Public Repository

Last pushed: 13 days ago
Short Description
Image containing SecurityRAT tool and MySQL DB with default requirement set.
Full Description

This is an image enabling a quick&easy start if you want to play around with the SecurityRAT tool (otherwise available at https://github.com/SecurityRAT).

Important: the setup is not suitable for a production environment!

How To

  • run docker run -it -p 9002:9002 securityrat/all_in_one
  • once the image has started, navigate to https://localhost:9002 and accept the self-signed certificate in your browser
  • authenticate with one of the default users admin/admin or user/user
  • start playing around

Run commands in the running container

  • open another terminal and run sudo docker ps. This will list the containers running.
  • fire docker exec -it --user securityrat <container-id> bash. The password to the securityrat user is the same as the username.
Docker Pull Command
Owner
securityrat

Comments (5)
dkefer
7 months ago

Sorry for the delayed response, I didn't get any notification until Nico wrote to me directly.

I've uploaded a new image (without a CAS server as it's not needed anymore and we had resource problems with it) and updated the documentation. Let me know should anything not work!

nicohaase
7 months ago

Same problem here :( Sadly, I cannot access the Apache logs in the image, as the securityrat user is not able to sudo itself :(

roelstorms
8 months ago

I get the following error after being redirected to the CAS server:

"Service Unavailable

The server is temporarily unable to service your request due to maintenance downtime or capacity problems. Please try again later.

Apache/2.4.10 (Ubuntu) Server at localhost Port 9001"

This indicates that the CAS server is not running or is referenced incorrectly. Any idea why this is? Any workaround available?

alexmd
9 months ago

Solved :)
Seems like it was a memory issue and then SSLProxyCheckPeerExpire needed to be set to off in apache's conf file.

alexmd
10 months ago

Hey,

I'am trying to fire this and I get a:
503 - Service Unavailable
The server is temporarily unable to service your request due to maintenance downtime or capacity problems. Please try again later.
Apache/2.4.10 (Ubuntu) Server at localhost Port 9001

On the docker container things look like this:

root@2f38f94e610e:/home/securityrat/cas-overlay-template# ps aux
USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND
root 1 0.0 0.0 18024 260 ? Ss+ 08:27 0:00 /bin/bash /usr/local/bin/docker-ent
root 95 0.0 0.0 4472 4 ? S+ 08:27 0:00 /bin/sh /usr/bin/mysqld_safe --init
mysql 487 0.2 3.1 1349228 31904 ? Sl+ 08:27 0:04 /usr/sbin/mysqld --basedir=/usr --d
root 586 0.0 0.0 87352 56 ? Ss 08:27 0:00 /usr/sbin/apache2 -k start
www-data 589 0.0 0.3 835496 3600 ? Sl 08:27 0:00 /usr/sbin/apache2 -k start
www-data 590 0.0 0.3 835632 3808 ? Sl 08:27 0:00 /usr/sbin/apache2 -k start
root 668 0.0 0.0 49280 4 ? S+ 08:27 0:00 su -m -c mvn spring-boot:run 1> app
securit+ 673 0.0 0.0 18008 8 ? Ss 08:27 0:00 bash -c mvn spring-boot:run 1> app.
securit+ 674 2.0 0.0 2243404 12 ? Sl 08:27 0:31 /usr/lib/jvm/java-8-openjdk-amd64/b
securit+ 1198 5.0 45.9 2445284 468224 ? Sl 08:28 1:12 /usr/lib/jvm/java-8-openjdk-amd64/j
root 1465 0.0 0.3 18220 3256 ? Ss 08:42 0:00 bash

root 1738 0.0 0.2 15600 2228 ? R+ 08:52 0:00 ps aux

PORT STATE SERVICE
80/tcp open http
443/tcp open https
3306/tcp open mysql
9000/tcp open cslistener
9001/tcp open tor-orport
9002/tcp open dynamid
Device type: general purpose
Running: Linux 3.X

Any advice on how to tackle this?
Thank you!