平台:ubuntu18.04-server
tpotce版本:18.11
https://github.com/dtag-dev-sec/tpotce
一、安装:
1、安装ubuntu18.04
2、git或下载tpotce包到系统中
/home/ubuntu/tpotce
3、拷贝一份到/opt/tpot
4、cd /home/user/tpotce
5、./install --type=user
6、看到continue [y/n]? y
7、看到 STANDARD 选择 NextGen 安装
然后等待完成,自动重启
二、配置:
进入系统后
1、修改开机获取ip,ens33为自己网卡名称
sudo vi /etc/network/interfaces
auto ens33
iface ens33 inet dhcp
2、修改tpot配置启动容器(遇到进入系统启动tpot容器失败时修改):
sudo vi /opt/tpot/etc/tpot.yml
禁用spiderfoot和medpot相关的内容,这两个工具启动会有以下问题产生,影响tpot启动:
could not find an available, non-overlapping IPv4 address pool among the defaults to assign to the network
1)
networks:
adbhoney_local:
conpot_local_IEC104:
conpot_local_guardian_ast:
conpot_local_ipmi:
conpot_local_kamstrup_382:
cowrie_local:
cyberchef_local:
elasticpot_local:
heralding_local:
mailoney_local:
#medpot_local: #禁用
rdpy_local:
tanner_local:
ewsposter_local:
#spiderfoot_local: #禁用
2)
# Medpot service
# medpot:
# container_name: medpot
# restart: always
# networks:
# - medpot_local
# ports:
# - "2575:2575"
# image: "dtagdevsec/medpot:1811"
# read_only: true
# volumes:
# - /data/medpot/log/:/var/log/medpot
3)
# Spiderfoot service
#spiderfoot:
# container_name: spiderfoot
# restart: always
# networks:
# - spiderfoot_local
# ports:
# - "127.0.0.1:64303:8080"
# image: "dtagdevsec/spiderfoot:1811"
# volumes:
# - /data/spiderfoot/spiderfoot.db:/home/spiderfoot/spiderfoot.db
三、使用:
当容器都启动之后,打开页面
浏览器登录并访问管理界面:https://<your.ip>:64294
用户密码:为SSH用户密码
通过SSH访问命令行:ssh -l sshuser -p 64295 <your.ip>
浏览器登录并访问Web UI: https://<your.ip>:64297
用户密码:为在安装的时候设置的用户密码