mirror of https://github.com/lanjelot/patator
Compare commits
75 Commits
Author | SHA1 | Date |
---|---|---|
lanjelot | 20e800adb4 | 5 months ago |
lanjelot | 204a12a789 | 8 months ago |
lanjelot | f5d660f614 | 8 months ago |
lanjelot | 85fc30104e | 8 months ago |
lanjelot | 97a694f17d | 8 months ago |
lanjelot | 3190a428a0 | 8 months ago |
laxa | c783c8b63f | 9 months ago |
Gustaf Blomqvist | 5adfad0eb9 | 2 years ago |
lanjelot | 46908228cc | 2 years ago |
lanjelot | b97f8b2d63 | 2 years ago |
Carlos Ibáñez | 5072a565f0 | 2 years ago |
Christian Clauss | b5ed210b21 | 2 years ago |
lanjelot | 8d00e46a20 | 2 years ago |
lanjelot | a93ae7a252 | 2 years ago |
lanjelot | c112a2aa1d | 2 years ago |
Christian Clauss | 72efc0b101 | 3 years ago |
lanjelot | e48316728f | 3 years ago |
lanjelot | 29511c911a | 3 years ago |
lanjelot | b8c028757f | 3 years ago |
lanjelot | 23d0cfe7d2 | 3 years ago |
lanjelot | 487109a4ce | 3 years ago |
Lucas Hennessy | 54e09bc5bb | 3 years ago |
Lucas Hennessy | 59eb8fa6ff | 3 years ago |
zamanry | c4c8a065d6 | 3 years ago |
lanjelot | 5947f5f391 | 3 years ago |
lanjelot | 642a6f4c7c | 3 years ago |
Francisco Vilmar Cardoso Ruviaro | f3983f33ab | 3 years ago |
lanjelot | 452819f807 | 3 years ago |
lanjelot | d96663bc3d | 3 years ago |
lanjelot | 2692d6a5c9 | 4 years ago |
lanjelot | 4b5d958184 | 4 years ago |
lanjelot | fed68fd393 | 4 years ago |
lanjelot | 6cdc51d73f | 4 years ago |
lanjelot | 0d7661bbb5 | 4 years ago |
lanjelot | 288dac8bf1 | 4 years ago |
lanjelot | eb7ac4b4ba | 4 years ago |
lanjelot | da3d9751d7 | 4 years ago |
lanjelot | 902c650e04 | 4 years ago |
lanjelot | 25fecf113e | 4 years ago |
lanjelot | 6d29448c89 | 4 years ago |
lanjelot | 74545283a1 | 4 years ago |
haxxinen | 2a6744a551 | 4 years ago |
lanjelot | 2a23299f0b | 4 years ago |
lanjelot | b6316de22a | 4 years ago |
lanjelot | 13d7bf7981 | 4 years ago |
lanjelot | fd84a310f1 | 4 years ago |
lanjelot | b25e85d0be | 4 years ago |
lanjelot | 2b78b342fc | 4 years ago |
lanjelot | 1303350893 | 4 years ago |
lanjelot | 426c2574e5 | 4 years ago |
lanjelot | 704dab811f | 4 years ago |
lanjelot | 30abee9a36 | 4 years ago |
lanjelot | 98bd95bd5e | 4 years ago |
lanjelot | f5b161a389 | 5 years ago |
lanjelot | e975529cea | 5 years ago |
lanjelot | a92c06f0d0 | 5 years ago |
lanjelot | 94cdfb19bb | 5 years ago |
lanjelot | 22ba733795 | 5 years ago |
lanjelot | 1732fbbae7 | 5 years ago |
lanjelot | 7751130338 | 5 years ago |
lanjelot | 3135ea1666 | 5 years ago |
lanjelot | e539ab5271 | 5 years ago |
lanjelot | 95ffe4300b | 5 years ago |
lanjelot | 03fdb3cce0 | 5 years ago |
lanjelot | a1db6bf842 | 5 years ago |
MrTchuss | 748bb90eaf | 5 years ago |
ines | 988d211014 | 5 years ago |
ines | 3c72f68554 | 5 years ago |
lanjelot | 22e84d9c07 | 5 years ago |
lanjelot | 53ace4f7e7 | 5 years ago |
lanjelot | 13eadce953 | 6 years ago |
lanjelot | 1ca6a41f77 | 6 years ago |
lanjelot | 49b541d203 | 6 years ago |
lanjelot | 7fd56f0fa2 | 6 years ago |
lanjelot | 28be940aa2 | 6 years ago |
@ -0,0 +1,69 @@
|
||||
FROM ubuntu:22.04
|
||||
|
||||
ENV DEBIAN_FRONTEND=noninteractive
|
||||
|
||||
# dependencies
|
||||
RUN apt-get update \
|
||||
&& apt-get install -y --no-install-recommends \
|
||||
build-essential python3-setuptools \
|
||||
libcurl4-openssl-dev python3-dev libssl-dev \
|
||||
ldap-utils \
|
||||
libmysqlclient-dev \
|
||||
libpq-dev \
|
||||
ike-scan unzip default-jdk \
|
||||
libsqlite3-dev \
|
||||
libsqlcipher-dev \
|
||||
python3-pip \
|
||||
&& rm -rf /var/lib/apt/lists/*
|
||||
|
||||
## cx_oracle
|
||||
RUN apt-get update \
|
||||
&& apt-get install -y --no-install-recommends libaio1 wget unzip git \
|
||||
&& rm -rf /var/lib/apt/lists/*
|
||||
|
||||
WORKDIR /opt/oracle
|
||||
RUN wget https://download.oracle.com/otn_software/linux/instantclient/instantclient-basiclite-linuxx64.zip \
|
||||
&& wget https://download.oracle.com/otn_software/linux/instantclient/instantclient-sdk-linuxx64.zip \
|
||||
&& unzip instantclient-basiclite-linuxx64.zip \
|
||||
&& rm -f instantclient-basiclite-linuxx64.zip \
|
||||
&& unzip instantclient-sdk-linuxx64.zip \
|
||||
&& rm -f instantclient-sdk-linuxx64.zip \
|
||||
&& cd /opt/oracle/instantclient_* \
|
||||
&& rm -f *jdbc* *occi* *mysql* *README *jar uidrvci genezi adrci \
|
||||
&& echo /opt/oracle/instantclient_* > /etc/ld.so.conf.d/oracle-instantclient.conf \
|
||||
&& ldconfig
|
||||
|
||||
## xfreerdp (see https://github.com/FreeRDP/FreeRDP/wiki/Compilation)
|
||||
WORKDIR /opt/FreeRDP
|
||||
RUN apt-get update \
|
||||
&& apt-get install -y --no-install-recommends ninja-build build-essential git-core debhelper cdbs dpkg-dev autotools-dev cmake pkg-config xmlto libssl-dev docbook-xsl xsltproc libxkbfile-dev libx11-dev libwayland-dev libxrandr-dev libxi-dev libxrender-dev libxext-dev libxinerama-dev libxfixes-dev libxcursor-dev libxv-dev libxdamage-dev libxtst-dev libcups2-dev libpcsclite-dev libasound2-dev libpulse-dev libjpeg-dev libgsm1-dev libusb-1.0-0-dev libudev-dev libdbus-glib-1-dev uuid-dev libxml2-dev libgstreamer1.0-dev libgstreamer-plugins-base1.0-dev libfaad-dev libfaac-dev libsdl2-dev libcjson-dev libpkcs11-helper1-dev \
|
||||
&& apt-get install -y --no-install-recommends libavutil-dev libavcodec-dev libswresample-dev \
|
||||
&& rm -rf /var/lib/apt/lists/* \
|
||||
&& git clone --depth 1 --branch 2.9.0 https://github.com/freerdp/freerdp.git \
|
||||
&& cmake -B freerdp-build -S freerdp -DCMAKE_BUILD_TYPE=Debug -DWITH_CLIENT_SDL=OFF -DWITH_KRB5=OFF -DWITH_SWSCALE=OFF -DWITTH_SSE2=ON -DWITH_FUSE=OFF \
|
||||
&& cmake --build freerdp-build \
|
||||
&& cmake --install freerdp-build \
|
||||
&& rm -rf /opt/FreeRDP
|
||||
|
||||
# patator
|
||||
WORKDIR /opt/patator
|
||||
COPY ./requirements.txt ./
|
||||
RUN python3 -m pip install --upgrade pip \
|
||||
&& python3 -m pip install -r requirements.txt
|
||||
|
||||
# uncomment for python2
|
||||
# RUN apt-get update \
|
||||
# && apt-get install -y --no-install-recommends python-pip ipython \
|
||||
# && rm -rf /var/lib/apt/lists/* \
|
||||
# && sed -e '/cx_Oracle/d' -e 's,pysqlcipher3,pysqlcipher,' requirements.txt | python2 -m pip install -r /dev/stdin \
|
||||
# && git clone --branch 5.3 https://github.com/oracle/python-cx_Oracle \
|
||||
# && cd python-cx_Oracle && export ORACLE_HOME=$(echo /opt/oracle/instantclient_*) && python2 setup.py build && python2 setup.py install
|
||||
|
||||
# utils
|
||||
RUN apt-get update \
|
||||
&& apt-get install -y --no-install-recommends ipython3 iputils-ping iproute2 netcat curl rsh-client telnet vim mlocate nmap \
|
||||
&& rm -rf /var/lib/apt/lists/* \
|
||||
&& echo 'set bg=dark' > /root/.vimrc
|
||||
|
||||
COPY ./patator.py ./
|
||||
ENTRYPOINT ["python3", "./patator.py"]
|
@ -0,0 +1,59 @@
|
||||
version: "3"
|
||||
services:
|
||||
unix:
|
||||
build: testing/unix
|
||||
image: patator-unix-testing
|
||||
# ports:
|
||||
# - "21:21"
|
||||
# - "22:22"
|
||||
# - "23:23"
|
||||
# - "25:25"
|
||||
# - "79:79"
|
||||
# - "80:80"
|
||||
# - "106:106"
|
||||
# - "110:110"
|
||||
# - "139:139"
|
||||
# - "143:143"
|
||||
# - "389:389"
|
||||
# - "445:445"
|
||||
# - "513:513"
|
||||
# - "636:636"
|
||||
# - "993:993"
|
||||
# - "995:995"
|
||||
# - "3306:3306"
|
||||
# - "4444:4444"
|
||||
# - "5432:5432"
|
||||
# - "5900:5900"
|
||||
# - "8009:8009"
|
||||
# - "8080:8080"
|
||||
# - "161:161/udp"
|
||||
volumes:
|
||||
- .:/opt/patator
|
||||
|
||||
oracle:
|
||||
image: oracleinanutshell/oracle-xe-11g
|
||||
environment:
|
||||
- ORACLE_ENABLE_XDB=true
|
||||
ports:
|
||||
- "1521:1521"
|
||||
|
||||
mssql:
|
||||
image: mcr.microsoft.com/mssql/server:2019-latest
|
||||
environment:
|
||||
- ACCEPT_EULA=Y
|
||||
- SA_PASSWORD=Password1
|
||||
ports:
|
||||
- "1433:1433"
|
||||
|
||||
patator:
|
||||
build: .
|
||||
image: patator
|
||||
depends_on:
|
||||
- unix
|
||||
- oracle
|
||||
- mssql
|
||||
environment:
|
||||
- DISPLAY
|
||||
volumes:
|
||||
- .:/opt/patator
|
||||
- /tmp/.X11-unix:/tmp/.X11-unix
|
File diff suppressed because it is too large
Load Diff
@ -0,0 +1,16 @@
|
||||
#!/bin/bash
|
||||
|
||||
set -ex
|
||||
|
||||
DOCKER_IMAGE='lanjelot/patator'
|
||||
GIT_REPO='https://github.com/lanjelot/patator'
|
||||
TMP_COPY=$(mktemp -d)
|
||||
|
||||
git clone -b master $GIT_REPO $TMP_COPY
|
||||
cd $TMP_COPY
|
||||
VERSION=$(echo `git tag|sort -V|tail -1`-`git rev-parse --verify HEAD|cut -b -7`)
|
||||
sed -i -e "s,^__version__.*$,__version__ = '$VERSION'," patator.py
|
||||
docker build . -t $DOCKER_IMAGE:$VERSION -t $DOCKER_IMAGE:latest
|
||||
|
||||
docker login
|
||||
docker push $DOCKER_IMAGE
|
@ -1,14 +1,14 @@
|
||||
paramiko
|
||||
pycurl
|
||||
ajpy
|
||||
#impacket # no python3 compatibility
|
||||
impacket
|
||||
pyopenssl
|
||||
cx_Oracle
|
||||
mysqlclient
|
||||
psycopg2
|
||||
pycrypto
|
||||
psycopg2-binary
|
||||
pycryptodomex
|
||||
dnspython
|
||||
IPy
|
||||
pysnmp
|
||||
pyasn1
|
||||
#pysqlcipher # no python3 compatibility
|
||||
pysnmp==4.4.12
|
||||
pyasn1==0.4.8
|
||||
pysqlcipher3
|
||||
|
@ -0,0 +1,131 @@
|
||||
#!/bin/bash
|
||||
|
||||
if ! docker compose version &>/dev/null; then
|
||||
echo 'docker compose is required'
|
||||
exit 1
|
||||
fi
|
||||
|
||||
docker compose up -d --build
|
||||
|
||||
case "$1" in
|
||||
python2|python3)
|
||||
PYTHON=$1
|
||||
;;
|
||||
*)
|
||||
PYTHON='python3'
|
||||
;;
|
||||
esac
|
||||
|
||||
UNIX='unix'
|
||||
ORACLE='oracle'
|
||||
MSSQL='mssql'
|
||||
WIN10='' # 192.168.1.5 # vagrant add senglin/win-7-enterprise
|
||||
VPN='' #
|
||||
|
||||
LOGS='-l ./asdf -y --hits ./hits.txt'
|
||||
|
||||
run()
|
||||
{
|
||||
echo
|
||||
echo "$ $@"
|
||||
docker compose run --no-deps --rm --entrypoint "$PYTHON patator.py" patator "$@"
|
||||
}
|
||||
|
||||
echo
|
||||
echo ">>> $PYTHON"
|
||||
|
||||
run ftp_login host=$UNIX
|
||||
run ftp_login host=$UNIX user=userRANGE0 password=PasswordRANGE0 0=int:0-9
|
||||
|
||||
run ssh_login host=$UNIX
|
||||
run ssh_login host=$UNIX user=userRANGE0 password=PasswordRANGE0 0=int:0-9
|
||||
|
||||
run telnet_login host=$UNIX
|
||||
run telnet_login host=$UNIX inputs='userRANGE0\nPasswordRANGE0' 0=int:0-9 prompt_re='login:|Password:' timeout=5
|
||||
|
||||
run smtp_vrfy host=$UNIX
|
||||
run smtp_vrfy host=$UNIX user=userRANGE0 0=int:1-500 -x ignore:fgrep='User unknown' -x ignore,reset,retry:code=421 --auto-progress 10
|
||||
|
||||
run smtp_rcpt host=$UNIX
|
||||
run smtp_rcpt host=$UNIX mail_from=root@localhost user=userRANGE0@localhost 0=int:1-200 -x ignore:fgrep='User unknown'
|
||||
|
||||
run smtp_login host=$UNIX
|
||||
run smtp_login host=$UNIX user=userRANGE0 password=PasswordRANGE0 0=int:0-30 starttls=1 #-x ignore,reset,retry:code=421
|
||||
|
||||
run finger_lookup host=$UNIX
|
||||
run finger_lookup host=$UNIX user=userRANGE0 0=int:0-20 -x ignore:fgrep='no such user'
|
||||
|
||||
run ldap_login host=$UNIX
|
||||
run ldap_login host=$UNIX binddn='cn=admin,dc=example,dc=com' bindpw=PasswordRANGE0 0=int:0-9 basedn='dc=example,dc=com'
|
||||
|
||||
run smb_login host=$UNIX
|
||||
run smb_login host=$UNIX user=userRANGE0 password=PasswordRANGE0 0=int:0-9
|
||||
|
||||
if [[ ! -z $WIN10 ]]; then
|
||||
run smb_login host=$WIN10 user=vagranRANGE0 password=vagranRANGE0 0=lower:r-v
|
||||
run smb_lookupsid host=$WIN10 user=vagrant password=vagrant rid=RANGE0 0=int:500-2000 -x ignore:code=1
|
||||
run dcom_login host=$WIN10 user=vagranRANGE0 password=vagranRANGE0 0=lower:r-v
|
||||
|
||||
xhost +si:localuser:root
|
||||
run rdp_login host=$WIN10 user=vagranRANGE0 password=vagranRANGE0 0=lower:r-v
|
||||
xhost -si:localuser:root
|
||||
fi
|
||||
|
||||
run pop_login host=$UNIX
|
||||
run pop_login host=$UNIX user=userRANGE0 password=PasswordRANGE0 0=int:0-9
|
||||
|
||||
run pop_passd host=$UNIX
|
||||
run pop_passd host=$UNIX user=userRANGE0 password=PasswordRANGE0 0=int:0-9
|
||||
|
||||
run imap_login host=$UNIX
|
||||
run imap_login host=$UNIX user=userRANGE0 password=PasswordRANGE0 0=int:0-9
|
||||
|
||||
run rlogin_login host=$UNIX user=userRANGE0 password=PasswordRANGE0 0=int:0-9
|
||||
|
||||
run mysql_login host=$UNIX
|
||||
run mysql_login host=$UNIX user=root password=PasswordRANGE0 0=int:0-9
|
||||
|
||||
run mysql_query host=$UNIX user=root password=Password1 query='select host, user from mysql.user'
|
||||
run mysql_query host=$UNIX user=root password=Password1 query='select load_file("/etc/hosts")'
|
||||
|
||||
run mssql_login host=$MSSQL user=sa password=PasswordRANGE0 0=int:0-9
|
||||
|
||||
run oracle_login host=$ORACLE sid=xRANGE0 0=lower:a-f -t 1
|
||||
run oracle_login host=$ORACLE sid=xe user=sys password=oraclRANGE0 0=lower:a-f
|
||||
|
||||
run pgsql_login host=$UNIX
|
||||
run pgsql_login host=$UNIX user=postgres password=PasswordRANGE0 0=int:0-9
|
||||
|
||||
run http_fuzz url="http://$UNIX/RANGE0" 0=lower:a-zzz -x ignore:code=404
|
||||
run http_fuzz url=http://$UNIX:8080/manager/html user_pass=tomcat:PasswordRANGE0 0=int:0-9
|
||||
|
||||
run ajp_fuzz url=ajp://$UNIX/manager/html user_pass=tomcat:PasswordRANGE0 0=int:0-9
|
||||
|
||||
run vnc_login host=$UNIX port=5900 password=PassworRANGE0 0=lower:a-f
|
||||
|
||||
run dns_reverse host=NET0 0=216.239.32.0-216.239.32.255,8.8.8.0/24 -x ignore:code=3 -x ignore:fgrep!=google.com -x ignore:fgrep=216-239-
|
||||
run dns_forward name=MOD0.microsoft.com 0=SRV qtype=SRV -x ignore:code=3 --auto-progress 15
|
||||
|
||||
run snmp_login host=$UNIX community=publiRANGE0 0=lower:a-f
|
||||
run snmp_login host=$UNIX community=public version=3 user=userRANGE0 0=int:0-5 auth_key=whatever
|
||||
run snmp_login host=$UNIX community=public version=3 user=user3 auth_proto=sha auth_key=authPasRANGE0 0=lower:q-v
|
||||
run snmp_login host=$UNIX community=public version=3 user=user3 auth_proto=sha auth_key=authPass priv_proto=aes priv_key=privPasRANGE0 0=lower:q-v
|
||||
|
||||
if [[ ! -z $VPN ]]; then
|
||||
run ike_enum host=$VPN transform=MOD0 0=TRANS aggressive=RANGE1 1=int:0-1 -x ignore:fgrep=NO-PROPOSAL
|
||||
fi
|
||||
|
||||
run unzip_pass zipfile=enc.zip password=PasswordRANGE0 0=int:0-9
|
||||
run keystore_pass keystore=keystore.jks password=PasswordRANGE0 0=int:0-9
|
||||
run sqlcipher_pass database=enc.db password=PasswordRANGE0 0=int:0-9
|
||||
run umbraco_crack hashlist=@umbraco_users.pw password=PasswordRANGE0 0=int:0-9
|
||||
|
||||
run tcp_fuzz host=$UNIX port=4444 data=RANGE0 0=hex:0xf0-0xf9 # $LOGS
|
||||
|
||||
echo -e '\xde\xad\xbe\xef\nprintable ascii' > dummy.txt
|
||||
run dummy_test delay=0 data=FILE0 0=dummy.txt data2=RANGE1 1=lower:a-b
|
||||
|
||||
echo -e 'wrong pass\np\x1fssw\x09rd' > user9.pass
|
||||
run ssh_login host=unix user=user9 password=FILE0 0=user9.pass
|
||||
|
||||
rm -f dummy.txt user9.pass
|
@ -0,0 +1,149 @@
|
||||
FROM ubuntu:22.04
|
||||
|
||||
ENV DEBIAN_FRONTEND=noninteractive
|
||||
|
||||
SHELL ["/bin/bash", "-o", "pipefail", "-c"]
|
||||
|
||||
RUN { for i in {3..5}; do useradd -m -s /bin/bash user$i; echo -e "Password$i\nPassword$i" | passwd user$i; done; } \
|
||||
&& useradd -m user9 && echo -e 'p\x1fssw\x09rd\np\x1fssw\x09rd' | passwd user9
|
||||
|
||||
# utils
|
||||
RUN sed -i 's:^path-exclude=/usr/share/man:#path-exclude=/usr/share/man:' /etc/dpkg/dpkg.cfg.d/excludes \
|
||||
&& apt-get update \
|
||||
&& apt-get install -y --no-install-recommends man manpages-posix iproute2 mlocate lsof sudo vim less telnet finger rsh-client smbclient \
|
||||
&& rm -rf /var/lib/apt/lists/* \
|
||||
&& echo 'set bg=dark' > /root/.vimrc \
|
||||
&& usermod -aG sudo user3
|
||||
|
||||
# services
|
||||
RUN apt-get update \
|
||||
&& apt-get install -y --no-install-recommends vsftpd openssh-server telnetd rsh-redone-server fingerd apache2 socat \
|
||||
&& rm -rf /var/lib/apt/lists/* \
|
||||
&& echo 'background=YES' >> /etc/vsftpd.conf \
|
||||
&& sed -i -e 's,start-stop-daemon --start --background,start-stop-daemon --start,' /etc/init.d/vsftpd
|
||||
|
||||
RUN { echo "postfix postfix/mailname string ubuntu-blah"; \
|
||||
echo "postfix postfix/main_mailer_type string 'Internet Site'"; \
|
||||
} | debconf-set-selections \
|
||||
&& apt-get update && apt-get install -y --no-install-recommends postfix dovecot-pop3d dovecot-imapd \
|
||||
&& rm -rf /var/lib/apt/lists/* \
|
||||
&& postconf 'smtpd_sasl_exceptions_networks=' 'smtpd_sasl_auth_enable=yes' 'smtpd_sasl_type=dovecot' 'smtpd_sasl_path=private/dovecot-auth' \
|
||||
&& echo -e 'auth_mechanisms = plain login\n\
|
||||
service auth {\n\
|
||||
unix_listener /var/spool/postfix/private/dovecot-auth {\n\
|
||||
mode = 0660\n\
|
||||
user = postfix\n\
|
||||
group = postfix\n\
|
||||
}\n\
|
||||
}\n' > /etc/dovecot/conf.d/99-blah.conf
|
||||
|
||||
RUN echo 'ServerName localhost' >> /etc/apache2/apache2.conf \
|
||||
&& mkdir /var/www/html/{wp,pma,bak} && echo secret > /var/www/html/key
|
||||
|
||||
RUN LDAPPW=Password1; \
|
||||
{ \
|
||||
echo slapd slapd/internal/generated_adminpw password $LDAPPW; \
|
||||
echo slapd slapd/password2 password $LDAPPW; \
|
||||
echo slapd slapd/internal/adminpw password $LDAPPW; \
|
||||
echo slapd slapd/password1 password $LDAPPW; \
|
||||
echo slapd slapd/domain string example.com; \
|
||||
echo slapd shared/organization string example.com; \
|
||||
} | debconf-set-selections \
|
||||
&& apt-get update && apt-get install -y --no-install-recommends slapd ldap-utils \
|
||||
&& rm -rf /var/lib/apt/lists/*
|
||||
|
||||
RUN MYSRP=Password1; \
|
||||
{ echo "mysql-server mysql-server/root_password password $MYSRP"; \
|
||||
echo "mysql-server mysql-server/root_password_again password $MYSRP"; \
|
||||
} | debconf-set-selections \
|
||||
&& apt-get update && apt-get install -y --no-install-recommends mysql-server \
|
||||
&& rm -rf /var/lib/apt/lists/* \
|
||||
&& sed -i "s/bind-address.*/bind-address = 0.0.0.0/" /etc/mysql/mysql.conf.d/mysqld.cnf \
|
||||
&& echo secure_file_priv= >> /etc/mysql/mysql.conf.d/mysqld.cnf \
|
||||
&& rm -f /etc/apparmor.d/usr.sbin.mysqld \
|
||||
&& service mysql start \
|
||||
&& Q1="CREATE USER 'root'@'%' identified by 'Password1';" \
|
||||
&& Q2="GRANT ALL PRIVILEGES ON *.* TO 'root'@'%';" \
|
||||
&& Q3="FLUSH PRIVILEGES;" \
|
||||
&& SQL="${Q1}${Q2}${Q3}" \
|
||||
&& mysql -uroot -p"$MYSRP" -e "$SQL"
|
||||
|
||||
RUN PGPW=Password1 \
|
||||
&& apt-get update && apt-get install -y --no-install-recommends postgresql \
|
||||
&& rm -rf /var/lib/apt/lists/* \
|
||||
&& sed -ie 's,127.0.0.1/32,0.0.0.0/0,' /etc/postgresql/14/main/pg_hba.conf \
|
||||
&& sed -ie "s,^#listen_addresses = 'localhost',listen_addresses = '*'," /etc/postgresql/14/main/postgresql.conf \
|
||||
&& service postgresql start \
|
||||
&& su - postgres -c "psql -c \"ALTER USER postgres WITH PASSWORD '$PGPW';\" -c '\\q'" \
|
||||
&& su - postgres -c "PGPASSWORD='$PGPW' psql -d postgres -w --no-password -h localhost -p 5432 -t -c 'SELECT version()'"
|
||||
|
||||
RUN apt-get update && apt-get install -y --no-install-recommends tomcat9 tomcat9-admin \
|
||||
&& rm -rf /var/lib/apt/lists/* \
|
||||
&& echo '<?xml version="1.0" encoding="UTF-8"?><tomcat-users xmlns="http://tomcat.apache.org/xml" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://tomcat.apache.org/xml tomcat-users.xsd" version="1.0"><user username="tomcat" password="Password1" roles="manager-gui"/></tomcat-users>' > /etc/tomcat9/tomcat-users.xml \
|
||||
&& sed -ie 's,^.*Define an AJP .* Connector on port.*$,<Connector protocol="AJP/1.3" address="0.0.0.0" port="8009" redirectPort="8443" secretRequired="false"/>,' /etc/tomcat9/server.xml \
|
||||
&& sed -ie 's,catalina.realm.LockOutRealm",catalina.realm.LockOutRealm" lockOutTime="0",' /etc/tomcat9/server.xml \
|
||||
&& echo -e "#!/bin/sh\n\
|
||||
export CATALINA_HOME=/usr/share/tomcat9\n\
|
||||
export CATALINA_BASE=/var/lib/tomcat9\n\
|
||||
export CATALINA_TMPDIR=/tmp\n\
|
||||
export SECURITY_MANAGER=true\n\
|
||||
export JAVA_OPTS=-Djava.awt.headless=true\n\
|
||||
/usr/libexec/tomcat9/tomcat-update-policy.sh\n\
|
||||
/usr/libexec/tomcat9/tomcat-start.sh &\n" > /usr/local/sbin/start-tomcat.sh
|
||||
|
||||
RUN apt-get update && apt-get install -y --no-install-recommends dovecot-imapd dovecot-pop3d poppassd \
|
||||
&& rm -rf /var/lib/apt/lists/* \
|
||||
&& sed -ie 's,^#login_trusted_networks = *$,login_trusted_networks = 0.0.0.0/0,' /etc/dovecot/dovecot.conf
|
||||
|
||||
RUN apt-get update && apt-get install -y --no-install-recommends p7zip-full \
|
||||
&& rm -rf /var/lib/apt/lists/* \
|
||||
&& 7za a -pPassword1 /root/enc.zip /etc/passwd
|
||||
|
||||
RUN apt-get update && apt-get install -y --no-install-recommends openjdk-18-jre-headless \
|
||||
&& rm -rf /var/lib/apt/lists/* \
|
||||
&& keytool -genkey -alias test -storepass Password1 -keypass Password1 -keystore /root/keystore.jks -dname "CN=a,OU=b,O=c,L=d,ST=e,C=f" -keyalg RSA
|
||||
|
||||
RUN apt-get update && apt-get install -y --no-install-recommends sqlcipher \
|
||||
&& rm -rf /var/lib/apt/lists/* \
|
||||
&& sqlcipher /root/enc.db "PRAGMA key = 'Password1';create table a(id int);"
|
||||
|
||||
RUN echo -e 'user1:kW+7AlKMnSZQIRluNxwJOMiohAw=\nuser2:oBk37hmkFgZdZ247+g6c0Ay6Vw8=\nuser3:kW+7AlKMnSZQIRluNxwJOMiohAw=' > /root/umbraco_users.pw
|
||||
|
||||
RUN apt-get update && apt-get install -y --no-install-recommends tightvncserver xfonts-base \
|
||||
&& rm -rf /var/lib/apt/lists/* \
|
||||
&& useradd -m vncuser && mkdir ~vncuser/.vnc && echo Password | vncpasswd -f > ~vncuser/.vnc/passwd \
|
||||
&& chmod 400 ~vncuser/.vnc/passwd && chown -R vncuser:vncuser ~vncuser/.vnc
|
||||
|
||||
RUN apt-get update \
|
||||
&& apt-get install -y --no-install-recommends samba \
|
||||
&& rm -rf /var/lib/apt/lists/* \
|
||||
&& { for i in {3..5}; do echo -e "Password$i\nPassword$i" | smbpasswd -a "user$i"; done; } \
|
||||
&& sed -ie 's,map to guest =,#map to guest =,' /etc/samba/smb.conf
|
||||
|
||||
RUN apt-get update \
|
||||
&& apt-get install -y --no-install-recommends snmpd snmp \
|
||||
&& rm -rf /var/lib/apt/lists/* \
|
||||
&& sed -ie 's,^agentaddress .*$,agentaddress udp:161,' /etc/snmp/snmpd.conf \
|
||||
&& echo 'createUser user3 SHA authPass AES privPass' >> /var/lib/snmp/snmpd.conf \
|
||||
&& echo 'rouser user3 priv .1' >> /etc/snmp/snmpd.conf
|
||||
|
||||
RUN echo -e "echo Starting services\n\
|
||||
service vsftpd start\n\
|
||||
service ssh start\n\
|
||||
/usr/sbin/inetd\n\
|
||||
service postfix start\n\
|
||||
service dovecot start\n\
|
||||
service apache2 start\n\
|
||||
ulimit -n 1024; service slapd start\n\
|
||||
service mysql start\n\
|
||||
service postgresql start\n\
|
||||
sh /usr/local/sbin/start-tomcat.sh\n\
|
||||
socat tcp-l:106,fork,reuseaddr exec:/usr/sbin/poppassd &\n\
|
||||
socat tcp-l:4444,fork,reuseaddr exec:\"echo -e 'W\xe1\xc0me'\" &\n\
|
||||
cp -v /root/enc.zip /root/keystore.jks /root/enc.db /root/umbraco_users.pw /opt/patator/\n\
|
||||
su - vncuser -c 'vncserver -rfbport 5900'\n\
|
||||
service smbd start\n\
|
||||
service snmpd start\n\
|
||||
tail -f /dev/null\n" > /usr/local/sbin/start-all-services.sh
|
||||
|
||||
CMD ["sh", "/usr/local/sbin/start-all-services.sh"]
|
Loading…
Reference in New Issue