Centos安装docker+vulhub搭建
<p><span style="font-family: Microsoft YaHei">嫌弃平常因为复现搭建环境所带来的麻烦,所以打算用docker来管理搭建靶机</span></p><p><span style="font-family: Microsoft YaHei">准备一个纯净的Centos系统虚拟机安装,这里已经安装好了就不演示怎么在虚拟机安装</span></p>
<p>安装Docker最基本的要求是Linux内核要3.10以上,使用</p>
<div class="cnblogs_code">
<pre>uname -a</pre>
</div>
<p>查看系统信息</p>
<h1><span style="font-family: Microsoft YaHei">1.配置yum源</span></h1>
<h2><span style="font-family: Microsoft YaHei"> 备份</span><span style="font-family: Microsoft YaHei"> </span></h2>
<div class="cnblogs_code">
<pre> cd /etc/<span style="color: rgba(0, 0, 0, 1)">yum.repos.d
mkdir repos_bak #用来保存备份文件夹
mv </span>*.repo repos_bak</pre>
</div>
<h2><span style="font-family: Microsoft YaHei"> 添加阿里源</span></h2>
<div class="cnblogs_code">
<pre> curl -O http:<span style="color: rgba(0, 128, 0, 1)">//</span><span style="color: rgba(0, 128, 0, 1)">mirrors.aliyun.com/repo/Centos-7.repo</span>
curl -O http:<span style="color: rgba(0, 128, 0, 1)">//</span><span style="color: rgba(0, 128, 0, 1)">mirrors.aliyun.com/repo/epel-7.repo</span><br> curl -O http:<span style="color: rgba(0, 128, 0, 1)">//</span><span style="color: rgba(0, 128, 0, 1)">mirrors.aliyun.com/repo/epel-testing.repo</span></pre>
</div>
<h2><span style="font-family: Microsoft YaHei"> 重建yum源缓存</span><span style="font-family: Microsoft YaHei"> </span></h2>
<div class="cnblogs_code">
<pre> yum clean all && yum makecache</pre>
</div>
<p> </p>
<h1><span style="font-family: Microsoft YaHei">2.安装docker</span></h1>
<h2><span style="font-family: Microsoft YaHei"> <strong>确保yum包是最新</strong> </span></h2>
<div class="cnblogs_code">
<pre> yum update -y</pre>
</div>
<h2><span style="font-family: Microsoft YaHei"> 安装基本驱动依赖</span><span style="font-family: Microsoft YaHei"> </span></h2>
<div class="cnblogs_code">
<pre> yum install -y yum-utils device-mapper-persistent-data lvm2</pre>
</div>
<h2><span style="font-family: Microsoft YaHei"> 使用阿里的Docker源 </span></h2>
<div class="cnblogs_code">
<pre> yum-config-manager --add-repo http:<span style="color: rgba(0, 128, 0, 1)">//</span><span style="color: rgba(0, 128, 0, 1)">mirrors.aliyun.com/docker-ce/linux/centos/docker-ce.repo </span>
<span style="color: rgba(0, 0, 0, 1)">
yum makecache fast</span></pre>
</div>
<h2><span style="font-family: Microsoft YaHei"> 安装Docker</span></h2>
<div class="cnblogs_code">
<pre>yum -y install docker-<span style="color: rgba(0, 0, 0, 1)">ce #默认版本安装
#这里为了偷懒直接用默认安装,也可以指定版本安装 (安装默认版本此处忽略)
yum list docker</span>-ce --showduplicates | sort -<span style="color: rgba(0, 0, 0, 1)">r #显示docker版本列表
yum </span>-y install 版本 #如:yum -y install docker-ce-<span style="color: rgba(128, 0, 128, 1)">18.03</span>.<span style="color: rgba(128, 0, 128, 1)">1</span>.ce-<span style="color: rgba(128, 0, 128, 1)">1</span>.el7.centos</pre>
</div>
<h2><span style="font-family: Microsoft YaHei"> 验证Docker是否安装好</span><span style="font-family: Microsoft YaHei"> </span></h2>
<div class="cnblogs_code">
<pre>docker version</pre>
</div>
<h2><span style="font-family: Microsoft YaHei"> 添加开机自启</span></h2>
<div class="cnblogs_code">
<pre><span style="color: rgba(0, 0, 0, 1)">systemctl start docker
systemctl enable docker</span></pre>
</div>
<h2><span style="font-family: Microsoft YaHei"> 设置国内源,加速镜像使用</span></h2>
<div class="cnblogs_code">
<pre>vim /etc/docker/daemon.conf#如果没有就自己创建</pre>
</div>
<div class="cnblogs_code">
<pre><span style="color: rgba(0, 0, 0, 1)">{
</span><span style="color: rgba(128, 0, 0, 1)">"</span><span style="color: rgba(128, 0, 0, 1)">registry-mirrors</span><span style="color: rgba(128, 0, 0, 1)">"</span><span style="color: rgba(0, 0, 0, 1)">: [
</span><span style="color: rgba(128, 0, 0, 1)">"</span><span style="color: rgba(128, 0, 0, 1)">https://dockerhub.azk8s.cn</span><span style="color: rgba(128, 0, 0, 1)">"</span><span style="color: rgba(0, 0, 0, 1)">,
</span><span style="color: rgba(128, 0, 0, 1)">"</span><span style="color: rgba(128, 0, 0, 1)">https://reg-mirror.qiniu.com</span><span style="color: rgba(128, 0, 0, 1)">"</span><span style="color: rgba(0, 0, 0, 1)">,
</span><span style="color: rgba(128, 0, 0, 1)">"</span><span style="color: rgba(128, 0, 0, 1)">https://registry.docker-cn.com</span><span style="color: rgba(128, 0, 0, 1)">"</span><span style="color: rgba(0, 0, 0, 1)">,
</span><span style="color: rgba(128, 0, 0, 1)">"</span><span style="color: rgba(128, 0, 0, 1)">http://hub-mirror.c.163.com</span><span style="color: rgba(128, 0, 0, 1)">"</span><span style="color: rgba(0, 0, 0, 1)">,
</span><span style="color: rgba(128, 0, 0, 1)">"</span><span style="color: rgba(128, 0, 0, 1)">https://3laho3y3.mirror.aliyuncs.com</span><span style="color: rgba(128, 0, 0, 1)">"</span><span style="color: rgba(0, 0, 0, 1)">,
</span><span style="color: rgba(128, 0, 0, 1)">"</span><span style="color: rgba(128, 0, 0, 1)">http://f1361db2.m.daocloud.io</span><span style="color: rgba(128, 0, 0, 1)">"</span><span style="color: rgba(0, 0, 0, 1)">,
</span><span style="color: rgba(128, 0, 0, 1)">"</span><span style="color: rgba(128, 0, 0, 1)">https://mirror.ccs.tencentyun.com</span><span style="color: rgba(128, 0, 0, 1)">"</span><span style="color: rgba(0, 0, 0, 1)">
]
} </span></pre>
</div>
<h2><span style="font-family: Microsoft YaHei"> 添加好后重启Docker<br></span></h2>
<div class="cnblogs_code">
<pre>systemctl daemon-<span style="color: rgba(0, 0, 0, 1)">reload
systemctl restart docker</span></pre>
</div>
<h2><span style="font-family: Microsoft YaHei"> 安装docker-compose</span></h2>
<div class="cnblogs_code">
<pre>curl -L https:<span style="color: rgba(0, 128, 0, 1)">//</span><span style="color: rgba(0, 128, 0, 1)">github.com/docker/compose/releases/download/1.22.0/docker-compose-`uname -s`-`uname -m` -o /usr/local/bin/docker-compose</span>
<span style="color: rgba(0, 0, 0, 1)">
chmod </span>+x /usr/local/bin/docker-compose</pre>
</div>
<p><span style="font-family: Microsoft YaHei"> 到此,Docker的环境就安装好了,接下来试着安装vulhub靶机</span></p>
<p> </p>
<h1><span style="font-family: Microsoft YaHei">3.安装Vulhub</span></h1>
<p><span style="font-family: Microsoft YaHei"> Vulhub是一个面向大众的开源漏洞靶场,无需docker知识,简单执行两条命令即可编译、运行一个完整的漏洞靶场镜像。旨在让漏洞复现变得更加简单,让安全研究者更加专注于漏洞原理本身。</span></p>
<h2><span style="font-family: Microsoft YaHei"> 安装git命令</span></h2>
<div class="cnblogs_code">
<pre>yum -<span style="color: rgba(0, 0, 0, 1)">y install git
git </span>-version #验证是否安装成功</pre>
</div>
<h2><span style="font-family: Microsoft YaHei"> 创建一个专门存放环境的文件夹,方便管理</span></h2>
<div class="cnblogs_code">
<pre>mkdir CVE </pre>
</div>
<h2><span style="font-family: Microsoft YaHei"> 下载编译Vulhub</span></h2>
<div class="cnblogs_code">
<pre>cd /<span style="color: rgba(0, 0, 0, 1)">CVE #进入靶机管理文件夹,也可以忽略
git clone https:</span><span style="color: rgba(0, 128, 0, 1)">//</span><span style="color: rgba(0, 128, 0, 1)">github.com/vulhub/vulhub.git</span></pre>
</div>
<h2><span style="font-family: Microsoft YaHei"> 进入vulhub/wordpress/pwnscriptum/目录</span></h2>
<div class="cnblogs_code">
<pre>docker-compose up -<span style="color: rgba(0, 0, 0, 1)">d #安装此漏洞环境
docker ps #查看运行服务端口</span></pre>
</div>
<p><span style="font-family: Microsoft YaHei"> <img src="https://img2020.cnblogs.com/blog/1678972/202004/1678972-20200423201111537-24850030.png" alt=""></span></p>
<h2> 测试好后结束容器 </h2>
<div class="cnblogs_code">
<pre>docker-compose down <span style="color: rgba(0, 128, 0, 1)">//</span><span style="color: rgba(0, 128, 0, 1)">测试完毕之后,使用此命令即可结束服务,使环境变为初始状态。</span></pre>
</div>
<h1><span style="font-family: Microsoft YaHei"> 参考链接:</span></h1>
<p><span style="font-family: Microsoft YaHei"> https://www.freebuf.com/column/204885.html</span></p>
<p><span style="font-family: Microsoft YaHei"> https://www.cnblogs.com/yufeng218/p/8370670.html<br></span></p>
<p><strong><span style="font-family: Microsoft YaHei">如有错误还请指出,谢谢</span></strong></p><br><br>
来源:https://www.cnblogs.com/Lee-404/p/12763280.html
頁:
[1]