平臺:ubuntu18.04-server
tpotce版本:18.11
https://github.com/dtag-dev-sec/tpotce
一、安裝:
1、安裝ubuntu18.04
2、git或下載tpotce包到系統中
/home/ubuntu/tpotce
3、拷貝一份到/opt/tpot
4、cd /home/user/tpotce
5、./install --type=user
6、看到continue [y/n]? y
7、看到 STANDARD 選擇 NextGen 安裝
然後等待完成,自動重啓
二、配置:
進入系統後
1、修改開機獲取ip,ens33爲自己網卡名稱
sudo vi /etc/network/interfaces
auto ens33
iface ens33 inet dhcp
2、修改tpot配置啓動容器(遇到進入系統啓動tpot容器失敗時修改):
sudo vi /opt/tpot/etc/tpot.yml
禁用spiderfoot和medpot相關的內容,這兩個工具啓動會有以下問題產生,影響tpot啓動:
could not find an available, non-overlapping IPv4 address pool among the defaults to assign to the network
1)
networks:
adbhoney_local:
conpot_local_IEC104:
conpot_local_guardian_ast:
conpot_local_ipmi:
conpot_local_kamstrup_382:
cowrie_local:
cyberchef_local:
elasticpot_local:
heralding_local:
mailoney_local:
#medpot_local: #禁用
rdpy_local:
tanner_local:
ewsposter_local:
#spiderfoot_local: #禁用
2)
# Medpot service
# medpot:
# container_name: medpot
# restart: always
# networks:
# - medpot_local
# ports:
# - "2575:2575"
# image: "dtagdevsec/medpot:1811"
# read_only: true
# volumes:
# - /data/medpot/log/:/var/log/medpot
3)
# Spiderfoot service
#spiderfoot:
# container_name: spiderfoot
# restart: always
# networks:
# - spiderfoot_local
# ports:
# - "127.0.0.1:64303:8080"
# image: "dtagdevsec/spiderfoot:1811"
# volumes:
# - /data/spiderfoot/spiderfoot.db:/home/spiderfoot/spiderfoot.db
三、使用:
當容器都啓動之後,打開頁面
瀏覽器登錄並訪問管理界面:https://<your.ip>:64294
用戶密碼:爲SSH用戶密碼
通過SSH訪問命令行:ssh -l sshuser -p 64295 <your.ip>
瀏覽器登錄並訪問Web UI: https://<your.ip>:64297
用戶密碼:爲在安裝的時候設置的用戶密碼