continue pin / prep images ghcr

This commit is contained in:
listbot 2020-09-04 12:37:28 +00:00
parent 1ac79d6be7
commit 47dca8b835
48 changed files with 91 additions and 64 deletions

View file

@ -1,4 +1,4 @@
FROM alpine:latest
FROM alpine:3.12
#
# Setup apk
RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \
@ -14,6 +14,7 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \
cd /opt/go/ && \
git clone https://github.com/nsmfoo/dicompot.git && \
cd dicompot && \
git checkout 17cddd73896e94fdfbfeb920023ccaf5aad5abbd && \
go mod download && \
go install -a -x github.com/nsmfoo/dicompot/server && \
#

View file

@ -17,7 +17,7 @@ services:
- dicompot_local
ports:
- "11112:11112"
image: "dtagdevsec/dicompot:2006"
image: "ghcr.io/telekom-security/dicompot:2006"
read_only: true
volumes:
- /data/dicompot/log:/var/log/dicompot

View file

@ -31,7 +31,7 @@ services:
- "5060:5060/udp"
- "5061:5061"
- "27017:27017"
image: "dtagdevsec/dionaea:2006"
image: "ghcr.io/telekom-security/dionaea:2006"
read_only: true
volumes:
- /data/dionaea/roots/ftp:/opt/dionaea/var/dionaea/roots/ftp

View file

@ -1,4 +1,4 @@
FROM alpine:latest
FROM alpine:3.12
#
# Include dist
ADD dist/ /root/dist/
@ -20,8 +20,9 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \
python3-dev && \
mkdir -p /opt && \
cd /opt/ && \
git clone --depth=1 https://gitlab.com/bontchev/elasticpot.git/ && \
git clone https://gitlab.com/bontchev/elasticpot.git/ && \
cd elasticpot && \
git checkout d12649730d819bd78ea622361b6c65120173ad45 && \
pip3 install -r requirements.txt && \
#
# Setup user, groups and configs

View file

@ -14,7 +14,7 @@ services:
- elasticpot_local
ports:
- "9200:9200"
image: "dtagdevsec/elasticpot:2006"
image: "ghcr.io/telekom-security/elasticpot:2006"
read_only: true
volumes:
- /data/elasticpot/log:/opt/elasticpot/log

View file

@ -24,7 +24,7 @@ services:
mem_limit: 4g
ports:
- "127.0.0.1:64298:9200"
image: "dtagdevsec/elasticsearch:2006"
image: "ghcr.io/telekom-security/elasticsearch:2006"
volumes:
- /data:/data
@ -39,7 +39,7 @@ services:
condition: service_healthy
ports:
- "127.0.0.1:64296:5601"
image: "dtagdevsec/kibana:2006"
image: "ghcr.io/telekom-security/kibana:2006"
## Logstash service
logstash:
@ -53,7 +53,7 @@ services:
condition: service_healthy
env_file:
- /opt/tpot/etc/compose/elk_environment
image: "dtagdevsec/logstash:2006"
image: "ghcr.io/telekom-security/logstash:2006"
volumes:
- /data:/data
# - /root/tpotce/docker/elk/logstash/dist/logstash.conf:/etc/logstash/conf.d/logstash.conf
@ -68,5 +68,5 @@ services:
condition: service_healthy
ports:
- "127.0.0.1:64302:9100"
image: "dtagdevsec/head:2006"
image: "ghcr.io/telekom-security/head:2006"
read_only: true

View file

@ -1,7 +1,7 @@
FROM alpine:3.12
#
# VARS
ENV ES_VER=7.9.0 \
ENV ES_VER=7.9.1 \
JAVA_HOME=/usr/lib/jvm/java-11-openjdk
# Include dist
ADD dist/ /root/dist/

View file

@ -24,6 +24,6 @@ services:
mem_limit: 2g
ports:
- "127.0.0.1:64298:9200"
image: "dtagdevsec/elasticsearch:2006"
image: "ghcr.io/telekom-security/elasticsearch:2006"
volumes:
- /data:/data

View file

@ -10,7 +10,8 @@ RUN apk -U add \
# Get and install packages
mkdir -p /usr/src/app/ && \
cd /usr/src/app/ && \
git clone --depth=1 https://github.com/mobz/elasticsearch-head . && \
git clone https://github.com/mobz/elasticsearch-head . && \
git checkout d0a25608854479f0b3f2dca24e8039a2fd66b0e2 && \
npm install http-server && \
sed -i "s#\"http\:\/\/localhost\:9200\"#window.location.protocol \+ \'\/\/\' \+ window.location.hostname \+ \'\:\' \+ window.location.port \+ \'\/es\/\'#" /usr/src/app/_site/app.js && \
#

View file

@ -12,5 +12,5 @@ services:
# condition: service_healthy
ports:
- "127.0.0.1:64302:9100"
image: "dtagdevsec/head:2006"
image: "ghcr.io/telekom-security/head:2006"
read_only: true

View file

@ -1,7 +1,7 @@
FROM node:10.21.0-alpine
FROM node:10.22.0-alpine
#
# VARS
ENV KB_VER=7.9.0
ENV KB_VER=7.9.1
#
# Include dist
ADD dist/ /root/dist/

View file

@ -12,4 +12,4 @@ services:
# condition: service_healthy
ports:
- "127.0.0.1:64296:5601"
image: "dtagdevsec/kibana:2006"
image: "ghcr.io/telekom-security/kibana:2006"

View file

@ -1,7 +1,7 @@
FROM alpine:3.12
#
# VARS
ENV LS_VER=7.9.0
ENV LS_VER=7.9.1
# Include dist
ADD dist/ /root/dist/
#

View file

@ -14,7 +14,7 @@ services:
# condition: service_healthy
env_file:
- /opt/tpot/etc/compose/elk_environment
image: "dtagdevsec/logstash:2006"
image: "ghcr.io/telekom-security/logstash:2006"
volumes:
- /data:/data
# - /root/tpotce/docker/elk/logstash/dist/logstash.conf:/etc/logstash/conf.d/logstash.conf

View file

@ -1,4 +1,4 @@
FROM alpine:latest
FROM alpine:3.12
#
# Include dist
ADD dist/ /root/dist/
@ -23,7 +23,9 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \
pip3 install --no-cache-dir configparser hpfeeds3 pyOpenSSL xmljson && \
#
# Setup ewsposter
git clone --depth=1 https://github.com/dtag-dev-sec/ewsposter /opt/ewsposter && \
git clone https://github.com/telekom-security/ewsposter /opt/ewsposter && \
cd /opt/ewsposter && \
git checkout f9c0623d44a837f666ec39659665020c7460dec8 && \
mkdir -p /opt/ewsposter/spool /opt/ewsposter/log && \
#
# Setup user and groups

View file

@ -23,7 +23,7 @@ services:
- EWS_HPFEEDS_FORMAT=json
env_file:
- /opt/tpot/etc/compose/elk_environment
image: "dtagdevsec/ewsposter:2006"
image: "ghcr.io/telekom-security/ewsposter:2006"
volumes:
- /data:/data
- /data/ews/conf/ews.ip:/opt/ewsposter/ews.ip

View file

@ -1,4 +1,4 @@
FROM alpine:latest
FROM alpine:3.12
#
# Include dist
#ADD dist/ /root/dist/
@ -21,8 +21,9 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \
# Install fatt
mkdir -p /opt && \
cd /opt && \
git clone --depth=1 https://github.com/0x4D31/fatt && \
git clone https://github.com/0x4D31/fatt && \
cd fatt && \
git checkout 314cd1ff7873b5a145a51ec4e85f6107828a2c79 && \
mkdir -p log && \
pip3 install pyshark==0.4.2.2 && \
#

View file

@ -12,6 +12,6 @@ services:
- NET_ADMIN
- SYS_NICE
- NET_RAW
image: "dtagdevsec/fatt:2006"
image: "ghcr.io/telekom-security/fatt:2006"
volumes:
- /data/fatt/log:/opt/fatt/log

View file

@ -1,4 +1,4 @@
FROM alpine:latest
FROM alpine:3.12
#
# Include dist
ADD dist/ /root/dist/
@ -22,6 +22,7 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \
cd /opt/go/ && \
git clone https://github.com/mushorg/glutton && \
cd /opt/go/glutton/ && \
git checkout 08f364fff489a82667866ecff2bcc4815569a0c8 && \
mv /root/dist/system.go /opt/go/glutton/ && \
go mod download && \
make build && \

View file

@ -13,7 +13,7 @@ services:
network_mode: "host"
cap_add:
- NET_ADMIN
image: "dtagdevsec/glutton:2006"
image: "ghcr.io/telekom-security/glutton:2006"
read_only: true
volumes:
- /data/glutton/log:/var/log/glutton

View file

@ -1,4 +1,4 @@
FROM alpine:latest
FROM alpine:3.12
#
# Include dist
ADD dist/ /root/dist/
@ -28,6 +28,9 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \
#
# Clone and setup Heimdall, Nginx
git clone https://github.com/linuxserver/heimdall && \
cd heimdall && \
git checkout 3a9bdd2c431d70803b259990fa4d81db4b06dba4 && \
cd .. && \
cp -R heimdall/. /var/lib/nginx/html && \
rm -rf heimdall && \
cd /var/lib/nginx/html && \

View file

@ -26,7 +26,7 @@ services:
ports:
- "64297:64297"
- "127.0.0.1:64304:64304"
image: "dtagdevsec/nginx:2006"
image: "ghcr.io/telekom-security/nginx:2006"
read_only: true
volumes:
- /data/nginx/cert/:/etc/nginx/cert/:ro

View file

@ -1,4 +1,4 @@
FROM alpine:latest
FROM alpine:3.12
#
# Include dist
ADD dist/ /root/dist/
@ -21,8 +21,9 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \
# Setup heralding
mkdir -p /opt && \
cd /opt/ && \
git clone --depth=1 https://github.com/johnnykv/heralding && \
git clone https://github.com/johnnykv/heralding && \
cd heralding && \
git checkout bc1320e2d056c730c821cd42a19a262bfceebfd7 && \
pip3 install --no-cache-dir -r requirements.txt && \
pip3 install --no-cache-dir . && \
#

View file

@ -30,7 +30,7 @@ services:
- "3389:3389"
- "5432:5432"
- "5900:5900"
image: "dtagdevsec/heralding:2006"
image: "ghcr.io/telekom-security/heralding:2006"
read_only: true
volumes:
- /data/heralding/log:/var/log/heralding

View file

@ -17,8 +17,9 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \
pip install --no-cache-dir virtualenv && \
#
# Clone honeypy from git
git clone --depth=1 https://github.com/foospidy/HoneyPy /opt/honeypy && \
git clone https://github.com/foospidy/HoneyPy /opt/honeypy && \
cd /opt/honeypy && \
git checkout feccab56ca922bcab01cac4ffd82f588d61ab1c5 && \
sed -i 's/local_host/dest_ip/g' /opt/honeypy/loggers/file/honeypy_file.py && \
sed -i 's/local_port/dest_port/g' /opt/honeypy/loggers/file/honeypy_file.py && \
sed -i 's/remote_host/src_ip/g' /opt/honeypy/loggers/file/honeypy_file.py && \

View file

@ -20,7 +20,7 @@ services:
- "2324:2324"
- "4096:4096"
- "9200:9200"
image: "dtagdevsec/honeypy:2006"
image: "ghcr.io/telekom-security/honeypy:2006"
read_only: true
volumes:
- /data/honeypy/log:/opt/honeypy/log

View file

@ -18,6 +18,7 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \
# git clone --depth=1 https://github.com/SecureAuthCorp/HoneySAP /opt/honeysap && \
git clone --depth=1 https://github.com/t3chn0m4g3/HoneySAP /opt/honeysap && \
cd /opt/honeysap && \
git checkout a3c355a710d399de9d543659a685effaa70e683d && \
mkdir conf && \
cp /root/dist/* conf/ && \
python setup.py install && \

View file

@ -14,6 +14,6 @@ services:
- honeysap_local
ports:
- "3299:3299"
image: "dtagdevsec/honeysap:2006"
image: "ghcr.io/telekom-security/honeysap:2006"
volumes:
- /data/honeysap/log:/opt/honeysap/log

View file

@ -29,6 +29,7 @@ RUN apt-get update -y && \
git clone https://github.com/armedpot/honeytrap /root/honeytrap && \
# git clone https://github.com/t3chn0m4g3/honeytrap /root/honeytrap && \
cd /root/honeytrap/ && \
git checkout 9aa4f734f2ea2f0da790b02d79afe18204a23982 && \
autoreconf -vfi && \
./configure \
--with-stream-mon=nfq \

View file

@ -12,7 +12,7 @@ services:
network_mode: "host"
cap_add:
- NET_ADMIN
image: "dtagdevsec/honeytrap:2006"
image: "ghcr.io/telekom-security/honeytrap:2006"
read_only: true
volumes:
- /data/honeytrap/attacks:/opt/honeytrap/var/attacks

View file

@ -1,4 +1,4 @@
FROM alpine:latest
FROM alpine:3.12
#
# Include dist
ADD dist/ /root/dist/
@ -21,8 +21,9 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \
python3-dev && \
mkdir -p /opt && \
cd /opt/ && \
git clone --depth=1 https://gitlab.com/bontchev/ipphoney.git/ && \
git clone https://gitlab.com/bontchev/ipphoney.git/ && \
cd ipphoney && \
git checkout db8c6e91bff27b5c376339c5effbb45355897ab5 && \
pip3 install -r requirements.txt && \
setcap cap_net_bind_service=+ep /usr/bin/python3.8 && \
#

View file

@ -14,7 +14,7 @@ services:
- ipphoney_local
ports:
- "631:631"
image: "dtagdevsec/ipphoney:2006"
image: "ghcr.io/telekom-security/ipphoney:2006"
read_only: true
volumes:
- /data/ipphoney/log:/opt/ipphoney/log

View file

@ -13,8 +13,9 @@ RUN apk -U --no-cache add \
python-dev && \
#
# Install libemu
git clone --depth=1 https://github.com/buffer/libemu /root/libemu/ && \
git clone https://github.com/buffer/libemu /root/libemu/ && \
cd /root/libemu/ && \
git checkout e2624361e13588da74a2ce3e1dea0abb59dcf1d0 && \
autoreconf -vi && \
./configure && \
make && \
@ -26,7 +27,9 @@ RUN apk -U --no-cache add \
pylibemu && \
#
# Install mailoney from git
git clone --depth=1 https://github.com/t3chn0m4g3/mailoney /opt/mailoney && \
git clone https://github.com/t3chn0m4g3/mailoney /opt/mailoney && \
cd /opt/mailoney && \
git checkout 85c37649a99e1cec3f8d48d509653c9a8127ea4f && \
#
# Setup user, groups and configs
addgroup -g 2000 mailoney && \

View file

@ -20,7 +20,7 @@ services:
- mailoney_local
ports:
- "25:25"
image: "dtagdevsec/mailoney:2006"
image: "ghcr.io/telekom-security/mailoney:2006"
read_only: true
volumes:
- /data/mailoney/log:/opt/mailoney/logs

View file

@ -1,4 +1,4 @@
FROM alpine:latest
FROM alpine:3.12
#
# Setup apk
RUN apk -U --no-cache add \
@ -12,6 +12,9 @@ RUN apk -U --no-cache add \
mkdir -p /opt/go/src && \
cd /opt/go/src && \
git clone https://github.com/schmalle/medpot && \
cd medpot && \
git checkout 75a2e6134cf926c35b6017d62542274434c87388 && \
cd .. && \
go get -d -v github.com/davecgh/go-spew/spew && \
go get -d -v github.com/go-ini/ini && \
go get -d -v github.com/mozillazg/request && \

View file

@ -14,7 +14,7 @@ services:
- medpot_local
ports:
- "2575:2575"
image: "dtagdevsec/medpot:2006"
image: "ghcr.io/telekom-security/medpot:2006"
read_only: true
volumes:
- /data/medpot/log/:/var/log/medpot

View file

@ -1,4 +1,4 @@
FROM alpine:latest
FROM alpine:3.12
#
# Add source
ADD . /opt/p0f
@ -29,7 +29,7 @@ RUN apk -U --no-cache add \
rm -rf /root/* && \
rm -rf /var/cache/apk/*
#
# Start suricata
# Start p0f
WORKDIR /opt/p0f
USER p0f:p0f
CMD exec /opt/p0f/p0f -u p0f -j -o /var/log/p0f/p0f.json -i $(/sbin/ip address | grep '^2: ' | awk '{ print $2 }' | tr -d [:punct:]) > /dev/null

View file

@ -8,7 +8,7 @@ services:
container_name: p0f
restart: always
network_mode: "host"
image: "dtagdevsec/p0f:2006"
image: "ghcr.io/telekom-security/p0f:2006"
read_only: true
volumes:
- /data/p0f/log:/var/log/p0f

View file

@ -34,8 +34,9 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \
# Install rdpy from git
mkdir -p /opt && \
cd /opt && \
git clone --depth=1 https://github.com/t3chn0m4g3/rdpy && \
git clone https://github.com/t3chn0m4g3/rdpy && \
cd rdpy && \
git checkout 1d2a4132aefe0637d09cac1a6ab83ec5391f40ca && \
python setup.py install && \
#
# Setup user, groups and configs

View file

@ -22,7 +22,7 @@ services:
- rdpy_local
ports:
- "3389:3389"
image: "dtagdevsec/rdpy:2006"
image: "ghcr.io/telekom-security/rdpy:2006"
read_only: true
volumes:
- /data/rdpy/log:/var/log/rdpy

View file

@ -1,4 +1,4 @@
FROM alpine:latest
FROM alpine:3.12
#
# Get and install dependencies & packages
RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \

View file

@ -14,6 +14,6 @@ services:
- spiderfoot_local
ports:
- "127.0.0.1:64303:8080"
image: "dtagdevsec/spiderfoot:2006"
image: "ghcr.io/telekom-security/spiderfoot:2006"
volumes:
- /data/spiderfoot/spiderfoot.db:/home/spiderfoot/spiderfoot.db

View file

@ -1,4 +1,4 @@
FROM alpine:latest
FROM alpine:3.12
#
# Include dist
ADD dist/ /root/dist/
@ -9,6 +9,7 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \
ca-certificates \
curl \
file \
hiredis \
libcap \
wget && \
apk -U add --repository http://dl-cdn.alpinelinux.org/alpine/edge/community \

View file

@ -15,6 +15,6 @@ services:
- NET_ADMIN
- SYS_NICE
- NET_RAW
image: "dtagdevsec/suricata:2006"
image: "ghcr.io/telekom-security/suricata:2006"
volumes:
- /data/suricata/log:/var/log/suricata

View file

@ -14,7 +14,7 @@ services:
tty: true
networks:
- tanner_local
image: "dtagdevsec/redis:2006"
image: "ghcr.io/telekom-security/redis:2006"
read_only: true
# PHP Sandbox service
@ -28,7 +28,7 @@ services:
tty: true
networks:
- tanner_local
image: "dtagdevsec/phpox:2006"
image: "ghcr.io/telekom-security/phpox:2006"
read_only: true
# Tanner API Service
@ -42,7 +42,7 @@ services:
tty: true
networks:
- tanner_local
image: "dtagdevsec/tanner:2006"
image: "ghcr.io/telekom-security/tanner:2006"
read_only: true
volumes:
- /data/tanner/log:/var/log/tanner
@ -63,7 +63,7 @@ services:
- tanner_local
# ports:
# - "127.0.0.1:8091:8091"
image: "dtagdevsec/tanner:2006"
image: "ghcr.io/telekom-security/tanner:2006"
command: tannerweb
read_only: true
volumes:
@ -82,7 +82,7 @@ services:
tty: true
networks:
- tanner_local
image: "dtagdevsec/tanner:2006"
image: "ghcr.io/telekom-security/tanner:2006"
command: tanner
read_only: true
volumes:
@ -104,6 +104,6 @@ services:
- tanner_local
ports:
- "80:80"
image: "dtagdevsec/snare:2006"
image: "ghcr.io/telekom-security/snare:2006"
depends_on:
- tanner

View file

@ -15,8 +15,9 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \
re2c && \
#
# Install bfr sandbox from git
git clone --depth=1 https://github.com/mushorg/BFR /opt/BFR && \
git clone https://github.com/mushorg/BFR /opt/BFR && \
cd /opt/BFR && \
git checkout 508729202428a35bcc6bb27dd97b831f7e5009b5 && \
phpize7 && \
./configure \
--with-php-config=/usr/bin/php-config7 \
@ -28,8 +29,9 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \
echo "zend_extension = "$(find /usr -name bfr.so) >> /etc/php7/php.ini && \
#
# Install PHP Sandbox
git clone --depth=1 https://github.com/mushorg/phpox /opt/phpox && \
git clone https://github.com/mushorg/phpox /opt/phpox && \
cd /opt/phpox && \
git checkout 001437b9ed3e228fac3828e18fe90991a330578d && \
pip3 install -r requirements.txt && \
make && \
#

View file

@ -13,8 +13,9 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \
python3-dev && \
#
# Setup Snare
git clone --depth=1 https://github.com/mushorg/snare /opt/snare && \
git clone https://github.com/mushorg/snare /opt/snare && \
cd /opt/snare/ && \
git checkout 7762b762b272f0599c16e11ef997c37d2899d33e && \
pip3 install --no-cache-dir setuptools && \
pip3 install --no-cache-dir -r requirements.txt && \
python3 setup.py install && \

View file

@ -1,4 +1,4 @@
FROM alpine:latest
FROM alpine:3.12
#
# Include dist
ADD dist/ /root/dist/
@ -18,10 +18,11 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \
python3-dev && \
#
# Setup Tanner
git clone --depth=1 https://github.com/mushorg/tanner /opt/tanner && \
git clone https://github.com/mushorg/tanner /opt/tanner && \
cd /opt/tanner/ && \
# git fetch origin pull/364/head:test && \
# git checkout test && \
git checkout 40e2357119065445cbb06234e953a95e5a73ce93 && \
cp /root/dist/config.yaml /opt/tanner/tanner/data && \
pip3 install --no-cache-dir setuptools && \
pip3 install --no-cache-dir -r requirements.txt && \