Alex-Devera/tpotce
1
0
Fork 0
mirror of https://github.com/telekom-security/tpotce.git synced 2025-04-19 21:52:27 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

tweaking nginx, ddospot:

Browse source 
- Remove ddospot from standard
- Add ddospot only to tarpit
- Decouple nginx from host mode, only export tcp/64297, tcp/64294
- Adjust editions accordingly
- Keep LUA settings in Nginx config for now, just in case we find a different use case
This commit is contained in:
t3chn0m4g3 2024-12-09 17:38:25 +01:00
parent a67a765dd7
commit e43e8277fc
10 changed files with 136 additions and 128 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

20
compose/llm.yml
View file

@ -2,7 +2,7 @@
networks: networks:
beelzebub_local: beelzebub_local:
galah_local: galah_local:
spiderfoot_local: nginx_local:
ewsposter_local: ewsposter_local:
services: services:
@ -165,6 +165,8 @@ services:
depends_on: depends_on:
tpotinit: tpotinit:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
environment: environment:
- bootstrap.memory_lock=true - bootstrap.memory_lock=true
- ES_JAVA_OPTS=-Xms2048m -Xmx2048m - ES_JAVA_OPTS=-Xms2048m -Xmx2048m
@ -193,6 +195,8 @@ services:
depends_on: depends_on:
elasticsearch: elasticsearch:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
mem_limit: 1g mem_limit: 1g
ports: ports:
- "127.0.0.1:64296:5601" - "127.0.0.1:64296:5601"
@ -206,6 +210,8 @@ services:
depends_on: depends_on:
elasticsearch: elasticsearch:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
environment: environment:
- LS_JAVA_OPTS=-Xms1024m -Xmx1024m - LS_JAVA_OPTS=-Xms1024m -Xmx1024m
- TPOT_TYPE=${TPOT_TYPE:-HIVE} - TPOT_TYPE=${TPOT_TYPE:-HIVE}
@ -227,6 +233,8 @@ services:
depends_on: depends_on:
tpotinit: tpotinit:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
stop_signal: SIGKILL stop_signal: SIGKILL
tty: true tty: true
image: ${TPOT_REPO}/redis:${TPOT_VERSION} image: ${TPOT_REPO}/redis:${TPOT_VERSION}
@ -240,6 +248,8 @@ services:
depends_on: depends_on:
tpotinit: tpotinit:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
environment: environment:
- MAP_COMMAND=AttackMapServer.py - MAP_COMMAND=AttackMapServer.py
stop_signal: SIGKILL stop_signal: SIGKILL
@ -256,6 +266,8 @@ services:
depends_on: depends_on:
elasticsearch: elasticsearch:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
environment: environment:
- MAP_COMMAND=DataServer_v2.py - MAP_COMMAND=DataServer_v2.py
- TPOT_ATTACKMAP_TEXT=${TPOT_ATTACKMAP_TEXT} - TPOT_ATTACKMAP_TEXT=${TPOT_ATTACKMAP_TEXT}
@ -307,9 +319,11 @@ services:
- /var/tmp/nginx/scgi - /var/tmp/nginx/scgi
- /run - /run
- /var/lib/nginx/tmp:uid=100,gid=82 - /var/lib/nginx/tmp:uid=100,gid=82
network_mode: "host" networks:
- nginx_local
ports: ports:
- "64297:64297" - "64297:64297"
- "64294:64294"
image: ${TPOT_REPO}/nginx:${TPOT_VERSION} image: ${TPOT_REPO}/nginx:${TPOT_VERSION}
pull_policy: ${TPOT_PULL_POLICY} pull_policy: ${TPOT_PULL_POLICY}
read_only: true read_only: true
@ -327,7 +341,7 @@ services:
tpotinit: tpotinit:
condition: service_healthy condition: service_healthy
networks: networks:
- spiderfoot_local - nginx_local
ports: ports:
- "127.0.0.1:64303:8080" - "127.0.0.1:64303:8080"
image: ${TPOT_REPO}/spiderfoot:${TPOT_VERSION} image: ${TPOT_REPO}/spiderfoot:${TPOT_VERSION}

24
compose/mac_win.yml
View file

@ -4,7 +4,6 @@ networks:
adbhoney_local: adbhoney_local:
ciscoasa_local: ciscoasa_local:
cowrie_local: cowrie_local:
ddospot_local:
dicompot_local: dicompot_local:
dionaea_local: dionaea_local:
elasticpot_local: elasticpot_local:
@ -135,29 +134,6 @@ services:
- ${TPOT_DATA_PATH}/cowrie/log:/home/cowrie/cowrie/log - ${TPOT_DATA_PATH}/cowrie/log:/home/cowrie/cowrie/log
- ${TPOT_DATA_PATH}/cowrie/log/tty:/home/cowrie/cowrie/log/tty - ${TPOT_DATA_PATH}/cowrie/log/tty:/home/cowrie/cowrie/log/tty
# Ddospot service
ddospot:
container_name: ddospot
restart: always
depends_on:
tpotinit:
condition: service_healthy
networks:
- ddospot_local
ports:
- "19:19/udp"
# - "53:53/udp"
- "123:123/udp"
# - "161:161/udp"
- "1900:1900/udp"
image: ${TPOT_REPO}/ddospot:${TPOT_VERSION}
pull_policy: ${TPOT_PULL_POLICY}
read_only: true
volumes:
- ${TPOT_DATA_PATH}/ddospot/log:/opt/ddospot/ddospot/logs
- ${TPOT_DATA_PATH}/ddospot/bl:/opt/ddospot/ddospot/bl
- ${TPOT_DATA_PATH}/ddospot/db:/opt/ddospot/ddospot/db
# Dicompot service # Dicompot service
# Get the Horos Client for testing: https://horosproject.org/ # Get the Horos Client for testing: https://horosproject.org/
# Get Dicom images (CC BY 3.0): https://www.cancerimagingarchive.net/collections/ # Get Dicom images (CC BY 3.0): https://www.cancerimagingarchive.net/collections/

20
compose/mini.yml
View file

@ -9,7 +9,7 @@ networks:
dicompot_local: dicompot_local:
honeypots_local: honeypots_local:
medpot_local: medpot_local:
spiderfoot_local: nginx_local:
ewsposter_local: ewsposter_local:
services: services:
@ -364,6 +364,8 @@ services:
depends_on: depends_on:
tpotinit: tpotinit:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
environment: environment:
- bootstrap.memory_lock=true - bootstrap.memory_lock=true
- ES_JAVA_OPTS=-Xms2048m -Xmx2048m - ES_JAVA_OPTS=-Xms2048m -Xmx2048m
@ -392,6 +394,8 @@ services:
depends_on: depends_on:
elasticsearch: elasticsearch:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
mem_limit: 1g mem_limit: 1g
ports: ports:
- "127.0.0.1:64296:5601" - "127.0.0.1:64296:5601"
@ -405,6 +409,8 @@ services:
depends_on: depends_on:
elasticsearch: elasticsearch:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
environment: environment:
- LS_JAVA_OPTS=-Xms1024m -Xmx1024m - LS_JAVA_OPTS=-Xms1024m -Xmx1024m
- TPOT_TYPE=${TPOT_TYPE:-HIVE} - TPOT_TYPE=${TPOT_TYPE:-HIVE}
@ -426,6 +432,8 @@ services:
depends_on: depends_on:
tpotinit: tpotinit:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
stop_signal: SIGKILL stop_signal: SIGKILL
tty: true tty: true
image: ${TPOT_REPO}/redis:${TPOT_VERSION} image: ${TPOT_REPO}/redis:${TPOT_VERSION}
@ -439,6 +447,8 @@ services:
depends_on: depends_on:
tpotinit: tpotinit:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
environment: environment:
- MAP_COMMAND=AttackMapServer.py - MAP_COMMAND=AttackMapServer.py
stop_signal: SIGKILL stop_signal: SIGKILL
@ -455,6 +465,8 @@ services:
depends_on: depends_on:
elasticsearch: elasticsearch:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
environment: environment:
- MAP_COMMAND=DataServer_v2.py - MAP_COMMAND=DataServer_v2.py
- TPOT_ATTACKMAP_TEXT=${TPOT_ATTACKMAP_TEXT} - TPOT_ATTACKMAP_TEXT=${TPOT_ATTACKMAP_TEXT}
@ -506,9 +518,11 @@ services:
- /var/tmp/nginx/scgi - /var/tmp/nginx/scgi
- /run - /run
- /var/lib/nginx/tmp:uid=100,gid=82 - /var/lib/nginx/tmp:uid=100,gid=82
network_mode: "host" networks:
- nginx_local
ports: ports:
- "64297:64297" - "64297:64297"
- "64294:64294"
image: ${TPOT_REPO}/nginx:${TPOT_VERSION} image: ${TPOT_REPO}/nginx:${TPOT_VERSION}
pull_policy: ${TPOT_PULL_POLICY} pull_policy: ${TPOT_PULL_POLICY}
read_only: true read_only: true
@ -526,7 +540,7 @@ services:
tpotinit: tpotinit:
condition: service_healthy condition: service_healthy
networks: networks:
- spiderfoot_local - nginx_local
ports: ports:
- "127.0.0.1:64303:8080" - "127.0.0.1:64303:8080"
image: ${TPOT_REPO}/spiderfoot:${TPOT_VERSION} image: ${TPOT_REPO}/spiderfoot:${TPOT_VERSION}

24
compose/sensor.yml
View file

@ -7,7 +7,6 @@ networks:
conpot_local_ipmi: conpot_local_ipmi:
conpot_local_kamstrup_382: conpot_local_kamstrup_382:
cowrie_local: cowrie_local:
ddospot_local:
dicompot_local: dicompot_local:
dionaea_local: dionaea_local:
elasticpot_local: elasticpot_local:
@ -221,29 +220,6 @@ services:
- ${TPOT_DATA_PATH}/cowrie/log:/home/cowrie/cowrie/log - ${TPOT_DATA_PATH}/cowrie/log:/home/cowrie/cowrie/log
- ${TPOT_DATA_PATH}/cowrie/log/tty:/home/cowrie/cowrie/log/tty - ${TPOT_DATA_PATH}/cowrie/log/tty:/home/cowrie/cowrie/log/tty
# Ddospot service
ddospot:
container_name: ddospot
restart: always
depends_on:
tpotinit:
condition: service_healthy
networks:
- ddospot_local
ports:
- "19:19/udp"
- "53:53/udp"
- "123:123/udp"
# - "161:161/udp"
- "1900:1900/udp"
image: ${TPOT_REPO}/ddospot:${TPOT_VERSION}
pull_policy: ${TPOT_PULL_POLICY}
read_only: true
volumes:
- ${TPOT_DATA_PATH}/ddospot/log:/opt/ddospot/ddospot/logs
- ${TPOT_DATA_PATH}/ddospot/bl:/opt/ddospot/ddospot/bl
- ${TPOT_DATA_PATH}/ddospot/db:/opt/ddospot/ddospot/db
# Dicompot service # Dicompot service
# Get the Horos Client for testing: https://horosproject.org/ # Get the Horos Client for testing: https://horosproject.org/
# Get Dicom images (CC BY 3.0): https://www.cancerimagingarchive.net/collections/ # Get Dicom images (CC BY 3.0): https://www.cancerimagingarchive.net/collections/

46
compose/standard.yml
View file

@ -7,7 +7,6 @@ networks:
conpot_local_ipmi: conpot_local_ipmi:
conpot_local_kamstrup_382: conpot_local_kamstrup_382:
cowrie_local: cowrie_local:
ddospot_local:
dicompot_local: dicompot_local:
dionaea_local: dionaea_local:
elasticpot_local: elasticpot_local:
@ -21,8 +20,8 @@ networks:
redishoneypot_local: redishoneypot_local:
sentrypeer_local: sentrypeer_local:
tanner_local: tanner_local:
spiderfoot_local:
wordpot_local: wordpot_local:
nginx_local:
ewsposter_local: ewsposter_local:
services: services:
@ -223,29 +222,6 @@ services:
- ${TPOT_DATA_PATH}/cowrie/log:/home/cowrie/cowrie/log - ${TPOT_DATA_PATH}/cowrie/log:/home/cowrie/cowrie/log
- ${TPOT_DATA_PATH}/cowrie/log/tty:/home/cowrie/cowrie/log/tty - ${TPOT_DATA_PATH}/cowrie/log/tty:/home/cowrie/cowrie/log/tty
# Ddospot service
ddospot:
container_name: ddospot
restart: always
depends_on:
tpotinit:
condition: service_healthy
networks:
- ddospot_local
ports:
- "19:19/udp"
- "53:53/udp"
- "123:123/udp"
# - "161:161/udp"
- "1900:1900/udp"
image: ${TPOT_REPO}/ddospot:${TPOT_VERSION}
pull_policy: ${TPOT_PULL_POLICY}
read_only: true
volumes:
- ${TPOT_DATA_PATH}/ddospot/log:/opt/ddospot/ddospot/logs
- ${TPOT_DATA_PATH}/ddospot/bl:/opt/ddospot/ddospot/bl
- ${TPOT_DATA_PATH}/ddospot/db:/opt/ddospot/ddospot/db
# Dicompot service # Dicompot service
# Get the Horos Client for testing: https://horosproject.org/ # Get the Horos Client for testing: https://horosproject.org/
# Get Dicom images (CC BY 3.0): https://www.cancerimagingarchive.net/collections/ # Get Dicom images (CC BY 3.0): https://www.cancerimagingarchive.net/collections/
@ -335,7 +311,7 @@ services:
networks: networks:
- h0neytr4p_local - h0neytr4p_local
ports: ports:
- "443:443" - "443:443"
# - "80:80" # - "80:80"
image: ${TPOT_REPO}/h0neytr4p:${TPOT_VERSION} image: ${TPOT_REPO}/h0neytr4p:${TPOT_VERSION}
pull_policy: ${TPOT_PULL_POLICY} pull_policy: ${TPOT_PULL_POLICY}
@ -694,6 +670,8 @@ services:
depends_on: depends_on:
tpotinit: tpotinit:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
environment: environment:
- bootstrap.memory_lock=true - bootstrap.memory_lock=true
- ES_JAVA_OPTS=-Xms2048m -Xmx2048m - ES_JAVA_OPTS=-Xms2048m -Xmx2048m
@ -722,6 +700,8 @@ services:
depends_on: depends_on:
elasticsearch: elasticsearch:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
mem_limit: 1g mem_limit: 1g
ports: ports:
- "127.0.0.1:64296:5601" - "127.0.0.1:64296:5601"
@ -735,6 +715,8 @@ services:
depends_on: depends_on:
elasticsearch: elasticsearch:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
environment: environment:
- LS_JAVA_OPTS=-Xms1024m -Xmx1024m - LS_JAVA_OPTS=-Xms1024m -Xmx1024m
- TPOT_TYPE=${TPOT_TYPE:-HIVE} - TPOT_TYPE=${TPOT_TYPE:-HIVE}
@ -756,6 +738,8 @@ services:
depends_on: depends_on:
tpotinit: tpotinit:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
stop_signal: SIGKILL stop_signal: SIGKILL
tty: true tty: true
image: ${TPOT_REPO}/redis:${TPOT_VERSION} image: ${TPOT_REPO}/redis:${TPOT_VERSION}
@ -769,6 +753,8 @@ services:
depends_on: depends_on:
tpotinit: tpotinit:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
environment: environment:
- MAP_COMMAND=AttackMapServer.py - MAP_COMMAND=AttackMapServer.py
stop_signal: SIGKILL stop_signal: SIGKILL
@ -785,6 +771,8 @@ services:
depends_on: depends_on:
elasticsearch: elasticsearch:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
environment: environment:
- MAP_COMMAND=DataServer_v2.py - MAP_COMMAND=DataServer_v2.py
- TPOT_ATTACKMAP_TEXT=${TPOT_ATTACKMAP_TEXT} - TPOT_ATTACKMAP_TEXT=${TPOT_ATTACKMAP_TEXT}
@ -836,9 +824,11 @@ services:
- /var/tmp/nginx/scgi - /var/tmp/nginx/scgi
- /run - /run
- /var/lib/nginx/tmp:uid=100,gid=82 - /var/lib/nginx/tmp:uid=100,gid=82
network_mode: "host" networks:
- nginx_local
ports: ports:
- "64297:64297" - "64297:64297"
- "64294:64294"
image: ${TPOT_REPO}/nginx:${TPOT_VERSION} image: ${TPOT_REPO}/nginx:${TPOT_VERSION}
pull_policy: ${TPOT_PULL_POLICY} pull_policy: ${TPOT_PULL_POLICY}
read_only: true read_only: true
@ -856,7 +846,7 @@ services:
tpotinit: tpotinit:
condition: service_healthy condition: service_healthy
networks: networks:
- spiderfoot_local - nginx_local
ports: ports:
- "127.0.0.1:64303:8080" - "127.0.0.1:64303:8080"
image: ${TPOT_REPO}/spiderfoot:${TPOT_VERSION} image: ${TPOT_REPO}/spiderfoot:${TPOT_VERSION}

44
compose/tarpit.yml
View file

@ -1,10 +1,11 @@
# T-Pot: TARPIT # T-Pot: TARPIT
networks: networks:
ddospot_local:
endlessh_local: endlessh_local:
go-pot_local: go-pot_local:
hellpot_local: hellpot_local:
heralding_local: heralding_local:
spiderfoot_local: nginx_local:
ewsposter_local: ewsposter_local:
services: services:
@ -41,6 +42,29 @@ services:
#### Honeypots #### Honeypots
################## ##################
# Ddospot service
ddospot:
container_name: ddospot
restart: always
depends_on:
tpotinit:
condition: service_healthy
networks:
- ddospot_local
ports:
- "19:19/udp"
- "53:53/udp"
- "123:123/udp"
# - "161:161/udp"
- "1900:1900/udp"
image: ${TPOT_REPO}/ddospot:${TPOT_VERSION}
pull_policy: ${TPOT_PULL_POLICY}
read_only: true
volumes:
- ${TPOT_DATA_PATH}/ddospot/log:/opt/ddospot/ddospot/logs
- ${TPOT_DATA_PATH}/ddospot/bl:/opt/ddospot/ddospot/bl
- ${TPOT_DATA_PATH}/ddospot/db:/opt/ddospot/ddospot/db
# Endlessh service # Endlessh service
endlessh: endlessh:
container_name: endlessh container_name: endlessh
@ -197,6 +221,8 @@ services:
depends_on: depends_on:
tpotinit: tpotinit:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
environment: environment:
- bootstrap.memory_lock=true - bootstrap.memory_lock=true
- ES_JAVA_OPTS=-Xms2048m -Xmx2048m - ES_JAVA_OPTS=-Xms2048m -Xmx2048m
@ -225,6 +251,8 @@ services:
depends_on: depends_on:
elasticsearch: elasticsearch:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
mem_limit: 1g mem_limit: 1g
ports: ports:
- "127.0.0.1:64296:5601" - "127.0.0.1:64296:5601"
@ -238,6 +266,8 @@ services:
depends_on: depends_on:
elasticsearch: elasticsearch:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
environment: environment:
- LS_JAVA_OPTS=-Xms1024m -Xmx1024m - LS_JAVA_OPTS=-Xms1024m -Xmx1024m
- TPOT_TYPE=${TPOT_TYPE:-HIVE} - TPOT_TYPE=${TPOT_TYPE:-HIVE}
@ -259,6 +289,8 @@ services:
depends_on: depends_on:
tpotinit: tpotinit:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
stop_signal: SIGKILL stop_signal: SIGKILL
tty: true tty: true
image: ${TPOT_REPO}/redis:${TPOT_VERSION} image: ${TPOT_REPO}/redis:${TPOT_VERSION}
@ -272,6 +304,8 @@ services:
depends_on: depends_on:
tpotinit: tpotinit:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
environment: environment:
- MAP_COMMAND=AttackMapServer.py - MAP_COMMAND=AttackMapServer.py
stop_signal: SIGKILL stop_signal: SIGKILL
@ -288,6 +322,8 @@ services:
depends_on: depends_on:
elasticsearch: elasticsearch:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
environment: environment:
- MAP_COMMAND=DataServer_v2.py - MAP_COMMAND=DataServer_v2.py
- TPOT_ATTACKMAP_TEXT=${TPOT_ATTACKMAP_TEXT} - TPOT_ATTACKMAP_TEXT=${TPOT_ATTACKMAP_TEXT}
@ -339,9 +375,11 @@ services:
- /var/tmp/nginx/scgi - /var/tmp/nginx/scgi
- /run - /run
- /var/lib/nginx/tmp:uid=100,gid=82 - /var/lib/nginx/tmp:uid=100,gid=82
network_mode: "host" networks:
- nginx_local
ports: ports:
- "64297:64297" - "64297:64297"
- "64294:64294"
image: ${TPOT_REPO}/nginx:${TPOT_VERSION} image: ${TPOT_REPO}/nginx:${TPOT_VERSION}
pull_policy: ${TPOT_PULL_POLICY} pull_policy: ${TPOT_PULL_POLICY}
read_only: true read_only: true
@ -359,7 +397,7 @@ services:
tpotinit: tpotinit:
condition: service_healthy condition: service_healthy
networks: networks:
- spiderfoot_local - nginx_local
ports: ports:
- "127.0.0.1:64303:8080" - "127.0.0.1:64303:8080"
image: ${TPOT_REPO}/spiderfoot:${TPOT_VERSION} image: ${TPOT_REPO}/spiderfoot:${TPOT_VERSION}

20
compose/tpot_services.yml
View file

@ -33,7 +33,7 @@ networks:
sentrypeer_local: sentrypeer_local:
tanner_local: tanner_local:
wordpot_local: wordpot_local:
spiderfoot_local: nginx_local:
ewsposter_local: ewsposter_local:
services: services:
@ -925,6 +925,8 @@ services:
depends_on: depends_on:
tpotinit: tpotinit:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
environment: environment:
- bootstrap.memory_lock=true - bootstrap.memory_lock=true
- ES_JAVA_OPTS=-Xms2048m -Xmx2048m - ES_JAVA_OPTS=-Xms2048m -Xmx2048m
@ -953,6 +955,8 @@ services:
depends_on: depends_on:
elasticsearch: elasticsearch:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
mem_limit: 1g mem_limit: 1g
ports: ports:
- "127.0.0.1:64296:5601" - "127.0.0.1:64296:5601"
@ -966,6 +970,8 @@ services:
depends_on: depends_on:
elasticsearch: elasticsearch:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
environment: environment:
- LS_JAVA_OPTS=-Xms1024m -Xmx1024m - LS_JAVA_OPTS=-Xms1024m -Xmx1024m
- TPOT_TYPE=${TPOT_TYPE:-HIVE} - TPOT_TYPE=${TPOT_TYPE:-HIVE}
@ -987,6 +993,8 @@ services:
depends_on: depends_on:
tpotinit: tpotinit:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
stop_signal: SIGKILL stop_signal: SIGKILL
tty: true tty: true
image: ${TPOT_REPO}/redis:${TPOT_VERSION} image: ${TPOT_REPO}/redis:${TPOT_VERSION}
@ -1000,6 +1008,8 @@ services:
depends_on: depends_on:
tpotinit: tpotinit:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
environment: environment:
- MAP_COMMAND=AttackMapServer.py - MAP_COMMAND=AttackMapServer.py
stop_signal: SIGKILL stop_signal: SIGKILL
@ -1016,6 +1026,8 @@ services:
depends_on: depends_on:
elasticsearch: elasticsearch:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
environment: environment:
- MAP_COMMAND=DataServer_v2.py - MAP_COMMAND=DataServer_v2.py
- TPOT_ATTACKMAP_TEXT=${TPOT_ATTACKMAP_TEXT} - TPOT_ATTACKMAP_TEXT=${TPOT_ATTACKMAP_TEXT}
@ -1067,9 +1079,11 @@ services:
- /var/tmp/nginx/scgi - /var/tmp/nginx/scgi
- /run - /run
- /var/lib/nginx/tmp:uid=100,gid=82 - /var/lib/nginx/tmp:uid=100,gid=82
network_mode: "host" networks:
- nginx_local
ports: ports:
- "64297:64297" - "64297:64297"
- "64294:64294"
image: ${TPOT_REPO}/nginx:${TPOT_VERSION} image: ${TPOT_REPO}/nginx:${TPOT_VERSION}
pull_policy: ${TPOT_PULL_POLICY} pull_policy: ${TPOT_PULL_POLICY}
read_only: true read_only: true
@ -1087,7 +1101,7 @@ services:
tpotinit: tpotinit:
condition: service_healthy condition: service_healthy
networks: networks:
- spiderfoot_local - nginx_local
ports: ports:
- "127.0.0.1:64303:8080" - "127.0.0.1:64303:8080"
image: ${TPOT_REPO}/spiderfoot:${TPOT_VERSION} image: ${TPOT_REPO}/spiderfoot:${TPOT_VERSION}

54
docker-compose.yml
View file

@ -7,7 +7,6 @@ networks:
conpot_local_ipmi: conpot_local_ipmi:
conpot_local_kamstrup_382: conpot_local_kamstrup_382:
cowrie_local: cowrie_local:
ddospot_local:
dicompot_local: dicompot_local:
dionaea_local: dionaea_local:
elasticpot_local: elasticpot_local:
@ -21,8 +20,8 @@ networks:
redishoneypot_local: redishoneypot_local:
sentrypeer_local: sentrypeer_local:
tanner_local: tanner_local:
spiderfoot_local:
wordpot_local: wordpot_local:
nginx_local:
ewsposter_local: ewsposter_local:
services: services:
@ -223,29 +222,6 @@ services:
- ${TPOT_DATA_PATH}/cowrie/log:/home/cowrie/cowrie/log - ${TPOT_DATA_PATH}/cowrie/log:/home/cowrie/cowrie/log
- ${TPOT_DATA_PATH}/cowrie/log/tty:/home/cowrie/cowrie/log/tty - ${TPOT_DATA_PATH}/cowrie/log/tty:/home/cowrie/cowrie/log/tty
# Ddospot service
ddospot:
container_name: ddospot
restart: always
depends_on:
tpotinit:
condition: service_healthy
networks:
- ddospot_local
ports:
- "19:19/udp"
- "53:53/udp"
- "123:123/udp"
# - "161:161/udp"
- "1900:1900/udp"
image: ${TPOT_REPO}/ddospot:${TPOT_VERSION}
pull_policy: ${TPOT_PULL_POLICY}
read_only: true
volumes:
- ${TPOT_DATA_PATH}/ddospot/log:/opt/ddospot/ddospot/logs
- ${TPOT_DATA_PATH}/ddospot/bl:/opt/ddospot/ddospot/bl
- ${TPOT_DATA_PATH}/ddospot/db:/opt/ddospot/ddospot/db
# Dicompot service # Dicompot service
# Get the Horos Client for testing: https://horosproject.org/ # Get the Horos Client for testing: https://horosproject.org/
# Get Dicom images (CC BY 3.0): https://www.cancerimagingarchive.net/collections/ # Get Dicom images (CC BY 3.0): https://www.cancerimagingarchive.net/collections/
@ -335,7 +311,7 @@ services:
networks: networks:
- h0neytr4p_local - h0neytr4p_local
ports: ports:
- "443:443" - "443:443"
# - "80:80" # - "80:80"
image: ${TPOT_REPO}/h0neytr4p:${TPOT_VERSION} image: ${TPOT_REPO}/h0neytr4p:${TPOT_VERSION}
pull_policy: ${TPOT_PULL_POLICY} pull_policy: ${TPOT_PULL_POLICY}
@ -435,16 +411,12 @@ services:
# Mailoney service # Mailoney service
mailoney: mailoney:
container_name: mailoney container_name: mailoney
stdin_open: true
tty: true
restart: always restart: always
depends_on: depends_on:
tpotinit: tpotinit:
condition: service_healthy condition: service_healthy
environment:
- HPFEEDS_SERVER=
- HPFEEDS_IDENT=user
- HPFEEDS_SECRET=pass
- HPFEEDS_PORT=20000
- HPFEEDS_CHANNELPREFIX=prefix
networks: networks:
- mailoney_local - mailoney_local
ports: ports:
@ -698,6 +670,8 @@ services:
depends_on: depends_on:
tpotinit: tpotinit:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
environment: environment:
- bootstrap.memory_lock=true - bootstrap.memory_lock=true
- ES_JAVA_OPTS=-Xms2048m -Xmx2048m - ES_JAVA_OPTS=-Xms2048m -Xmx2048m
@ -726,6 +700,8 @@ services:
depends_on: depends_on:
elasticsearch: elasticsearch:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
mem_limit: 1g mem_limit: 1g
ports: ports:
- "127.0.0.1:64296:5601" - "127.0.0.1:64296:5601"
@ -739,6 +715,8 @@ services:
depends_on: depends_on:
elasticsearch: elasticsearch:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
environment: environment:
- LS_JAVA_OPTS=-Xms1024m -Xmx1024m - LS_JAVA_OPTS=-Xms1024m -Xmx1024m
- TPOT_TYPE=${TPOT_TYPE:-HIVE} - TPOT_TYPE=${TPOT_TYPE:-HIVE}
@ -760,6 +738,8 @@ services:
depends_on: depends_on:
tpotinit: tpotinit:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
stop_signal: SIGKILL stop_signal: SIGKILL
tty: true tty: true
image: ${TPOT_REPO}/redis:${TPOT_VERSION} image: ${TPOT_REPO}/redis:${TPOT_VERSION}
@ -773,6 +753,8 @@ services:
depends_on: depends_on:
tpotinit: tpotinit:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
environment: environment:
- MAP_COMMAND=AttackMapServer.py - MAP_COMMAND=AttackMapServer.py
stop_signal: SIGKILL stop_signal: SIGKILL
@ -789,6 +771,8 @@ services:
depends_on: depends_on:
elasticsearch: elasticsearch:
condition: service_healthy condition: service_healthy
networks:
- nginx_local
environment: environment:
- MAP_COMMAND=DataServer_v2.py - MAP_COMMAND=DataServer_v2.py
- TPOT_ATTACKMAP_TEXT=${TPOT_ATTACKMAP_TEXT} - TPOT_ATTACKMAP_TEXT=${TPOT_ATTACKMAP_TEXT}
@ -840,9 +824,11 @@ services:
- /var/tmp/nginx/scgi - /var/tmp/nginx/scgi
- /run - /run
- /var/lib/nginx/tmp:uid=100,gid=82 - /var/lib/nginx/tmp:uid=100,gid=82
network_mode: "host" networks:
- nginx_local
ports: ports:
- "64297:64297" - "64297:64297"
- "64294:64294"
image: ${TPOT_REPO}/nginx:${TPOT_VERSION} image: ${TPOT_REPO}/nginx:${TPOT_VERSION}
pull_policy: ${TPOT_PULL_POLICY} pull_policy: ${TPOT_PULL_POLICY}
read_only: true read_only: true
@ -860,7 +846,7 @@ services:
tpotinit: tpotinit:
condition: service_healthy condition: service_healthy
networks: networks:
- spiderfoot_local - nginx_local
ports: ports:
- "127.0.0.1:64303:8080" - "127.0.0.1:64303:8080"
image: ${TPOT_REPO}/spiderfoot:${TPOT_VERSION} image: ${TPOT_REPO}/spiderfoot:${TPOT_VERSION}

2
docker/nginx/dist/conf/lsweb.conf vendored
View file

@ -101,7 +101,7 @@ server {
if tpot_ostype == "mac" or tpot_ostype == "win" then if tpot_ostype == "mac" or tpot_ostype == "win" then
return "http://logstash:64305"; return "http://logstash:64305";
else else
return "http://127.0.0.1:64305"; return "http://logstash:64305";
end end
} }
access_log off; access_log off;

10
docker/nginx/dist/conf/tpotweb.conf vendored
View file

@ -128,7 +128,7 @@ server {
if tpot_ostype == "mac" or tpot_ostype == "win" then if tpot_ostype == "mac" or tpot_ostype == "win" then
return "http://kibana:5601"; return "http://kibana:5601";
else else
return "http://127.0.0.1:64296"; return "http://kibana:5601";
end end
} }
proxy_pass $kibana; proxy_pass $kibana;
@ -142,7 +142,7 @@ server {
if tpot_ostype == "mac" or tpot_ostype == "win" then if tpot_ostype == "mac" or tpot_ostype == "win" then
return "http://elasticsearch:9200"; return "http://elasticsearch:9200";
else else
return "http://127.0.0.1:64298"; return "http://elasticsearch:9200";
end end
} }
@ -157,7 +157,7 @@ server {
if tpot_ostype == "mac" or tpot_ostype == "win" then if tpot_ostype == "mac" or tpot_ostype == "win" then
return "http://map_web:64299"; return "http://map_web:64299";
else else
return "http://127.0.0.1:64299"; return "http://map_web:64299";
end end
} }
proxy_pass $map_web; proxy_pass $map_web;
@ -175,7 +175,7 @@ server {
if tpot_ostype == "mac" or tpot_ostype == "win" then if tpot_ostype == "mac" or tpot_ostype == "win" then
return "http://map_web:64299"; return "http://map_web:64299";
else else
return "http://127.0.0.1:64299"; return "http://map_web:64299";
end end
} }
proxy_pass $map_web; proxy_pass $map_web;
@ -193,7 +193,7 @@ server {
if tpot_ostype == "mac" or tpot_ostype == "win" then if tpot_ostype == "mac" or tpot_ostype == "win" then
return "http://spiderfoot:8080"; return "http://spiderfoot:8080";
else else
return "http://127.0.0.1:64303"; return "http://spiderfoot:8080";
end end
} }
location /spiderfoot/ { location /spiderfoot/ {