| 
									
										
										
										
											2021-09-30 15:58:10 +00:00
										 |  |  | # In case of problems Alpine 3.13 needs to be used:
 | 
					
						
							|  |  |  | # https://wiki.alpinelinux.org/wiki/Release_Notes_for_Alpine_3.14.0#faccessat2
 | 
					
						
							| 
									
										
										
											
												tweaking
updating .env, env.example and compose files regarding sentrypeer ENVs
make glutton image aware of payloads feature
bump glutton to latest master, alpine 3.19, multi-stage build
bump ipphoney to alpine 3.19
bump mailoney to alpine 3.19, adjust for py3
revert medpot to previous master, use multi stage build and alpine 3.19
bump cyberchef to latest master
bump ngninx to alpine 3.19
bump p0f to alpine 3.19, use multi stage build
bump redishoneypot to alpine 3.19, use multi stage build
bump sentrypeer to latest master, fix bug for open ports in compose files, now all tcp/5060, udp/5060 traffic will be seen
bump spiderfoot to latest master
bump spiderfoot to alpine 3.19
bump suricata to 7.0.2, fix performance issue with capture-filter-bpf by reducing the rules
update clean.sh to include glutton payloads folder
											
										 
											2024-03-09 12:11:14 +01:00
										 |  |  | FROM alpine:3.19
 | 
					
						
							| 
									
										
										
										
											2019-10-15 07:49:30 +00:00
										 |  |  | #
 | 
					
						
							| 
									
										
										
										
											2017-10-13 18:58:14 +00:00
										 |  |  | # Add source
 | 
					
						
							| 
									
										
										
										
											2022-03-08 23:36:03 +00:00
										 |  |  | COPY . /opt/p0f
 | 
					
						
							| 
									
										
										
										
											2019-10-15 07:49:30 +00:00
										 |  |  | #
 | 
					
						
							| 
									
										
										
										
											2017-10-13 18:58:14 +00:00
										 |  |  | # Install packages
 | 
					
						
							| 
									
										
										
										
											2018-05-19 21:18:35 +00:00
										 |  |  | RUN apk -U --no-cache add \
 | 
					
						
							| 
									
										
										
											
												tweaking
updating .env, env.example and compose files regarding sentrypeer ENVs
make glutton image aware of payloads feature
bump glutton to latest master, alpine 3.19, multi-stage build
bump ipphoney to alpine 3.19
bump mailoney to alpine 3.19, adjust for py3
revert medpot to previous master, use multi stage build and alpine 3.19
bump cyberchef to latest master
bump ngninx to alpine 3.19
bump p0f to alpine 3.19, use multi stage build
bump redishoneypot to alpine 3.19, use multi stage build
bump sentrypeer to latest master, fix bug for open ports in compose files, now all tcp/5060, udp/5060 traffic will be seen
bump spiderfoot to latest master
bump spiderfoot to alpine 3.19
bump suricata to 7.0.2, fix performance issue with capture-filter-bpf by reducing the rules
update clean.sh to include glutton payloads folder
											
										 
											2024-03-09 12:11:14 +01:00
										 |  |  | 		bash \
 | 
					
						
							|  |  |  | 		build-base \
 | 
					
						
							|  |  |  | 		jansson \
 | 
					
						
							|  |  |  | 		jansson-dev \
 | 
					
						
							|  |  |  | 		libcap \
 | 
					
						
							|  |  |  | 		libpcap \
 | 
					
						
							|  |  |  | 		libpcap-dev && \
 | 
					
						
							| 
									
										
										
										
											2019-10-15 07:49:30 +00:00
										 |  |  | #
 | 
					
						
							| 
									
										
										
										
											2017-10-13 18:58:14 +00:00
										 |  |  | # Setup user, groups and configs
 | 
					
						
							|  |  |  |     addgroup -g 2000 p0f && \
 | 
					
						
							|  |  |  |     adduser -S -s /bin/bash -u 2000 -D -g 2000 p0f && \
 | 
					
						
							| 
									
										
										
										
											2019-10-15 07:49:30 +00:00
										 |  |  | #
 | 
					
						
							| 
									
										
										
										
											2017-10-13 18:58:14 +00:00
										 |  |  | # Download and compile p0f
 | 
					
						
							|  |  |  |     cd /opt/p0f && \
 | 
					
						
							|  |  |  |     ./build.sh && \
 | 
					
						
							| 
									
										
										
										
											2018-03-29 16:21:00 +00:00
										 |  |  |     setcap cap_sys_chroot,cap_setgid,cap_net_raw=+ep /opt/p0f/p0f && \
 | 
					
						
							| 
									
										
										
										
											2019-10-15 07:49:30 +00:00
										 |  |  | #
 | 
					
						
							| 
									
										
										
										
											2017-10-13 18:58:14 +00:00
										 |  |  | # Clean up
 | 
					
						
							| 
									
										
										
										
											2018-03-29 16:21:00 +00:00
										 |  |  |     apk del --purge build-base \
 | 
					
						
							|  |  |  |                     jansson-dev \
 | 
					
						
							|  |  |  |                     libpcap-dev && \
 | 
					
						
							| 
									
										
										
										
											2017-10-13 18:58:14 +00:00
										 |  |  |     rm -rf /root/* && \
 | 
					
						
							|  |  |  |     rm -rf /var/cache/apk/*
 | 
					
						
							| 
									
										
										
										
											2019-10-15 07:49:30 +00:00
										 |  |  | #
 | 
					
						
							| 
									
										
										
										
											2020-09-04 12:37:28 +00:00
										 |  |  | # Start p0f
 | 
					
						
							| 
									
										
										
										
											2017-10-13 18:58:14 +00:00
										 |  |  | WORKDIR /opt/p0f
 | 
					
						
							| 
									
										
										
										
											2018-03-29 16:21:00 +00:00
										 |  |  | USER p0f:p0f
 | 
					
						
							| 
									
										
										
										
											2021-01-06 17:05:09 +00:00
										 |  |  | CMD exec /opt/p0f/p0f -u p0f -j -o /var/log/p0f/p0f.json -i $(/sbin/ip address show | /usr/bin/awk '/inet.*brd/{ print $NF; exit }') > /dev/null
 |