mirror of
https://github.com/telekom-security/tpotce.git
synced 2025-07-01 20:42:11 +00:00
bump tanner to latest master
This commit is contained in:
parent
786ab5c082
commit
e0427cfc21
5 changed files with 30 additions and 25 deletions
|
@ -1,8 +1,8 @@
|
||||||
FROM alpine
|
FROM alpine
|
||||||
|
#
|
||||||
# Include dist
|
# Include dist
|
||||||
ADD dist/ /root/dist/
|
ADD dist/ /root/dist/
|
||||||
|
#
|
||||||
# Install packages
|
# Install packages
|
||||||
RUN apk -U --no-cache add \
|
RUN apk -U --no-cache add \
|
||||||
build-base \
|
build-base \
|
||||||
|
@ -15,7 +15,7 @@ RUN apk -U --no-cache add \
|
||||||
python3-dev \
|
python3-dev \
|
||||||
re2c && \
|
re2c && \
|
||||||
pip3 install --no-cache-dir --upgrade pip && \
|
pip3 install --no-cache-dir --upgrade pip && \
|
||||||
|
#
|
||||||
# Install bfr sandbox from git
|
# Install bfr sandbox from git
|
||||||
git clone --depth=1 https://github.com/mushorg/BFR /opt/BFR && \
|
git clone --depth=1 https://github.com/mushorg/BFR /opt/BFR && \
|
||||||
cd /opt/BFR && \
|
cd /opt/BFR && \
|
||||||
|
@ -28,14 +28,14 @@ RUN apk -U --no-cache add \
|
||||||
cd / && \
|
cd / && \
|
||||||
rm -rf /opt/BFR /tmp/* /var/tmp/* && \
|
rm -rf /opt/BFR /tmp/* /var/tmp/* && \
|
||||||
echo "zend_extension = "$(find /usr -name bfr.so) >> /etc/php7/php.ini && \
|
echo "zend_extension = "$(find /usr -name bfr.so) >> /etc/php7/php.ini && \
|
||||||
|
#
|
||||||
# Install PHP Sandbox
|
# Install PHP Sandbox
|
||||||
git clone --depth=1 https://github.com/mushorg/phpox /opt/phpox && \
|
git clone --depth=1 https://github.com/mushorg/phpox /opt/phpox && \
|
||||||
cd /opt/phpox && \
|
cd /opt/phpox && \
|
||||||
cp /root/dist/sandbox.py . && \
|
cp /root/dist/sandbox.py . && \
|
||||||
pip3 install -r requirements.txt && \
|
pip3 install -r requirements.txt && \
|
||||||
make && \
|
make && \
|
||||||
|
#
|
||||||
# Clean up
|
# Clean up
|
||||||
apk del --purge build-base \
|
apk del --purge build-base \
|
||||||
git \
|
git \
|
||||||
|
@ -43,7 +43,7 @@ RUN apk -U --no-cache add \
|
||||||
python3-dev && \
|
python3-dev && \
|
||||||
rm -rf /root/* && \
|
rm -rf /root/* && \
|
||||||
rm -rf /var/cache/apk/*
|
rm -rf /var/cache/apk/*
|
||||||
|
#
|
||||||
# Set workdir and start phpsandbox
|
# Set workdir and start phpsandbox
|
||||||
STOPSIGNAL SIGKILL
|
STOPSIGNAL SIGKILL
|
||||||
USER nobody:nobody
|
USER nobody:nobody
|
||||||
|
|
|
@ -1,18 +1,17 @@
|
||||||
FROM redis:alpine
|
FROM redis:alpine
|
||||||
|
#
|
||||||
# Include dist
|
# Include dist
|
||||||
ADD dist/ /root/dist/
|
ADD dist/ /root/dist/
|
||||||
|
#
|
||||||
# Setup apt
|
# Setup apt
|
||||||
RUN apk -U --no-cache add redis && \
|
RUN apk -U --no-cache add redis && \
|
||||||
|
|
||||||
cp /root/dist/redis.conf /etc && \
|
cp /root/dist/redis.conf /etc && \
|
||||||
|
#
|
||||||
# Clean up
|
# Clean up
|
||||||
rm -rf /root/* && \
|
rm -rf /root/* && \
|
||||||
rm -rf /tmp/* /var/tmp/* && \
|
rm -rf /tmp/* /var/tmp/* && \
|
||||||
rm -rf /var/cache/apk/*
|
rm -rf /var/cache/apk/*
|
||||||
|
#
|
||||||
# Start conpot
|
# Start conpot
|
||||||
STOPSIGNAL SIGKILL
|
STOPSIGNAL SIGKILL
|
||||||
USER nobody:nobody
|
USER nobody:nobody
|
||||||
|
|
|
@ -1,8 +1,8 @@
|
||||||
FROM alpine
|
FROM alpine
|
||||||
|
#
|
||||||
# Include dist
|
# Include dist
|
||||||
ADD dist/ /root/dist/
|
ADD dist/ /root/dist/
|
||||||
|
#
|
||||||
# Setup apt
|
# Setup apt
|
||||||
RUN apk -U --no-cache add \
|
RUN apk -U --no-cache add \
|
||||||
build-base \
|
build-base \
|
||||||
|
@ -10,7 +10,7 @@ RUN apk -U --no-cache add \
|
||||||
linux-headers \
|
linux-headers \
|
||||||
python3 \
|
python3 \
|
||||||
python3-dev && \
|
python3-dev && \
|
||||||
|
#
|
||||||
# Setup Snare
|
# Setup Snare
|
||||||
git clone --depth=1 https://github.com/mushorg/snare /opt/snare && \
|
git clone --depth=1 https://github.com/mushorg/snare /opt/snare && \
|
||||||
cd /opt/snare/ && \
|
cd /opt/snare/ && \
|
||||||
|
@ -21,7 +21,7 @@ RUN apk -U --no-cache add \
|
||||||
rm -rf /opt/snare && \
|
rm -rf /opt/snare && \
|
||||||
clone --target http://example.com && \
|
clone --target http://example.com && \
|
||||||
mv /root/dist/pages/* /opt/snare/pages/ && \
|
mv /root/dist/pages/* /opt/snare/pages/ && \
|
||||||
|
#
|
||||||
# Clean up
|
# Clean up
|
||||||
apk del --purge \
|
apk del --purge \
|
||||||
build-base \
|
build-base \
|
||||||
|
@ -30,7 +30,7 @@ RUN apk -U --no-cache add \
|
||||||
rm -rf /root/* && \
|
rm -rf /root/* && \
|
||||||
rm -rf /tmp/* /var/tmp/* && \
|
rm -rf /tmp/* /var/tmp/* && \
|
||||||
rm -rf /var/cache/apk/*
|
rm -rf /var/cache/apk/*
|
||||||
|
#
|
||||||
# Start snare
|
# Start snare
|
||||||
STOPSIGNAL SIGKILL
|
STOPSIGNAL SIGKILL
|
||||||
CMD snare --tanner tanner --debug true --no-dorks true --auto-update false --host-ip 0.0.0.0 --port 80 --page-dir $(shuf -i 1-10 -n 1)
|
CMD snare --tanner tanner --debug true --no-dorks true --auto-update false --host-ip 0.0.0.0 --port 80 --page-dir $(shuf -i 1-10 -n 1)
|
||||||
|
|
|
@ -1,8 +1,8 @@
|
||||||
FROM alpine
|
FROM alpine
|
||||||
|
#
|
||||||
# Include dist
|
# Include dist
|
||||||
ADD dist/ /root/dist/
|
ADD dist/ /root/dist/
|
||||||
|
#
|
||||||
# Setup apt
|
# Setup apt
|
||||||
RUN apk -U --no-cache add \
|
RUN apk -U --no-cache add \
|
||||||
build-base \
|
build-base \
|
||||||
|
@ -14,7 +14,7 @@ RUN apk -U --no-cache add \
|
||||||
py3-yarl \
|
py3-yarl \
|
||||||
python3 \
|
python3 \
|
||||||
python3-dev && \
|
python3-dev && \
|
||||||
|
#
|
||||||
# Setup Tanner
|
# Setup Tanner
|
||||||
git clone --depth=1 https://github.com/mushorg/tanner /opt/tanner && \
|
git clone --depth=1 https://github.com/mushorg/tanner /opt/tanner && \
|
||||||
cp /root/dist/config.py /opt/tanner/tanner/ && \
|
cp /root/dist/config.py /opt/tanner/tanner/ && \
|
||||||
|
@ -35,13 +35,13 @@ RUN apk -U --no-cache add \
|
||||||
setup.py \
|
setup.py \
|
||||||
tanner/data && \
|
tanner/data && \
|
||||||
cd / && \
|
cd / && \
|
||||||
|
#
|
||||||
# Setup configs, user, groups
|
# Setup configs, user, groups
|
||||||
addgroup -g 2000 tanner && \
|
addgroup -g 2000 tanner && \
|
||||||
adduser -S -s /bin/ash -u 2000 -D -g 2000 tanner && \
|
adduser -S -s /bin/ash -u 2000 -D -g 2000 tanner && \
|
||||||
mkdir /var/log/tanner && \
|
mkdir /var/log/tanner && \
|
||||||
chown -R tanner:tanner /opt/tanner /var/log/tanner && \
|
chown -R tanner:tanner /opt/tanner /var/log/tanner && \
|
||||||
|
#
|
||||||
# Clean up
|
# Clean up
|
||||||
apk del --purge \
|
apk del --purge \
|
||||||
build-base \
|
build-base \
|
||||||
|
@ -54,7 +54,7 @@ RUN apk -U --no-cache add \
|
||||||
rm -rf /root/* && \
|
rm -rf /root/* && \
|
||||||
rm -rf /tmp/* /var/tmp/* && \
|
rm -rf /tmp/* /var/tmp/* && \
|
||||||
rm -rf /var/cache/apk/*
|
rm -rf /var/cache/apk/*
|
||||||
|
#
|
||||||
# Start conpot
|
# Start conpot
|
||||||
STOPSIGNAL SIGKILL
|
STOPSIGNAL SIGKILL
|
||||||
USER tanner:tanner
|
USER tanner:tanner
|
||||||
|
|
12
docker/tanner/tanner/dist/config.py
vendored
12
docker/tanner/tanner/dist/config.py
vendored
|
@ -9,7 +9,9 @@ config_template = {'DATA': {'db_config': '/opt/tanner/db/db_config.json',
|
||||||
'dorks': '/opt/tanner/data/dorks.pickle',
|
'dorks': '/opt/tanner/data/dorks.pickle',
|
||||||
'user_dorks': '/opt/tanner/data/user_dorks.pickle',
|
'user_dorks': '/opt/tanner/data/user_dorks.pickle',
|
||||||
'crawler_stats': '/opt/tanner/data/crawler_user_agents.txt',
|
'crawler_stats': '/opt/tanner/data/crawler_user_agents.txt',
|
||||||
'geo_db': '/opt/tanner/db/GeoLite2-City.mmdb'
|
'geo_db': '/opt/tanner/db/GeoLite2-City.mmdb',
|
||||||
|
'tornado': '/opt/tanner/data/tornado.py',
|
||||||
|
'mako': '/opt/tanner/data/mako.py'
|
||||||
},
|
},
|
||||||
'TANNER': {'host': '0.0.0.0', 'port': 8090},
|
'TANNER': {'host': '0.0.0.0', 'port': 8090},
|
||||||
'WEB': {'host': '0.0.0.0', 'port': 8091},
|
'WEB': {'host': '0.0.0.0', 'port': 8091},
|
||||||
|
@ -18,16 +20,20 @@ config_template = {'DATA': {'db_config': '/opt/tanner/db/db_config.json',
|
||||||
'REDIS': {'host': 'tanner_redis', 'port': 6379, 'poolsize': 80, 'timeout': 1},
|
'REDIS': {'host': 'tanner_redis', 'port': 6379, 'poolsize': 80, 'timeout': 1},
|
||||||
'EMULATORS': {'root_dir': '/opt/tanner'},
|
'EMULATORS': {'root_dir': '/opt/tanner'},
|
||||||
'EMULATOR_ENABLED': {'sqli': True, 'rfi': True, 'lfi': False, 'xss': True, 'cmd_exec': False,
|
'EMULATOR_ENABLED': {'sqli': True, 'rfi': True, 'lfi': False, 'xss': True, 'cmd_exec': False,
|
||||||
'php_code_injection': True, "crlf": True},
|
'php_code_injection': True, 'php_object_injection': True, "crlf": True,
|
||||||
|
'xxe_injection': True, 'template_injection': False},
|
||||||
'SQLI': {'type': 'SQLITE', 'db_name': 'tanner_db', 'host': 'localhost', 'user': 'root',
|
'SQLI': {'type': 'SQLITE', 'db_name': 'tanner_db', 'host': 'localhost', 'user': 'root',
|
||||||
'password': 'user_pass'},
|
'password': 'user_pass'},
|
||||||
|
'XXE_INJECTION': {'OUT_OF_BAND': False},
|
||||||
'DOCKER': {'host_image': 'busybox:latest'},
|
'DOCKER': {'host_image': 'busybox:latest'},
|
||||||
'LOGGER': {'log_debug': '/tmp/tanner/tanner.log', 'log_err': '/tmp/tanner/tanner.err'},
|
'LOGGER': {'log_debug': '/tmp/tanner/tanner.log', 'log_err': '/tmp/tanner/tanner.err'},
|
||||||
'MONGO': {'enabled': False, 'URI': 'mongodb://localhost'},
|
'MONGO': {'enabled': False, 'URI': 'mongodb://localhost'},
|
||||||
'HPFEEDS': {'enabled': False, 'HOST': 'localhost', 'PORT': 10000, 'IDENT': '', 'SECRET': '',
|
'HPFEEDS': {'enabled': False, 'HOST': 'localhost', 'PORT': 10000, 'IDENT': '', 'SECRET': '',
|
||||||
'CHANNEL': 'tanner.events'},
|
'CHANNEL': 'tanner.events'},
|
||||||
'LOCALLOG': {'enabled': True, 'PATH': '/var/log/tanner/tanner_report.json'},
|
'LOCALLOG': {'enabled': True, 'PATH': '/var/log/tanner/tanner_report.json'},
|
||||||
'CLEANLOG': {'enabled': False}
|
'CLEANLOG': {'enabled': False},
|
||||||
|
'REMOTE_DOCKERFILE': {'GITHUB': "https://raw.githubusercontent.com/mushorg/tanner/master/docker/"
|
||||||
|
"tanner/template_injection/Dockerfile"}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
||||||
|
|
Loading…
Reference in a new issue