Skip to content
Branch: master
Find file History
Latest commit 67812fd Apr 18, 2019
Permalink
Type Name Latest commit message Commit time
..
Failed to load latest commit information.
Dockerfile Docker refactor Apr 14, 2019
README.md
database.yml Stylized .yml, .py, .md, and .txt Feb 16, 2018
docker-compose.yml Stylized .yml, .py, .md, and .txt Feb 16, 2018
entrypoint.sh

README.md

Docker deployment instructions

tl;dr

Using docker-compose:

git clone https://github.com/NullArray/AutoSploit.git
cd Autosploit/Docker
docker-compose run --rm autosploit

Using just Docker:

git clone https://github.com/NullArray/AutoSploit.git
cd Autosploit/Docker
# If you wish to edit default postgres service details, edit database.yml. Should work out of the box
# nano database.yml
docker network create -d bridge haknet
docker run --network haknet --name msfdb -e POSTGRES_PASSWORD=s3cr3t -d postgres
docker build -t autosploit .
docker run -it --network haknet -p 80:80 -p 443:443 -p 4444:4444 autosploit

Abstract

  • Launching Autosploit as a Docker container makes it very easy to use the tool in a hosted cloud environment (AWS, Azure, ...)
  • Separate postgres database into individual service for data persistence and potential async updating of the database
  • Create a small bridge network haknet so the service discovery is automatic
  • Launch postgres and Autosploit container, both linked by haknet
  • Autosploit will automatically launch preconfigured msfconsole to the external postgres container through haknet transparent network
  • Total image size of Kali + Metasploit + Autosploit : 1.75GB

Deploy

Step 1 - Create bridge network

This will enable the Metasploit Framework to talk to the postgres database using its hostname, making it abstract.

A Tor Socks Proxy can also be added to perform transparent proxy when launching exploits (not for reverse shells though, obviously).

docker network create -d bridge haknet

Step 2 - Launch services

All automagically linked

Step 2.1 - Launch postgres

Launch a vanilla postgres service, linked to haknet

docker run --network haknet --name msfdb -e POSTGRES_PASSWORD=s3cr3t -d postgres

Step 2.2 - Launch Autosploit

Launch Autosploit.

This Dockerfile will copy the default database config to ~/.msf4/database.yml. You can edit the configuration file database.yml to your liking before building.

Please be aware that the first build will take some time (~10mn)

Building will be faster if done on a hosted server as it benefits from the -grade bandwidth

git clone https://github.com/NullArray/AutoSploit.git
cd Autosploit/Docker
nano database.yml # Exemple configuration should work fine
docker build -t autosploit .
docker run -it --network haknet -p 80:80 -p 443:443 -p 4444:4444 autosploit
You can’t perform that action at this time.