Skip to content

A simple Dockerfile to build an image starting from the latest official one of Kali Linux and including some useful tools.

License

Notifications You must be signed in to change notification settings

0xj4f/Kali-Linux-Dockerfile

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Kali-Linux-Dockerfile

A simple dockerfile which allows you to build a docker image starting from the latest official one of Kali Linux and including some useful tools.

Demo

A Demo of Containerized Kali Linux using tor and proxychains

Kali Docker

Usage

NAME=kali
IMAGE=codeandrew/kali-rolling:latest
KALI_DIR=$HOME/kali
mkdir -p $KALI_DIR

# Run Image with Docker Sock for Faster Process 
docker run -it --tty -v $KALI_DIR:/home -v /var/run.docker.sock:/var/run/docker.sock -p 4440-4449:4440-4449 --name $NAME $IMAGE
──(root💀2f2521b98c43)-[/tmp]
└─#

Included tools

These are the main tools which are included:

  • Kali Linux Top 10 metapackage
  • exploitdb
  • man-db
  • dirb
  • nikto
  • wpscan
  • uniscan
  • tor
  • proxychains

Note that you can add/modify/delete configuration files by doing the related changes in the dockerfile.

CheatSheets

One Liner Server

python3 -m http.server 9999 # Desired Port

My Installed Tools

Tool Name Description Command Package Name References
Nmap Network Scanner nmap -v -A -T4 -Pn ${TARGET} nmap https://tools.kali.org/information-gathering/nmap
Dmitry Deepmagic Information Gathering Tool. Basic functionality of DMitry allows for information to be gathered about a target host from a simple whois lookup on the target to uptime reports and TCP portscans. dmitry ${TARGET} dmitry -s ${TARGET} dmitry https://tools.kali.org/information-gathering/dmitry
LBD Load Balancer Detector lbd ${TARGET} lbd https://tools.kali.org/information-gathering/lbd
SSlyze Checking weakness in SSL sslyze --heartbleed --sslv2 --sslv3 --tlsv1 --tlsv1_1 --tlsv1_2 ${TARGET} sslyze https://tools.kali.org/information-gathering/sslyze
WhatWeb Scans Website description, performance and metadata whatweb ${TARGET} whatweb https://tools.kali.org/web-applications/whatweb
Nikto web server scanner nikto -Display 1234EP -o /tmp/report.html -Format htm -Tuning 123bde -host ${TARGET} nikto https://tools.kali.org/information-gathering/nikto
Uniscan Uniscan is a simple Remote File Include, Local File Include and Remote Command Execution vulnerability scanner uniscan -u http://${TARGET} -qweds uniscan https://tools.kali.org/web-applications/uniscan

TOOLS

mkdir -p $HOME/repo
cd $HOME/repo
wget https://raw.githubusercontent.com/mzet-/linux-exploit-suggester/master/linux-exploit-suggester.sh -O les.sh

Docker Networking

when starting the container to use the host network stack. This will make the container share the same network interfaces as the host machine

docker run --net=host <image_name> <command>

Note that using --net=host can have security implications, as the container will have access to all network interfaces and ports of the host machine. So be careful when using this option and make sure your container is properly secured

References

About

A simple Dockerfile to build an image starting from the latest official one of Kali Linux and including some useful tools.

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published