Fork me on GitHub

Other articles

  1. Running manuka docker honeypot setup

    I've just got dionaea and kippo running in docker images on to make a quick to set up honeypot. The project is called manuka.

    Here's how to get manuka running on Ubuntu 14.04:

    #install docker (skip if you have docker 1.3+ already)
    [ -e /usr/lib/apt/methods/https ] || {
      sudo apt-get update
      sudo apt-get install apt-transport-https
    sudo apt-key adv --keyserver hkp:// --recv-keys \
    sudo sh -c "echo deb docker main > \
    sudo apt-get update
    sudo apt-get -y install lxc-docker
    #install docker-compose
    sudo apt-get install -y python-pip
    sudo pip install docker-compose
    #run manuka
    curl -q >
    chmod +x
    sudo ./

    You have just setup dionaea and kippo.

    Let's try out kippo:

    ssh [email protected]
    # > Password: <12345>
    # > [email protected]:~#

    And dionaea:

    sudo nmap  -d -p 445 --script=smb-vuln-ms10-061
    ls var/dionaea/bistreams
    # > total 4.0K
    # > drwxr-xr-x 2 nobody nogroup 4.0K Mar 16 23:21 2015-03-16

    All logs and files will be saved under $PWD/var/.

    Happy to hear any bug reports and feature requests on Github.

    read more

    There are comments.

  2. Docker volume and docker VOLUME

    I've been fiddling with docker lately and it took me a while to come to this realisation. The docker volume command line argument and the docker VOLUME Dockerfile instruction are a bit different.

    The docker volume command line argument:

    docker run -v /var/logs:/var/logs ubuntu echo test

    And the docker VOLUME Dockerfile instruction:

    VOLUME /var/logs

    The Dockerfile VOLUME instruction doesn't support host directories.

    As discussed in this stackoverflow post it looks like this is intentional because it makes things less portable.

    read more

    There are comments.