使用docker搭建環境
摘要
install docker
安裝docker依賴包:ubuntu(apt-get),centos(yum)
yum install -y yum-utils device-mapper-persistent-data lvm2
設置yum源
yum-config-manager --add-repo https://download.docker.com/linux/centos/docker-ce.repo
安裝docker
yum install docker-ce
若報錯,更換yum源
Error downloading packages:
containerd.io-1.2.13-3.1.el7.x86_64: [Errno 256] No more mirrors to try.
1:docker-ce-cli-19.03.7-3.el7.x86_64: [Errno 256] No more mirrors to try.
3:docker-ce-19.03.7-3.el7.x86_64: [Errno 256] No more mirrors to try.
yum-config-manager --add-repo https://mirrors.aliyun.com/docker-ce/linux/centos/docker-ce.repo
start docker
啟動並加入開機啟動
systemctl start docker
systemctl enable docker
存在client和server表示docker安裝啟動成功
docker version
修改鏡像源
vi /etc/docker/daemon.json
{
"registry-mirrors": ["http://hub-mirror.c.163.com"]
}
systemctl restart docker.service
基本命令
下載鏡像: docker pull 鏡像名
查看鏡像: docker images
查看正在運行鏡像: docker ps
刪除已下載鏡像: docker rm 鏡像名
停止/刪除運行的容器: docker stop/rmi 容器id
后台運行/映射端口: docker run -d -p 8080:80 鏡像名
進入容器: dockeer exec -it 容器名 bash
保存/加載(類似vm虛擬機的vmdk文件): docker save XX > 1.tar / docker load XX < 1.tar
install docker-compose
Docker Compose 是一個用來定義和運行復雜應用的 Docker 工具,使用 Docker Compose 不再需要使用 shell 腳本來啟動容器(通過 docker-compose.yml 配置)
1.通過pip安裝
首先安裝python-pip並升級
yum install gcc libffi-devel python-devel openssl-devel -y
yum -y install epel-release
yum -y install python-pip
pip install --upgrade pip
安裝docker-compose
pip install docker-compose
安裝若報錯
ERROR: Could not find a version that satisfies the requirement requests (from versions: none)
ERROR: No matching distribution found for requests
執行:pip install requests --ignore-installed chardet
之后若報錯,則更新python版本
ERROR: Exception:
Traceback (most recent call last):
File "/usr/lib/python2.7/site-packages/pip/_internal/cli/base_command.py", line 186, in _main
status = self.run(options, args)
File "/usr/lib/python2.7/site-packages/pip/_internal/commands/install.py", line 331, in run
2.通過源碼安裝
sudo curl -L https://github.com/docker/compose/releases/download/1.18.0/docker-compose-`uname -s`-`uname -m` -o /usr/local/bin/docker-compose
sudo chmod +x /usr/local/bin/docker-compose
部署upload-labs/sqli-labs
以upload-labs為例
1、先克隆項目到本地/opt並解壓
cd ~/opt
wget https://github.com/c0ny1/upload-labs/archive/0.1.tar.gz
tar zxvf 0.1.tar.gz
解壓完之后會有一個upload-labs-0.1文件夾
2.建立docker image
[root@localhost opt]# cd upload-labs-0.1/
[root@localhost upload-labs-0.1]# cd docker/
[root@localhost docker]# ls
Dockerfile docker-php.conf php.ini
3.創建鏡像
[root@localhost docker]# pwd
/opt/upload-labs-0.1/docker
[root@localhost docker]# docker build -t upload-labs .
4.運行鏡像
docker run -d -p 8080:80 upload-labs
瀏覽器訪問http://本機ip:8080
-d表示后台運行,-p表示端口映射,docker虛擬端口80映射本機8080端口
部署DVWA
1.搭建lamp容器
docker pull vuldocker/lamp
docker run -it -d --name dvwa -p 8008:80 vuldocker/lamp
docker ps
docker exec -it 容器id /bin/bash
2.安裝dvwa
安裝git
yum install git
下載、安裝dvwa
git clone https://github.com/ethicalhack3r/DVWA.git
cd /var/www/html
mkdir dvwa
cd ../../../../
將下載的DVWA移動到/var/www/html/dvwa:mv /var/www/html/dvwa
cd /DVWA/config
mv config.inc.php.dist config.inc.php
瀏覽器訪問http://本機ip:8008/dvwa/DVWA/setup.php
部署vulhub
git clone https://github.com/vulhub/vulhub.git
vulhub集成了許多CVE漏洞,以安裝CVE-2015-5254為例
cd vulhub/activemq/CVE-2015-5254
docker-compose build
docker-compose up -d
查看README.md
訪問http://本機ip:8161(端口可在docker-compose.yml中修改)