULL_POLICY} pull_policy: ${TPOT_PULL_POLICY}
read_only: true read_only: true

1
compose/standard.yml
View file

@ -430,6 +430,7 @@ services:
- mailoney_local - mailoney_local
ports: ports:
- "25:25" - "25:25"
- "587:25"
image: ${TPOT_REPO}/mailoney:${TPOT_VERSION} image: ${TPOT_REPO}/mailoney:${TPOT_VERSION}
pull_policy: ${TPOT_PULL_POLICY} pull_policy: ${TPOT_PULL_POLICY}
read_only: true read_only: true

39
compose/tpot_services.yml
View file

@ -363,25 +363,25 @@ services:
volumes: volumes:
- ${TPOT_DATA_PATH}/endlessh/log:/var/log/endlessh - ${TPOT_DATA_PATH}/endlessh/log:/var/log/endlessh
# Glutton service # # Glutton service
glutton: # glutton:
container_name: glutton # container_name: glutton
restart: always # restart: always
depends_on: # depends_on:
tpotinit: # tpotinit:
condition: service_healthy # condition: service_healthy
tmpfs: # tmpfs:
- /var/lib/glutton:uid=2000,gid=2000 # - /var/lib/glutton:uid=2000,gid=2000
- /run:uid=2000,gid=2000 # - /run:uid=2000,gid=2000
network_mode: "host" # network_mode: "host"
cap_add: # cap_add:
- NET_ADMIN # - NET_ADMIN
image: ${TPOT_REPO}/glutton:${TPOT_VERSION} # image: ${TPOT_REPO}/glutton:${TPOT_VERSION}
pull_policy: ${TPOT_PULL_POLICY} # pull_policy: ${TPOT_PULL_POLICY}
read_only: true # read_only: true
volumes: # volumes:
- ${TPOT_DATA_PATH}/glutton/log:/var/log/glutton # - ${TPOT_DATA_PATH}/glutton/log:/var/log/glutton
- ${TPOT_DATA_PATH}/glutton/payloads:/opt/glutton/payloads # - ${TPOT_DATA_PATH}/glutton/payloads:/opt/glutton/payloads
# Hellpot service # Hellpot service
hellpot: hellpot:
@ -560,6 +560,7 @@ services:
- mailoney_local - mailoney_local
ports: ports:
- "25:25" - "25:25"
- "587:25"
image: ${TPOT_REPO}/mailoney:${TPOT_VERSION} image: ${TPOT_REPO}/mailoney:${TPOT_VERSION}
pull_policy: ${TPOT_PULL_POLICY} pull_policy: ${TPOT_PULL_POLICY}
read_only: true read_only: true

1
docker-compose.yml
View file

@ -430,6 +430,7 @@ services:
- mailoney_local - mailoney_local
ports: ports:
- "25:25" - "25:25"
- "587:25"
image: ${TPOT_REPO}/mailoney:${TPOT_VERSION} image: ${TPOT_REPO}/mailoney:${TPOT_VERSION}
pull_policy: ${TPOT_PULL_POLICY} pull_policy: ${TPOT_PULL_POLICY}
read_only: true read_only: true

1
docker/glutton/Dockerfile
View file

@ -18,7 +18,6 @@ RUN apk -U --no-cache add \
git clone https://github.com/mushorg/glutton && \ git clone https://github.com/mushorg/glutton && \
cd /opt/glutton/ && \ cd /opt/glutton/ && \
git checkout c1204c65ce32bfdc0e08fb2a9abe89b3b8eeed62 && \ git checkout c1204c65ce32bfdc0e08fb2a9abe89b3b8eeed62 && \
# git checkout c25045b95b43ed9bfee89b2d14a50f5794a9cf2b && \
cp /root/dist/system.go . && \ cp /root/dist/system.go . && \
go mod download && \ go mod download && \
make build && \ make build && \

2
docker/glutton/docker-compose.yml
View file

@ -20,4 +20,4 @@ services:
volumes: volumes:
- $HOME/tpotce/data/glutton/log:/var/log/glutton - $HOME/tpotce/data/glutton/log:/var/log/glutton
- $HOME/tpotce/data/glutton/payloads:/opt/glutton/payloads - $HOME/tpotce/data/glutton/payloads:/opt/glutton/payloads
# - $HOME/tpotce/docker/glutton/dist/rules.yaml:/opt/glutton/rules/rules.yaml # - $HOME/tpotce/docker/glutton/dist/rules.yaml:/opt/glutton/config/rules.yaml

1
docker/mailoney/docker-compose.yml
View file

@ -22,6 +22,7 @@ services:
- mailoney_local - mailoney_local
ports: ports:
- "25:25" - "25:25"
- "587:25"
image: "dtagdevsec/mailoney:alpha" image: "dtagdevsec/mailoney:alpha"
read_only: true read_only: true
volumes: volumes:

1
docker/tpotinit/Dockerfile
View file

@ -45,4 +45,5 @@ WORKDIR /opt/tpot
#HEALTHCHECK --interval=5s --timeout=30s --retries=3 CMD pgrep -f autoheal || exit 1 #HEALTHCHECK --interval=5s --timeout=30s --retries=3 CMD pgrep -f autoheal || exit 1
HEALTHCHECK --retries=1000 --interval=5s CMD test -f /tmp/success || exit 1 HEALTHCHECK --retries=1000 --interval=5s CMD test -f /tmp/success || exit 1
STOPSIGNAL SIGTERM STOPSIGNAL SIGTERM
# Using ENTRYPOINT so we can catch SIGTERM for cleanup
ENTRYPOINT ["/opt/tpot/entrypoint.sh"] ENTRYPOINT ["/opt/tpot/entrypoint.sh"]

12
docker/tpotinit/dist/bin/rules.sh vendored
View file

@ -57,11 +57,11 @@ fi
### Setting up iptables-legacy rules for glutton ### Setting up iptables-legacy rules for glutton
if [ "$myNFQCHECK" == "glutton" ]; if [ "$myNFQCHECK" == "glutton" ];
then then
iptables-legacy -w -t raw -A PREROUTING -s 127.0.0.1 -j ACCEPT iptables -w -t mangle -A PREROUTING -s 127.0.0.1 -j ACCEPT
iptables-legacy -w -t raw -A PREROUTING -d 127.0.0.1 -j ACCEPT iptables -w -t mangle -A PREROUTING -d 127.0.0.1 -j ACCEPT
for myPORT in $myRULESPORTS; do for myPORT in $myRULESPORTS; do
iptables-legacy -w -t raw -A PREROUTING -p tcp --dport $myPORT -j ACCEPT iptables -w -t mangle -A PREROUTING -p tcp --dport $myPORT -j ACCEPT
done done
# No need for NFQ forwarding, such rules are set up by glutton # No need for NFQ forwarding, such rules are set up by glutton
fi fi
@ -84,11 +84,11 @@ fi
### Removing iptables-legacy rules for glutton ### Removing iptables-legacy rules for glutton
if [ "$myNFQCHECK" == "glutton" ]; if [ "$myNFQCHECK" == "glutton" ];
then then
iptables-legacy -w -t raw -D PREROUTING -s 127.0.0.1 -j ACCEPT iptables -w -t mangle -D PREROUTING -s 127.0.0.1 -j ACCEPT
iptables-legacy -w -t raw -D PREROUTING -d 127.0.0.1 -j ACCEPT iptables -w -t mangle -D PREROUTING -d 127.0.0.1 -j ACCEPT
for myPORT in $myRULESPORTS; do for myPORT in $myRULESPORTS; do
iptables-legacy -w -t raw -D PREROUTING -p tcp --dport $myPORT -j ACCEPT iptables -w -t mangle -D PREROUTING -p tcp --dport $myPORT -j ACCEPT
done done
# No need for removing NFQ forwarding, such rules are removed by glutton # No need for removing NFQ forwarding, such rules are removed by glutton
fi fi

1
docker/tpotinit/dist/entrypoint.sh vendored
View file

@ -17,6 +17,7 @@ cleanup() {
echo echo
fi fi
kill -TERM "$PID" kill -TERM "$PID"
rm -f /tmp/success
echo "# Cleanup done." echo "# Cleanup done."
echo echo
} }