amitie10g/kali

By amitie10g

Updated about 8 hours ago

Kali Linux for all needs

Image
Operating Systems
Developer Tools

3.8K

Kali Linux plus Kalitorify on Docker image (WIP)

This is a somewhat customised set of Docker images of Kali Linux, for both platforms amd64 (Docker Desktop on Windows, cloud, etc.) and arm64 (Raspberry Pi, Apple Silicon Mac, etc.), and two flavors, kali-rolling (kali is the same image) and kali-bleeding-edge. Out-of-the-box tools for all needs!

Images has been built using GitHub Actions. The Dockerfile is passed through stdin to Buildkit to build every image. A basic Dockerfile is provided as well.

Tags

Usage

  • Just download docker-compose.yml, place at an empty directory, and run docker-compose up This will start the latest and labs containers (if you use Windows, be sure to replace the incoming port to 13389 do avoid conflicts with the local Remote Desktop port)

  • Browse the vulnerable webapps:

    Or use the tools available to attemp to exploit those web apps

Further options
  • Use -v ${pwd}\kali:/home/kali -v ${pwd}\root:/root when running on Docker Desktop on Windows (Powershell)
  • Add -p 3389:3389 when running docker run to expose Remote Desktop por to connect via XRDP (use -p 13389:3389 if you're running on Docker Desktop on Windows)
  • Add --cap-add=NET_ADMIN --cap-add=NET_RAW when running docker run to allow kalitorify to modify iptables and set up it successfully
  • Add --user root when running docker exec to get interactive shell as root

Building

The image depends on a Kali Linux base image built using the instructions on the Phusion's base image repo.

docker build --build-arg KALI_VER=<version> --build-arg TOOL=<tool> --target <target> -t amitie10g/kali-linux:<tag> .

Where build arg,

  • KALI_VER The kali edition: rolling, bleeding-edge, last-release or experimental (if unsure, choose rolling)
  • TOOL One of the packages starting with kali-tools-
  • --target The desired target:
    • base Just the base image
    • desktop The Desktop (XFCE, without tools) image
    • desktop-top10 The desktop experience plus the top 10 tools
    • labs The vulnerable webapps
    • headless The cli-only tools
    • nethunter The Kali Nethunter system
    • tool The target for build the desired tool

Edit the Dockerfile to fit your needs.

Caveats

  • This is a work in progress; not everything will work seamlessly. At least, Metasploit worked during my tests.
  • Remote connections via XRDP/VNC make unable to run graphical programs that needs superuser using polkit due settings; please see this thread at AskUbuntu. You're still able to run console programs using sudo.

FAQ

  • Q: Why you created this project
    A: I'm preparing for diploma in cybersecurity, and as my hobby is create Docker containers, I created this as part of my tasks. As this will be useful for everyone, I'be compromised to maintain this project.

  • Q: Why s6-overlay
    A: Because this eases the process of bringing required services for tools (eg. Postgres for Metasploit).

  • Q: Why XRDP instead o VNC?
    A: a) most of the users uses Windows, and the Remote Desktop client is integrated, and runs seamlessly; and b) performance.

Licensing

  • Everything in the GitHub repo (excluding submodules like Kalitorify) is released into the Public domain (the Unlicense)
  • Kalitorify is licensed under the GNU General Public License v3.0
  • The software built into the container images are released under their respective licenses

Related projects

Docker Pull Command

docker pull amitie10g/kali