diff --git a/docker/dicompot/Dockerfile b/docker/dicompot/Dockerfile index 7fc9c2b3..00a11c24 100644 --- a/docker/dicompot/Dockerfile +++ b/docker/dicompot/Dockerfile @@ -1,4 +1,4 @@ -FROM alpine:latest +FROM alpine:3.12 # # Setup apk RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \ @@ -14,6 +14,7 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \ cd /opt/go/ && \ git clone https://github.com/nsmfoo/dicompot.git && \ cd dicompot && \ + git checkout 17cddd73896e94fdfbfeb920023ccaf5aad5abbd && \ go mod download && \ go install -a -x github.com/nsmfoo/dicompot/server && \ # diff --git a/docker/dicompot/docker-compose.yml b/docker/dicompot/docker-compose.yml index e06a4fad..5ae13067 100644 --- a/docker/dicompot/docker-compose.yml +++ b/docker/dicompot/docker-compose.yml @@ -17,7 +17,7 @@ services: - dicompot_local ports: - "11112:11112" - image: "dtagdevsec/dicompot:2006" + image: "ghcr.io/telekom-security/dicompot:2006" read_only: true volumes: - /data/dicompot/log:/var/log/dicompot diff --git a/docker/dionaea/docker-compose.yml b/docker/dionaea/docker-compose.yml index 07bd6336..372934aa 100644 --- a/docker/dionaea/docker-compose.yml +++ b/docker/dionaea/docker-compose.yml @@ -31,7 +31,7 @@ services: - "5060:5060/udp" - "5061:5061" - "27017:27017" - image: "dtagdevsec/dionaea:2006" + image: "ghcr.io/telekom-security/dionaea:2006" read_only: true volumes: - /data/dionaea/roots/ftp:/opt/dionaea/var/dionaea/roots/ftp diff --git a/docker/elasticpot/Dockerfile b/docker/elasticpot/Dockerfile index 52d74478..ad935053 100644 --- a/docker/elasticpot/Dockerfile +++ b/docker/elasticpot/Dockerfile @@ -1,4 +1,4 @@ -FROM alpine:latest +FROM alpine:3.12 # # Include dist ADD dist/ /root/dist/ @@ -20,8 +20,9 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \ python3-dev && \ mkdir -p /opt && \ cd /opt/ && \ - git clone --depth=1 https://gitlab.com/bontchev/elasticpot.git/ && \ + git clone https://gitlab.com/bontchev/elasticpot.git/ && \ cd elasticpot && \ + git checkout d12649730d819bd78ea622361b6c65120173ad45 && \ pip3 install -r requirements.txt && \ # # Setup user, groups and configs diff --git a/docker/elasticpot/docker-compose.yml b/docker/elasticpot/docker-compose.yml index 16ce22cf..e8d3e67d 100644 --- a/docker/elasticpot/docker-compose.yml +++ b/docker/elasticpot/docker-compose.yml @@ -14,7 +14,7 @@ services: - elasticpot_local ports: - "9200:9200" - image: "dtagdevsec/elasticpot:2006" + image: "ghcr.io/telekom-security/elasticpot:2006" read_only: true volumes: - /data/elasticpot/log:/opt/elasticpot/log diff --git a/docker/elk/docker-compose.yml b/docker/elk/docker-compose.yml index 09d59dbb..c49be155 100644 --- a/docker/elk/docker-compose.yml +++ b/docker/elk/docker-compose.yml @@ -24,7 +24,7 @@ services: mem_limit: 4g ports: - "127.0.0.1:64298:9200" - image: "dtagdevsec/elasticsearch:2006" + image: "ghcr.io/telekom-security/elasticsearch:2006" volumes: - /data:/data @@ -39,7 +39,7 @@ services: condition: service_healthy ports: - "127.0.0.1:64296:5601" - image: "dtagdevsec/kibana:2006" + image: "ghcr.io/telekom-security/kibana:2006" ## Logstash service logstash: @@ -53,7 +53,7 @@ services: condition: service_healthy env_file: - /opt/tpot/etc/compose/elk_environment - image: "dtagdevsec/logstash:2006" + image: "ghcr.io/telekom-security/logstash:2006" volumes: - /data:/data # - /root/tpotce/docker/elk/logstash/dist/logstash.conf:/etc/logstash/conf.d/logstash.conf @@ -68,5 +68,5 @@ services: condition: service_healthy ports: - "127.0.0.1:64302:9100" - image: "dtagdevsec/head:2006" + image: "ghcr.io/telekom-security/head:2006" read_only: true diff --git a/docker/elk/elasticsearch/Dockerfile b/docker/elk/elasticsearch/Dockerfile index 89d19c4c..7d35544a 100644 --- a/docker/elk/elasticsearch/Dockerfile +++ b/docker/elk/elasticsearch/Dockerfile @@ -1,7 +1,7 @@ FROM alpine:3.12 # # VARS -ENV ES_VER=7.9.0 \ +ENV ES_VER=7.9.1 \ JAVA_HOME=/usr/lib/jvm/java-11-openjdk # Include dist ADD dist/ /root/dist/ diff --git a/docker/elk/elasticsearch/docker-compose.yml b/docker/elk/elasticsearch/docker-compose.yml index 3f51dcb5..0cf2ccf6 100644 --- a/docker/elk/elasticsearch/docker-compose.yml +++ b/docker/elk/elasticsearch/docker-compose.yml @@ -24,6 +24,6 @@ services: mem_limit: 2g ports: - "127.0.0.1:64298:9200" - image: "dtagdevsec/elasticsearch:2006" + image: "ghcr.io/telekom-security/elasticsearch:2006" volumes: - /data:/data diff --git a/docker/elk/head/Dockerfile b/docker/elk/head/Dockerfile index e1022f55..9a81ea4e 100644 --- a/docker/elk/head/Dockerfile +++ b/docker/elk/head/Dockerfile @@ -10,7 +10,8 @@ RUN apk -U add \ # Get and install packages mkdir -p /usr/src/app/ && \ cd /usr/src/app/ && \ - git clone --depth=1 https://github.com/mobz/elasticsearch-head . && \ + git clone https://github.com/mobz/elasticsearch-head . && \ + git checkout d0a25608854479f0b3f2dca24e8039a2fd66b0e2 && \ npm install http-server && \ sed -i "s#\"http\:\/\/localhost\:9200\"#window.location.protocol \+ \'\/\/\' \+ window.location.hostname \+ \'\:\' \+ window.location.port \+ \'\/es\/\'#" /usr/src/app/_site/app.js && \ # diff --git a/docker/elk/head/docker-compose.yml b/docker/elk/head/docker-compose.yml index 5cfaafdb..3c0bf2a3 100644 --- a/docker/elk/head/docker-compose.yml +++ b/docker/elk/head/docker-compose.yml @@ -12,5 +12,5 @@ services: # condition: service_healthy ports: - "127.0.0.1:64302:9100" - image: "dtagdevsec/head:2006" + image: "ghcr.io/telekom-security/head:2006" read_only: true diff --git a/docker/elk/kibana/Dockerfile b/docker/elk/kibana/Dockerfile index 3c7d9db9..d910ad3d 100644 --- a/docker/elk/kibana/Dockerfile +++ b/docker/elk/kibana/Dockerfile @@ -1,7 +1,7 @@ -FROM node:10.21.0-alpine +FROM node:10.22.0-alpine # # VARS -ENV KB_VER=7.9.0 +ENV KB_VER=7.9.1 # # Include dist ADD dist/ /root/dist/ diff --git a/docker/elk/kibana/docker-compose.yml b/docker/elk/kibana/docker-compose.yml index 2f464089..e00ddc33 100644 --- a/docker/elk/kibana/docker-compose.yml +++ b/docker/elk/kibana/docker-compose.yml @@ -12,4 +12,4 @@ services: # condition: service_healthy ports: - "127.0.0.1:64296:5601" - image: "dtagdevsec/kibana:2006" + image: "ghcr.io/telekom-security/kibana:2006" diff --git a/docker/elk/logstash/Dockerfile b/docker/elk/logstash/Dockerfile index 16e22035..5ce52d3b 100644 --- a/docker/elk/logstash/Dockerfile +++ b/docker/elk/logstash/Dockerfile @@ -1,7 +1,7 @@ FROM alpine:3.12 # # VARS -ENV LS_VER=7.9.0 +ENV LS_VER=7.9.1 # Include dist ADD dist/ /root/dist/ # diff --git a/docker/elk/logstash/docker-compose.yml b/docker/elk/logstash/docker-compose.yml index ed94864b..187a30bb 100644 --- a/docker/elk/logstash/docker-compose.yml +++ b/docker/elk/logstash/docker-compose.yml @@ -14,7 +14,7 @@ services: # condition: service_healthy env_file: - /opt/tpot/etc/compose/elk_environment - image: "dtagdevsec/logstash:2006" + image: "ghcr.io/telekom-security/logstash:2006" volumes: - /data:/data # - /root/tpotce/docker/elk/logstash/dist/logstash.conf:/etc/logstash/conf.d/logstash.conf diff --git a/docker/ews/Dockerfile b/docker/ews/Dockerfile index 27cee956..aae573ee 100644 --- a/docker/ews/Dockerfile +++ b/docker/ews/Dockerfile @@ -1,4 +1,4 @@ -FROM alpine:latest +FROM alpine:3.12 # # Include dist ADD dist/ /root/dist/ @@ -23,7 +23,9 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \ pip3 install --no-cache-dir configparser hpfeeds3 pyOpenSSL xmljson && \ # # Setup ewsposter - git clone --depth=1 https://github.com/dtag-dev-sec/ewsposter /opt/ewsposter && \ + git clone https://github.com/telekom-security/ewsposter /opt/ewsposter && \ + cd /opt/ewsposter && \ + git checkout f9c0623d44a837f666ec39659665020c7460dec8 && \ mkdir -p /opt/ewsposter/spool /opt/ewsposter/log && \ # # Setup user and groups diff --git a/docker/ews/docker-compose.yml b/docker/ews/docker-compose.yml index 1900e1d3..c8885143 100644 --- a/docker/ews/docker-compose.yml +++ b/docker/ews/docker-compose.yml @@ -23,7 +23,7 @@ services: - EWS_HPFEEDS_FORMAT=json env_file: - /opt/tpot/etc/compose/elk_environment - image: "dtagdevsec/ewsposter:2006" + image: "ghcr.io/telekom-security/ewsposter:2006" volumes: - /data:/data - /data/ews/conf/ews.ip:/opt/ewsposter/ews.ip diff --git a/docker/fatt/Dockerfile b/docker/fatt/Dockerfile index 30864c2c..7247823d 100644 --- a/docker/fatt/Dockerfile +++ b/docker/fatt/Dockerfile @@ -1,4 +1,4 @@ -FROM alpine:latest +FROM alpine:3.12 # # Include dist #ADD dist/ /root/dist/ @@ -21,8 +21,9 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \ # Install fatt mkdir -p /opt && \ cd /opt && \ - git clone --depth=1 https://github.com/0x4D31/fatt && \ + git clone https://github.com/0x4D31/fatt && \ cd fatt && \ + git checkout 314cd1ff7873b5a145a51ec4e85f6107828a2c79 && \ mkdir -p log && \ pip3 install pyshark==0.4.2.2 && \ # diff --git a/docker/fatt/docker-compose.yml b/docker/fatt/docker-compose.yml index 1550ed3a..39ad84f8 100644 --- a/docker/fatt/docker-compose.yml +++ b/docker/fatt/docker-compose.yml @@ -12,6 +12,6 @@ services: - NET_ADMIN - SYS_NICE - NET_RAW - image: "dtagdevsec/fatt:2006" + image: "ghcr.io/telekom-security/fatt:2006" volumes: - /data/fatt/log:/opt/fatt/log diff --git a/docker/glutton/Dockerfile b/docker/glutton/Dockerfile index 34c51835..7322eb54 100644 --- a/docker/glutton/Dockerfile +++ b/docker/glutton/Dockerfile @@ -1,4 +1,4 @@ -FROM alpine:latest +FROM alpine:3.12 # # Include dist ADD dist/ /root/dist/ @@ -22,6 +22,7 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \ cd /opt/go/ && \ git clone https://github.com/mushorg/glutton && \ cd /opt/go/glutton/ && \ + git checkout 08f364fff489a82667866ecff2bcc4815569a0c8 && \ mv /root/dist/system.go /opt/go/glutton/ && \ go mod download && \ make build && \ diff --git a/docker/glutton/docker-compose.yml b/docker/glutton/docker-compose.yml index 68843e9d..3d050516 100644 --- a/docker/glutton/docker-compose.yml +++ b/docker/glutton/docker-compose.yml @@ -13,7 +13,7 @@ services: network_mode: "host" cap_add: - NET_ADMIN - image: "dtagdevsec/glutton:2006" + image: "ghcr.io/telekom-security/glutton:2006" read_only: true volumes: - /data/glutton/log:/var/log/glutton diff --git a/docker/heimdall/Dockerfile b/docker/heimdall/Dockerfile index cc5154d6..f3d01ab9 100644 --- a/docker/heimdall/Dockerfile +++ b/docker/heimdall/Dockerfile @@ -1,4 +1,4 @@ -FROM alpine:latest +FROM alpine:3.12 # # Include dist ADD dist/ /root/dist/ @@ -28,6 +28,9 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \ # # Clone and setup Heimdall, Nginx git clone https://github.com/linuxserver/heimdall && \ + cd heimdall && \ + git checkout 3a9bdd2c431d70803b259990fa4d81db4b06dba4 && \ + cd .. && \ cp -R heimdall/. /var/lib/nginx/html && \ rm -rf heimdall && \ cd /var/lib/nginx/html && \ diff --git a/docker/heimdall/docker-compose.yml b/docker/heimdall/docker-compose.yml index 98346f10..a879a991 100644 --- a/docker/heimdall/docker-compose.yml +++ b/docker/heimdall/docker-compose.yml @@ -26,7 +26,7 @@ services: ports: - "64297:64297" - "127.0.0.1:64304:64304" - image: "dtagdevsec/nginx:2006" + image: "ghcr.io/telekom-security/nginx:2006" read_only: true volumes: - /data/nginx/cert/:/etc/nginx/cert/:ro diff --git a/docker/heralding/Dockerfile b/docker/heralding/Dockerfile index ce3eb6ea..7f593621 100644 --- a/docker/heralding/Dockerfile +++ b/docker/heralding/Dockerfile @@ -1,4 +1,4 @@ -FROM alpine:latest +FROM alpine:3.12 # # Include dist ADD dist/ /root/dist/ @@ -21,8 +21,9 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \ # Setup heralding mkdir -p /opt && \ cd /opt/ && \ - git clone --depth=1 https://github.com/johnnykv/heralding && \ + git clone https://github.com/johnnykv/heralding && \ cd heralding && \ + git checkout bc1320e2d056c730c821cd42a19a262bfceebfd7 && \ pip3 install --no-cache-dir -r requirements.txt && \ pip3 install --no-cache-dir . && \ # diff --git a/docker/heralding/docker-compose.yml b/docker/heralding/docker-compose.yml index 15f92661..945cb0c3 100644 --- a/docker/heralding/docker-compose.yml +++ b/docker/heralding/docker-compose.yml @@ -30,7 +30,7 @@ services: - "3389:3389" - "5432:5432" - "5900:5900" - image: "dtagdevsec/heralding:2006" + image: "ghcr.io/telekom-security/heralding:2006" read_only: true volumes: - /data/heralding/log:/var/log/heralding diff --git a/docker/honeypy/Dockerfile b/docker/honeypy/Dockerfile index 833aa2e4..e796f446 100644 --- a/docker/honeypy/Dockerfile +++ b/docker/honeypy/Dockerfile @@ -17,8 +17,9 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \ pip install --no-cache-dir virtualenv && \ # # Clone honeypy from git - git clone --depth=1 https://github.com/foospidy/HoneyPy /opt/honeypy && \ + git clone https://github.com/foospidy/HoneyPy /opt/honeypy && \ cd /opt/honeypy && \ + git checkout feccab56ca922bcab01cac4ffd82f588d61ab1c5 && \ sed -i 's/local_host/dest_ip/g' /opt/honeypy/loggers/file/honeypy_file.py && \ sed -i 's/local_port/dest_port/g' /opt/honeypy/loggers/file/honeypy_file.py && \ sed -i 's/remote_host/src_ip/g' /opt/honeypy/loggers/file/honeypy_file.py && \ diff --git a/docker/honeypy/docker-compose.yml b/docker/honeypy/docker-compose.yml index dd12fa2d..caa6c928 100644 --- a/docker/honeypy/docker-compose.yml +++ b/docker/honeypy/docker-compose.yml @@ -20,7 +20,7 @@ services: - "2324:2324" - "4096:4096" - "9200:9200" - image: "dtagdevsec/honeypy:2006" + image: "ghcr.io/telekom-security/honeypy:2006" read_only: true volumes: - /data/honeypy/log:/opt/honeypy/log diff --git a/docker/honeysap/Dockerfile b/docker/honeysap/Dockerfile index 01c280a6..d6c2e4d1 100644 --- a/docker/honeysap/Dockerfile +++ b/docker/honeysap/Dockerfile @@ -18,6 +18,7 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \ # git clone --depth=1 https://github.com/SecureAuthCorp/HoneySAP /opt/honeysap && \ git clone --depth=1 https://github.com/t3chn0m4g3/HoneySAP /opt/honeysap && \ cd /opt/honeysap && \ + git checkout a3c355a710d399de9d543659a685effaa70e683d && \ mkdir conf && \ cp /root/dist/* conf/ && \ python setup.py install && \ diff --git a/docker/honeysap/docker-compose.yml b/docker/honeysap/docker-compose.yml index 830a8c0b..032f5607 100644 --- a/docker/honeysap/docker-compose.yml +++ b/docker/honeysap/docker-compose.yml @@ -14,6 +14,6 @@ services: - honeysap_local ports: - "3299:3299" - image: "dtagdevsec/honeysap:2006" + image: "ghcr.io/telekom-security/honeysap:2006" volumes: - /data/honeysap/log:/opt/honeysap/log diff --git a/docker/honeytrap/Dockerfile b/docker/honeytrap/Dockerfile index 80df2fdd..e2507ffb 100644 --- a/docker/honeytrap/Dockerfile +++ b/docker/honeytrap/Dockerfile @@ -29,6 +29,7 @@ RUN apt-get update -y && \ git clone https://github.com/armedpot/honeytrap /root/honeytrap && \ # git clone https://github.com/t3chn0m4g3/honeytrap /root/honeytrap && \ cd /root/honeytrap/ && \ + git checkout 9aa4f734f2ea2f0da790b02d79afe18204a23982 && \ autoreconf -vfi && \ ./configure \ --with-stream-mon=nfq \ diff --git a/docker/honeytrap/docker-compose.yml b/docker/honeytrap/docker-compose.yml index 7573b3d5..e049e86e 100644 --- a/docker/honeytrap/docker-compose.yml +++ b/docker/honeytrap/docker-compose.yml @@ -12,7 +12,7 @@ services: network_mode: "host" cap_add: - NET_ADMIN - image: "dtagdevsec/honeytrap:2006" + image: "ghcr.io/telekom-security/honeytrap:2006" read_only: true volumes: - /data/honeytrap/attacks:/opt/honeytrap/var/attacks diff --git a/docker/ipphoney/Dockerfile b/docker/ipphoney/Dockerfile index dfad9560..e51589be 100644 --- a/docker/ipphoney/Dockerfile +++ b/docker/ipphoney/Dockerfile @@ -1,4 +1,4 @@ -FROM alpine:latest +FROM alpine:3.12 # # Include dist ADD dist/ /root/dist/ @@ -21,8 +21,9 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \ python3-dev && \ mkdir -p /opt && \ cd /opt/ && \ - git clone --depth=1 https://gitlab.com/bontchev/ipphoney.git/ && \ + git clone https://gitlab.com/bontchev/ipphoney.git/ && \ cd ipphoney && \ + git checkout db8c6e91bff27b5c376339c5effbb45355897ab5 && \ pip3 install -r requirements.txt && \ setcap cap_net_bind_service=+ep /usr/bin/python3.8 && \ # diff --git a/docker/ipphoney/docker-compose.yml b/docker/ipphoney/docker-compose.yml index 69328fc0..53f7e681 100644 --- a/docker/ipphoney/docker-compose.yml +++ b/docker/ipphoney/docker-compose.yml @@ -14,7 +14,7 @@ services: - ipphoney_local ports: - "631:631" - image: "dtagdevsec/ipphoney:2006" + image: "ghcr.io/telekom-security/ipphoney:2006" read_only: true volumes: - /data/ipphoney/log:/opt/ipphoney/log diff --git a/docker/mailoney/Dockerfile b/docker/mailoney/Dockerfile index 2c6efd6b..2376f854 100644 --- a/docker/mailoney/Dockerfile +++ b/docker/mailoney/Dockerfile @@ -13,8 +13,9 @@ RUN apk -U --no-cache add \ python-dev && \ # # Install libemu - git clone --depth=1 https://github.com/buffer/libemu /root/libemu/ && \ + git clone https://github.com/buffer/libemu /root/libemu/ && \ cd /root/libemu/ && \ + git checkout e2624361e13588da74a2ce3e1dea0abb59dcf1d0 && \ autoreconf -vi && \ ./configure && \ make && \ @@ -26,7 +27,9 @@ RUN apk -U --no-cache add \ pylibemu && \ # # Install mailoney from git - git clone --depth=1 https://github.com/t3chn0m4g3/mailoney /opt/mailoney && \ + git clone https://github.com/t3chn0m4g3/mailoney /opt/mailoney && \ + cd /opt/mailoney && \ + git checkout 85c37649a99e1cec3f8d48d509653c9a8127ea4f && \ # # Setup user, groups and configs addgroup -g 2000 mailoney && \ diff --git a/docker/mailoney/docker-compose.yml b/docker/mailoney/docker-compose.yml index c5979e6b..5b131acd 100644 --- a/docker/mailoney/docker-compose.yml +++ b/docker/mailoney/docker-compose.yml @@ -20,7 +20,7 @@ services: - mailoney_local ports: - "25:25" - image: "dtagdevsec/mailoney:2006" + image: "ghcr.io/telekom-security/mailoney:2006" read_only: true volumes: - /data/mailoney/log:/opt/mailoney/logs diff --git a/docker/medpot/Dockerfile b/docker/medpot/Dockerfile index 05ea54d6..8dd1a1d4 100644 --- a/docker/medpot/Dockerfile +++ b/docker/medpot/Dockerfile @@ -1,4 +1,4 @@ -FROM alpine:latest +FROM alpine:3.12 # # Setup apk RUN apk -U --no-cache add \ @@ -12,6 +12,9 @@ RUN apk -U --no-cache add \ mkdir -p /opt/go/src && \ cd /opt/go/src && \ git clone https://github.com/schmalle/medpot && \ + cd medpot && \ + git checkout 75a2e6134cf926c35b6017d62542274434c87388 && \ + cd .. && \ go get -d -v github.com/davecgh/go-spew/spew && \ go get -d -v github.com/go-ini/ini && \ go get -d -v github.com/mozillazg/request && \ diff --git a/docker/medpot/docker-compose.yml b/docker/medpot/docker-compose.yml index a5565475..6d6490b1 100644 --- a/docker/medpot/docker-compose.yml +++ b/docker/medpot/docker-compose.yml @@ -14,7 +14,7 @@ services: - medpot_local ports: - "2575:2575" - image: "dtagdevsec/medpot:2006" + image: "ghcr.io/telekom-security/medpot:2006" read_only: true volumes: - /data/medpot/log/:/var/log/medpot diff --git a/docker/p0f/Dockerfile b/docker/p0f/Dockerfile index 6568b41f..5da6b822 100644 --- a/docker/p0f/Dockerfile +++ b/docker/p0f/Dockerfile @@ -1,4 +1,4 @@ -FROM alpine:latest +FROM alpine:3.12 # # Add source ADD . /opt/p0f @@ -29,7 +29,7 @@ RUN apk -U --no-cache add \ rm -rf /root/* && \ rm -rf /var/cache/apk/* # -# Start suricata +# Start p0f WORKDIR /opt/p0f USER p0f:p0f CMD exec /opt/p0f/p0f -u p0f -j -o /var/log/p0f/p0f.json -i $(/sbin/ip address | grep '^2: ' | awk '{ print $2 }' | tr -d [:punct:]) > /dev/null diff --git a/docker/p0f/docker-compose.yml b/docker/p0f/docker-compose.yml index 0b1329b8..f3f18081 100644 --- a/docker/p0f/docker-compose.yml +++ b/docker/p0f/docker-compose.yml @@ -8,7 +8,7 @@ services: container_name: p0f restart: always network_mode: "host" - image: "dtagdevsec/p0f:2006" + image: "ghcr.io/telekom-security/p0f:2006" read_only: true volumes: - /data/p0f/log:/var/log/p0f diff --git a/docker/rdpy/Dockerfile b/docker/rdpy/Dockerfile index 700039f9..c15b58f0 100644 --- a/docker/rdpy/Dockerfile +++ b/docker/rdpy/Dockerfile @@ -34,8 +34,9 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \ # Install rdpy from git mkdir -p /opt && \ cd /opt && \ - git clone --depth=1 https://github.com/t3chn0m4g3/rdpy && \ + git clone https://github.com/t3chn0m4g3/rdpy && \ cd rdpy && \ + git checkout 1d2a4132aefe0637d09cac1a6ab83ec5391f40ca && \ python setup.py install && \ # # Setup user, groups and configs diff --git a/docker/rdpy/docker-compose.yml b/docker/rdpy/docker-compose.yml index c991c270..8912b3f1 100644 --- a/docker/rdpy/docker-compose.yml +++ b/docker/rdpy/docker-compose.yml @@ -22,7 +22,7 @@ services: - rdpy_local ports: - "3389:3389" - image: "dtagdevsec/rdpy:2006" + image: "ghcr.io/telekom-security/rdpy:2006" read_only: true volumes: - /data/rdpy/log:/var/log/rdpy diff --git a/docker/spiderfoot/Dockerfile b/docker/spiderfoot/Dockerfile index 5462e68a..42380135 100644 --- a/docker/spiderfoot/Dockerfile +++ b/docker/spiderfoot/Dockerfile @@ -1,4 +1,4 @@ -FROM alpine:latest +FROM alpine:3.12 # # Get and install dependencies & packages RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \ diff --git a/docker/spiderfoot/docker-compose.yml b/docker/spiderfoot/docker-compose.yml index efc808c9..0e90c8ba 100644 --- a/docker/spiderfoot/docker-compose.yml +++ b/docker/spiderfoot/docker-compose.yml @@ -14,6 +14,6 @@ services: - spiderfoot_local ports: - "127.0.0.1:64303:8080" - image: "dtagdevsec/spiderfoot:2006" + image: "ghcr.io/telekom-security/spiderfoot:2006" volumes: - /data/spiderfoot/spiderfoot.db:/home/spiderfoot/spiderfoot.db diff --git a/docker/suricata/Dockerfile b/docker/suricata/Dockerfile index 3d9196cb..97346747 100644 --- a/docker/suricata/Dockerfile +++ b/docker/suricata/Dockerfile @@ -1,4 +1,4 @@ -FROM alpine:latest +FROM alpine:3.12 # # Include dist ADD dist/ /root/dist/ @@ -9,6 +9,7 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \ ca-certificates \ curl \ file \ + hiredis \ libcap \ wget && \ apk -U add --repository http://dl-cdn.alpinelinux.org/alpine/edge/community \ diff --git a/docker/suricata/docker-compose.yml b/docker/suricata/docker-compose.yml index 4568fba9..9b7434c4 100644 --- a/docker/suricata/docker-compose.yml +++ b/docker/suricata/docker-compose.yml @@ -15,6 +15,6 @@ services: - NET_ADMIN - SYS_NICE - NET_RAW - image: "dtagdevsec/suricata:2006" + image: "ghcr.io/telekom-security/suricata:2006" volumes: - /data/suricata/log:/var/log/suricata diff --git a/docker/tanner/docker-compose.yml b/docker/tanner/docker-compose.yml index b70977a3..ff2e4bec 100644 --- a/docker/tanner/docker-compose.yml +++ b/docker/tanner/docker-compose.yml @@ -14,7 +14,7 @@ services: tty: true networks: - tanner_local - image: "dtagdevsec/redis:2006" + image: "ghcr.io/telekom-security/redis:2006" read_only: true # PHP Sandbox service @@ -28,7 +28,7 @@ services: tty: true networks: - tanner_local - image: "dtagdevsec/phpox:2006" + image: "ghcr.io/telekom-security/phpox:2006" read_only: true # Tanner API Service @@ -42,7 +42,7 @@ services: tty: true networks: - tanner_local - image: "dtagdevsec/tanner:2006" + image: "ghcr.io/telekom-security/tanner:2006" read_only: true volumes: - /data/tanner/log:/var/log/tanner @@ -63,7 +63,7 @@ services: - tanner_local # ports: # - "127.0.0.1:8091:8091" - image: "dtagdevsec/tanner:2006" + image: "ghcr.io/telekom-security/tanner:2006" command: tannerweb read_only: true volumes: @@ -82,7 +82,7 @@ services: tty: true networks: - tanner_local - image: "dtagdevsec/tanner:2006" + image: "ghcr.io/telekom-security/tanner:2006" command: tanner read_only: true volumes: @@ -104,6 +104,6 @@ services: - tanner_local ports: - "80:80" - image: "dtagdevsec/snare:2006" + image: "ghcr.io/telekom-security/snare:2006" depends_on: - tanner diff --git a/docker/tanner/phpox/Dockerfile b/docker/tanner/phpox/Dockerfile index 621f4495..c3a4eb70 100644 --- a/docker/tanner/phpox/Dockerfile +++ b/docker/tanner/phpox/Dockerfile @@ -15,8 +15,9 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \ re2c && \ # # Install bfr sandbox from git - git clone --depth=1 https://github.com/mushorg/BFR /opt/BFR && \ + git clone https://github.com/mushorg/BFR /opt/BFR && \ cd /opt/BFR && \ + git checkout 508729202428a35bcc6bb27dd97b831f7e5009b5 && \ phpize7 && \ ./configure \ --with-php-config=/usr/bin/php-config7 \ @@ -28,8 +29,9 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \ echo "zend_extension = "$(find /usr -name bfr.so) >> /etc/php7/php.ini && \ # # Install PHP Sandbox - git clone --depth=1 https://github.com/mushorg/phpox /opt/phpox && \ + git clone https://github.com/mushorg/phpox /opt/phpox && \ cd /opt/phpox && \ + git checkout 001437b9ed3e228fac3828e18fe90991a330578d && \ pip3 install -r requirements.txt && \ make && \ # diff --git a/docker/tanner/snare/Dockerfile b/docker/tanner/snare/Dockerfile index 6dfe6375..cd462496 100644 --- a/docker/tanner/snare/Dockerfile +++ b/docker/tanner/snare/Dockerfile @@ -13,8 +13,9 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \ python3-dev && \ # # Setup Snare - git clone --depth=1 https://github.com/mushorg/snare /opt/snare && \ + git clone https://github.com/mushorg/snare /opt/snare && \ cd /opt/snare/ && \ + git checkout 7762b762b272f0599c16e11ef997c37d2899d33e && \ pip3 install --no-cache-dir setuptools && \ pip3 install --no-cache-dir -r requirements.txt && \ python3 setup.py install && \ diff --git a/docker/tanner/tanner/Dockerfile b/docker/tanner/tanner/Dockerfile index cdc1885a..6badbd0c 100644 --- a/docker/tanner/tanner/Dockerfile +++ b/docker/tanner/tanner/Dockerfile @@ -1,4 +1,4 @@ -FROM alpine:latest +FROM alpine:3.12 # # Include dist ADD dist/ /root/dist/ @@ -18,10 +18,11 @@ RUN sed -i 's/dl-cdn/dl-2/g' /etc/apk/repositories && \ python3-dev && \ # # Setup Tanner - git clone --depth=1 https://github.com/mushorg/tanner /opt/tanner && \ + git clone https://github.com/mushorg/tanner /opt/tanner && \ cd /opt/tanner/ && \ # git fetch origin pull/364/head:test && \ # git checkout test && \ + git checkout 40e2357119065445cbb06234e953a95e5a73ce93 && \ cp /root/dist/config.yaml /opt/tanner/tanner/data && \ pip3 install --no-cache-dir setuptools && \ pip3 install --no-cache-dir -r requirements.txt && \