We learned :
- How to create a container
- How to interacte with a container
- How to create Multiple containers
- ....
so it's time to create a lab and test our security skills on the penetration testing.
Here is the scheme of our lab
docker pull kalilinux/kali-linux-dockerOWASP Juice Shop is an intentionally insecure webapp for security trainings written entirely in Javascript which encompasses the entire OWASP Top Ten and other severe security flaws. http://owasp-juice.shop.
https://github.com/bkimminich/juice-shop#docker-container--
- Run docker pull bkimminich/juice-shop
- Run docker run --rm -p 3000:3000 bkimminich/juice-shop
- Browse to http://localhost:3000
Happy Hacking :).
would you like to know more about the penetration containers
docker pull kalilinux/kali-linux-docker- Official Kali Linux.docker pull owasp/zap2docker-stable- Official OWASP ZAP.docker pull wpscanteam/wpscan- Official WPScan.docker pull citizenstig/dvwa- Damn Vulnerable Web Application (DVWA).docker pull wpscanteam/vulnerablewordpress- Vulnerable WordPress Installation.docker pull hmlio/vaas-cve-2014-6271- Vulnerability as a service: Shellshock.docker pull hmlio/vaas-cve-2014-0160- Vulnerability as a service: Heartbleed.docker pull vulnerables/cve-2017-7494- Vulnerability as a service: SambaCry.docker pull opendns/security-ninjas- Security Ninjas.docker pull diogomonica/docker-bench-security- Docker Bench for Security.docker pull ismisepaul/securityshepherd- OWASP Security Shepherd.docker pull webgoat/webgoat-7.1- OWASP WebGoat Project 7.1 docker image.docker pull webgoat/webgoat-8.0- OWASP WebGoat Project 8.0 docker image.docker-compose build && docker-compose up- OWASP NodeGoat.docker pull citizenstig/nowasp- OWASP Mutillidae II Web Pen-Test Practice Application.docker pull bkimminich/juice-shop- OWASP Juice Shop.docker pull phocean/msf- docker-metasploit.