Alex-Devera/tpotce
1
0
Fork 0
mirror of https://github.com/telekom-security/tpotce.git synced 2025-07-02 04:52:11 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2

modifications for conpot update

Browse source
This commit is contained in:
Marco Ochse 2017-06-07 15:51:42 +00:00
parent 4e6f4fc9e8
commit 66cdb0e60a
4 changed files with 103 additions and 77 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

68
installer/etc/tpot/compose/all.yml
View file

@ -14,47 +14,46 @@ networks:
ui-for-docker_local: ui-for-docker_local:
services: services:
# Conpot service # Conpot service
conpot: conpot:
container_name: conpot container_name: conpot
restart: always restart: always
networks: networks:
- conpot_local - conpot_local
ports: ports:
- "1025:1025" - "1025:1025"
- "50100:50100" - "50100:50100"
image: "dtagdevsec/conpot:1706" image: "dtagdevsec/conpot:1706"
volumes: volumes:
- /data/conpot:/data/conpot - /data/conpot/log:/var/log/conpot
- /data/ews:/data/ews
# Cowrie service # Cowrie service
cowrie: cowrie:
container_name: cowrie container_name: cowrie
restart: always restart: always
networks: networks:
- cowrie_local - cowrie_local
cap_add: cap_add:
- NET_BIND_SERVICE - NET_BIND_SERVICE
ports: ports:
- "22:22" - "22:2222"
- "23:23" - "23:2223"
image: "dtagdevsec/cowrie:1706" image: "dtagdevsec/cowrie:1706"
volumes: volumes:
- /data/cowrie:/data/cowrie - /data/cowrie:/data/cowrie
# Dionaea service # Dionaea service
dionaea: dionaea:
container_name: dionaea container_name: dionaea
stdin_open: true stdin_open: true
restart: always restart: always
networks: networks:
- dionaea_local - dionaea_local
cap_add: cap_add:
- NET_BIND_SERVICE - NET_BIND_SERVICE
ports: ports:
- "21:21" - "21:21"
- "42:42" - "42:42"
- "69:69/udp" - "69:69/udp"
- "8081:80" - "8081:80"
@ -65,7 +64,7 @@ services:
- "1723:1723" - "1723:1723"
- "1883:1883" - "1883:1883"
- "1900:1900" - "1900:1900"
- "3306:3306" - "3306:3306"
- "5060:5060" - "5060:5060"
- "5061:5061" - "5061:5061"
- "5060:5060/udp" - "5060:5060/udp"
@ -79,7 +78,7 @@ services:
container_name: elasticpot container_name: elasticpot
restart: always restart: always
networks: networks:
- elasticpot_local - elasticpot_local
ports: ports:
- "9200:9200" - "9200:9200"
image: "dtagdevsec/elasticpot:1706" image: "dtagdevsec/elasticpot:1706"
@ -92,8 +91,8 @@ services:
container_name: elasticsearch container_name: elasticsearch
restart: always restart: always
environment: environment:
- bootstrap.memory_lock=true - bootstrap.memory_lock=true
# - "ES_JAVA_OPTS=-Xms1g -Xmx1g" # - "ES_JAVA_OPTS=-Xms1g -Xmx1g"
cap_add: cap_add:
- IPC_LOCK - IPC_LOCK
ulimits: ulimits:
@ -115,8 +114,8 @@ services:
container_name: kibana container_name: kibana
restart: always restart: always
depends_on: depends_on:
elasticsearch: elasticsearch:
condition: service_healthy condition: service_healthy
ports: ports:
- "127.0.0.1:64296:5601" - "127.0.0.1:64296:5601"
image: "dtagdevsec/kibana:1706" image: "dtagdevsec/kibana:1706"
@ -126,8 +125,8 @@ services:
container_name: logstash container_name: logstash
restart: always restart: always
depends_on: depends_on:
elasticsearch: elasticsearch:
condition: service_healthy condition: service_healthy
env_file: env_file:
- /etc/tpot/elk/environment - /etc/tpot/elk/environment
image: "dtagdevsec/logstash:1706" image: "dtagdevsec/logstash:1706"
@ -140,8 +139,8 @@ services:
container_name: head container_name: head
restart: always restart: always
depends_on: depends_on:
elasticsearch: elasticsearch:
condition: service_healthy condition: service_healthy
ports: ports:
- "127.0.0.1:64302:9100" - "127.0.0.1:64302:9100"
image: "dtagdevsec/head:1706" image: "dtagdevsec/head:1706"
@ -151,7 +150,7 @@ services:
container_name: emobility container_name: emobility
restart: always restart: always
networks: networks:
- emobility_local - emobility_local
cap_add: cap_add:
- NET_ADMIN - NET_ADMIN
ports: ports:
@ -166,7 +165,7 @@ services:
container_name: ewsposter container_name: ewsposter
restart: always restart: always
networks: networks:
- ewsposter_local - ewsposter_local
image: "dtagdevsec/ewsposter:1706" image: "dtagdevsec/ewsposter:1706"
volumes: volumes:
- /data:/data - /data:/data
@ -177,7 +176,7 @@ services:
container_name: glastopf container_name: glastopf
restart: always restart: always
networks: networks:
- glastopf_local - glastopf_local
ports: ports:
- "80:80" - "80:80"
image: "dtagdevsec/glastopf:1706" image: "dtagdevsec/glastopf:1706"
@ -196,15 +195,15 @@ services:
volumes: volumes:
- /data/honeytrap:/data/honeytrap - /data/honeytrap:/data/honeytrap
- /data/ews:/data/ews - /data/ews:/data/ews
# Netdata service # Netdata service
netdata: netdata:
container_name: netdata container_name: netdata
restart: always restart: always
network_mode: "host" network_mode: "host"
depends_on: depends_on:
elasticsearch: elasticsearch:
condition: service_healthy condition: service_healthy
cap_add: cap_add:
- SYS_PTRACE - SYS_PTRACE
security_opt: security_opt:
@ -220,26 +219,26 @@ services:
container_name: spiderfoot container_name: spiderfoot
restart: always restart: always
networks: networks:
- spiderfoot_local - spiderfoot_local
ports: ports:
- "127.0.0.1:64303:8080" - "127.0.0.1:64303:8080"
image: "dtagdevsec/spiderfoot:1706" image: "dtagdevsec/spiderfoot:1706"
volumes: volumes:
- /data/spiderfoot/spiderfoot.db:/home/spiderfoot/spiderfoot.db - /data/spiderfoot/spiderfoot.db:/home/spiderfoot/spiderfoot.db
# Ui-for-docker service # Ui-for-docker service
ui-for-docker: ui-for-docker:
container_name: ui-for-docker container_name: ui-for-docker
command: -H unix:///var/run/docker.sock --no-auth command: -H unix:///var/run/docker.sock --no-auth
restart: always restart: always
networks: networks:
- ui-for-docker_local - ui-for-docker_local
ports: ports:
- "127.0.0.1:64299:9000" - "127.0.0.1:64299:9000"
image: "dtagdevsec/ui-for-docker:1706" image: "dtagdevsec/ui-for-docker:1706"
volumes: volumes:
- /var/run/docker.sock:/var/run/docker.sock - /var/run/docker.sock:/var/run/docker.sock
# Suricata service # Suricata service
suricata: suricata:
container_name: suricata container_name: suricata
@ -252,3 +251,12 @@ services:
image: "dtagdevsec/suricata:1706" image: "dtagdevsec/suricata:1706"
volumes: volumes:
- /data/suricata/log:/var/log/suricata - /data/suricata/log:/var/log/suricata
# P0f service
p0f:
container_name: p0f
restart: always
network_mode: "host"
image: "dtagdevsec/p0f:1706"
volumes:
- /data/p0f/log:/var/log/p0f

16
installer/etc/tpot/compose/hp.yml
View file

@ -1,4 +1,4 @@
# T-Pot (Honeypots) # T-Pot (HP)
# For docker-compose ... # For docker-compose ...
version: '2.1' version: '2.1'
@ -16,12 +16,12 @@ services:
container_name: cowrie container_name: cowrie
restart: always restart: always
networks: networks:
- cowrie_local - cowrie_local
cap_add: cap_add:
- NET_BIND_SERVICE - NET_BIND_SERVICE
ports: ports:
- "22:22" - "22:2222"
- "23:23" - "23:2223"
image: "dtagdevsec/cowrie:1706" image: "dtagdevsec/cowrie:1706"
volumes: volumes:
- /data/cowrie:/data/cowrie - /data/cowrie:/data/cowrie
@ -32,7 +32,7 @@ services:
stdin_open: true stdin_open: true
restart: always restart: always
networks: networks:
- dionaea_local - dionaea_local
cap_add: cap_add:
- NET_BIND_SERVICE - NET_BIND_SERVICE
ports: ports:
@ -61,7 +61,7 @@ services:
container_name: elasticpot container_name: elasticpot
restart: always restart: always
networks: networks:
- elasticpot_local - elasticpot_local
ports: ports:
- "9200:9200" - "9200:9200"
image: "dtagdevsec/elasticpot:1706" image: "dtagdevsec/elasticpot:1706"
@ -73,7 +73,7 @@ services:
container_name: ewsposter container_name: ewsposter
restart: always restart: always
networks: networks:
- ewsposter_local - ewsposter_local
image: "dtagdevsec/ewsposter:1706" image: "dtagdevsec/ewsposter:1706"
volumes: volumes:
- /data:/data - /data:/data
@ -84,7 +84,7 @@ services:
container_name: glastopf container_name: glastopf
restart: always restart: always
networks: networks:
- glastopf_local - glastopf_local
ports: ports:
- "80:80" - "80:80"
image: "dtagdevsec/glastopf:1706" image: "dtagdevsec/glastopf:1706"

48
installer/etc/tpot/compose/industrial.yml
View file

@ -10,20 +10,19 @@ networks:
ui-for-docker_local: ui-for-docker_local:
services: services:
# Conpot service # Conpot service
conpot: conpot:
container_name: conpot container_name: conpot
restart: always restart: always
networks: networks:
- conpot_local - conpot_local
ports: ports:
- "1025:1025" - "1025:1025"
- "50100:50100" - "50100:50100"
image: "dtagdevsec/conpot:1706" image: "dtagdevsec/conpot:1706"
volumes: volumes:
- /data/conpot:/data/conpot - /data/conpot/log:/var/log/conpot
- /data/ews:/data/ews
# ELK services # ELK services
## Elasticsearch service ## Elasticsearch service
@ -31,8 +30,8 @@ services:
container_name: elasticsearch container_name: elasticsearch
restart: always restart: always
environment: environment:
- bootstrap.memory_lock=true - bootstrap.memory_lock=true
# - "ES_JAVA_OPTS=-Xms1g -Xmx1g" # - "ES_JAVA_OPTS=-Xms1g -Xmx1g"
cap_add: cap_add:
- IPC_LOCK - IPC_LOCK
ulimits: ulimits:
@ -54,8 +53,8 @@ services:
container_name: kibana container_name: kibana
restart: always restart: always
depends_on: depends_on:
elasticsearch: elasticsearch:
condition: service_healthy condition: service_healthy
ports: ports:
- "127.0.0.1:64296:5601" - "127.0.0.1:64296:5601"
image: "dtagdevsec/kibana:1706" image: "dtagdevsec/kibana:1706"
@ -65,8 +64,8 @@ services:
container_name: logstash container_name: logstash
restart: always restart: always
depends_on: depends_on:
elasticsearch: elasticsearch:
condition: service_healthy condition: service_healthy
env_file: env_file:
- /etc/tpot/elk/environment - /etc/tpot/elk/environment
image: "dtagdevsec/logstash:1706" image: "dtagdevsec/logstash:1706"
@ -79,8 +78,8 @@ services:
container_name: head container_name: head
restart: always restart: always
depends_on: depends_on:
elasticsearch: elasticsearch:
condition: service_healthy condition: service_healthy
ports: ports:
- "127.0.0.1:64302:9100" - "127.0.0.1:64302:9100"
image: "dtagdevsec/head:1706" image: "dtagdevsec/head:1706"
@ -90,7 +89,7 @@ services:
container_name: emobility container_name: emobility
restart: always restart: always
networks: networks:
- emobility_local - emobility_local
cap_add: cap_add:
- NET_ADMIN - NET_ADMIN
ports: ports:
@ -105,7 +104,7 @@ services:
container_name: ewsposter container_name: ewsposter
restart: always restart: always
networks: networks:
- ewsposter_local - ewsposter_local
image: "dtagdevsec/ewsposter:1706" image: "dtagdevsec/ewsposter:1706"
volumes: volumes:
- /data:/data - /data:/data
@ -117,8 +116,8 @@ services:
restart: always restart: always
network_mode: "host" network_mode: "host"
depends_on: depends_on:
elasticsearch: elasticsearch:
condition: service_healthy condition: service_healthy
cap_add: cap_add:
- SYS_PTRACE - SYS_PTRACE
security_opt: security_opt:
@ -134,26 +133,26 @@ services:
container_name: spiderfoot container_name: spiderfoot
restart: always restart: always
networks: networks:
- spiderfoot_local - spiderfoot_local
ports: ports:
- "127.0.0.1:64303:8080" - "127.0.0.1:64303:8080"
image: "dtagdevsec/spiderfoot:1706" image: "dtagdevsec/spiderfoot:1706"
volumes: volumes:
- /data/spiderfoot/spiderfoot.db:/home/spiderfoot/spiderfoot.db - /data/spiderfoot/spiderfoot.db:/home/spiderfoot/spiderfoot.db
# Ui-for-docker service # Ui-for-docker service
ui-for-docker: ui-for-docker:
container_name: ui-for-docker container_name: ui-for-docker
command: -H unix:///var/run/docker.sock --no-auth command: -H unix:///var/run/docker.sock --no-auth
restart: always restart: always
networks: networks:
- ui-for-docker_local - ui-for-docker_local
ports: ports:
- "127.0.0.1:64299:9000" - "127.0.0.1:64299:9000"
image: "dtagdevsec/ui-for-docker:1706" image: "dtagdevsec/ui-for-docker:1706"
volumes: volumes:
- /var/run/docker.sock:/var/run/docker.sock - /var/run/docker.sock:/var/run/docker.sock
# Suricata service # Suricata service
suricata: suricata:
container_name: suricata container_name: suricata
@ -166,3 +165,12 @@ services:
image: "dtagdevsec/suricata:1706" image: "dtagdevsec/suricata:1706"
volumes: volumes:
- /data/suricata/log:/var/log/suricata - /data/suricata/log:/var/log/suricata
# P0f service
p0f:
container_name: p0f
restart: always
network_mode: "host"
image: "dtagdevsec/p0f:1706"
volumes:
- /data/p0f/log:/var/log/p0f

48
installer/etc/tpot/compose/tpot.yml
View file

@ -18,12 +18,12 @@ services:
container_name: cowrie container_name: cowrie
restart: always restart: always
networks: networks:
- cowrie_local - cowrie_local
cap_add: cap_add:
- NET_BIND_SERVICE - NET_BIND_SERVICE
ports: ports:
- "22:22" - "22:2222"
- "23:23" - "23:2223"
image: "dtagdevsec/cowrie:1706" image: "dtagdevsec/cowrie:1706"
volumes: volumes:
- /data/cowrie:/data/cowrie - /data/cowrie:/data/cowrie
@ -34,7 +34,7 @@ services:
stdin_open: true stdin_open: true
restart: always restart: always
networks: networks:
- dionaea_local - dionaea_local
cap_add: cap_add:
- NET_BIND_SERVICE - NET_BIND_SERVICE
ports: ports:
@ -63,7 +63,7 @@ services:
container_name: elasticpot container_name: elasticpot
restart: always restart: always
networks: networks:
- elasticpot_local - elasticpot_local
ports: ports:
- "9200:9200" - "9200:9200"
image: "dtagdevsec/elasticpot:1706" image: "dtagdevsec/elasticpot:1706"
@ -76,8 +76,8 @@ services:
container_name: elasticsearch container_name: elasticsearch
restart: always restart: always
environment: environment:
- bootstrap.memory_lock=true - bootstrap.memory_lock=true
- "ES_JAVA_OPTS=-Xms512m -Xmx512m" - "ES_JAVA_OPTS=-Xms512m -Xmx512m"
cap_add: cap_add:
- IPC_LOCK - IPC_LOCK
ulimits: ulimits:
@ -99,8 +99,8 @@ services:
container_name: kibana container_name: kibana
restart: always restart: always
depends_on: depends_on:
elasticsearch: elasticsearch:
condition: service_healthy condition: service_healthy
ports: ports:
- "127.0.0.1:64296:5601" - "127.0.0.1:64296:5601"
image: "dtagdevsec/kibana:1706" image: "dtagdevsec/kibana:1706"
@ -110,8 +110,8 @@ services:
container_name: logstash container_name: logstash
restart: always restart: always
depends_on: depends_on:
elasticsearch: elasticsearch:
condition: service_healthy condition: service_healthy
env_file: env_file:
- /etc/tpot/elk/environment - /etc/tpot/elk/environment
image: "dtagdevsec/logstash:1706" image: "dtagdevsec/logstash:1706"
@ -124,8 +124,8 @@ services:
container_name: head container_name: head
restart: always restart: always
depends_on: depends_on:
elasticsearch: elasticsearch:
condition: service_healthy condition: service_healthy
ports: ports:
- "127.0.0.1:64302:9100" - "127.0.0.1:64302:9100"
image: "dtagdevsec/head:1706" image: "dtagdevsec/head:1706"
@ -135,7 +135,7 @@ services:
container_name: ewsposter container_name: ewsposter
restart: always restart: always
networks: networks:
- ewsposter_local - ewsposter_local
image: "dtagdevsec/ewsposter:1706" image: "dtagdevsec/ewsposter:1706"
volumes: volumes:
- /data:/data - /data:/data
@ -146,7 +146,7 @@ services:
container_name: glastopf container_name: glastopf
restart: always restart: always
networks: networks:
- glastopf_local - glastopf_local
ports: ports:
- "80:80" - "80:80"
image: "dtagdevsec/glastopf:1706" image: "dtagdevsec/glastopf:1706"
@ -172,8 +172,8 @@ services:
restart: always restart: always
network_mode: "host" network_mode: "host"
depends_on: depends_on:
elasticsearch: elasticsearch:
condition: service_healthy condition: service_healthy
cap_add: cap_add:
- SYS_PTRACE - SYS_PTRACE
security_opt: security_opt:
@ -189,7 +189,7 @@ services:
container_name: spiderfoot container_name: spiderfoot
restart: always restart: always
networks: networks:
- spiderfoot_local - spiderfoot_local
ports: ports:
- "127.0.0.1:64303:8080" - "127.0.0.1:64303:8080"
image: "dtagdevsec/spiderfoot:1706" image: "dtagdevsec/spiderfoot:1706"
@ -202,7 +202,7 @@ services:
command: -H unix:///var/run/docker.sock --no-auth command: -H unix:///var/run/docker.sock --no-auth
restart: always restart: always
networks: networks:
- ui-for-docker_local - ui-for-docker_local
ports: ports:
- "127.0.0.1:64299:9000" - "127.0.0.1:64299:9000"
image: "dtagdevsec/ui-for-docker:1706" image: "dtagdevsec/ui-for-docker:1706"
@ -221,3 +221,13 @@ services:
image: "dtagdevsec/suricata:1706" image: "dtagdevsec/suricata:1706"
volumes: volumes:
- /data/suricata/log:/var/log/suricata - /data/suricata/log:/var/log/suricata
# P0f service
p0f:
container_name: p0f
restart: always
network_mode: "host"
image: "dtagdevsec/p0f:1706"
volumes:
- /data/p0f/log:/var/log/p0f