介绍
斗象 TCC 团队正式发布「ARL 资产安全灯塔」开源版,该项目现已上线开源社区 GitHub。ARL 旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。
ARL 采用 Python3.6 开发,Web API 接口通过 flask 构建,数据存储在 mongo 中,任务调度采用 celery 进行分发(目前暂不支持 windows 平台,Linux 和 MAC 建议采用 Docker 运行)
原理
部署过程
1、环境准备
关闭selinux
sed -i '/SELINUX=/cSELINUX=disabled' /etc/selinux/config
setenforce 0
关闭防火墙
systemctl stop firewalld ebtables iptables
systemctl disable firewalld ebtables iptables
配置镜像源
bash
curl -o /etc/yum.repos.d/CentOS-Base.repo https://mirrors.aliyun.com/repo/Centos-7.repo
epel
wget -O /etc/yum.repos.d/epel.repo https://mirrors.aliyun.com/repo/epel-7.repo
2、安装docker
如果你之前安装过 docker,请先删掉
sudo yum -y remove docker docker-client docker-client-latest docker-common docker-latest docker-latest-logrotate docker-logrotate docker-engine安装一些依赖
sudo yum install -y yum-utils device-mapper-persistent-data lvm2
配置yum源
wget -O /etc/yum.repos.d/docker-ce.repo https://download.docker.com/linux/centos/docker-ce.repo
yum-config-manager --add-repo https://download.docker.com/linux/centos/docker-ce.repo
把软件仓库地址替换为 TUNA:
sudo sed -i 's+download.docker.com+mirrors.tuna.tsinghua.edu.cn/docker-ce+' /etc/yum.repos.d/docker-ce.repo
最后安装:
sudo yum makecache fast
yum -y install docker-ce docker-ce-cli containerd.io docker-compose注:
docker-ce-cli 作用是 docker 命令行工具包
containerd.io 作用是容器接口相关包
Compose 是用于定义和运行多容器 Docker 应用程序的工具。通过 Compose,您可以使用YML 文件来配置应用程序需要的所有服务。然后,使用一个命令,就可以从 YML 文件配置中创建并启动所有服务。
启动服务
systemctl start docker && systemctl enable docker3、安装python
安装依赖包
[root@localhost ~]# yum -y groupinstall "Development tools"
[root@localhost ~]# yum -y install zlib-devel bzip2-devel openssl-devel ncurses-devel sqlite-devel readline-devel tk-devel gdbm-devel libpcap-devel xz-devel libffi-devel
yum -y groupinstall "Development tools"
yum install -y ncurses-devel gdbm-devel xz-devel sqlite-devel tk-devel uuid-devel readline-devel bzip2-devel libffi-devel
yum install -y openssl-devel openssl11 openssl11-devel下载python包
[root@localhost ~]# wget https://www.python.org/ftp/python/3.10.4/Python-3.10.4.tar.xz解压python包
[root@localhost ~]# tar -xvJf Python-3.10.4.tar.xz 编译安装
mkdir /usr/local/python3
cd Python-3.10.4
./configure --prefix=/usr/local/python3 --enable-optimizations
./configure --prefix=/usr/local/python3 --enable-shared --with-openssl=/usr/local/openssl
make && make install配置软连接
ln -s /usr/local/python3/bin/python3 /usr/local/bin/python3
ln -s /usr/local/python3/bin/pip3 /usr/local/bin/pip3测试
python3 -V
pip3 -V 4、安装ARL
在线安装
拉取镜像
docker pull tophant/arl开启镜像
git clone https://github.com/TophantTechnology/ARL
cd ARL/docker/
docker volume create --name=arl_db
docker-compose up -d离线安装部署
mkdir docker_arl
wget -O docker_arl/docker2.5.1.zip https://github.com/TophantTechnology/ARL/releases/download/v2.5.1/docker.zip
cd docker_arl
unzip docker2.5.1.zip
docker volume create arl_db 创建逻辑卷
docker-compose up -d 启动服务
[root@localhost docker]# docker-compose ps
Name Command State Ports
--------------------------------------------------------------------------------------------------------------------------------------------
arl_mongodb docker-entrypoint.sh mongod Up 27017/tcp
arl_rabbitmq docker-entrypoint.sh rabbi ... Up 15671/tcp, 15672/tcp, 15691/tcp, 15692/tcp, 25672/tcp, 4369/tcp, 5671/tcp, 5672/tcp
arl_scheduler sh -c wait-for-it.sh mongo ... Up
arl_web sh -c gen_crt.sh; nginx; w ... Up 0.0.0.0:5003->443/tcp,:::5003->443/tcp
arl_worker sh -c wait-for-it.sh mongo ... Up
[root@localhost docker]#
浏览器访问
默认账号:admin
默认密码:arlpass
ARL 使用
1、点击更新POC信息
2、添加策略规则
3、添加资产
4、添加监控任务
5、在资产监控中查看任务
6、查看任务
增加指纹
git clone https://github.com/loecho-sec/ARL-Finger-ADD
cd ARL-Finger-ADD/
python3 ARL-Finger-ADD.py https://172.20.121.252:5003/ admin UBbhW2Low7ziqf
python3 ARL-Finger-ADD.py https://192.168.100.250:5003/ admin Access@0705@!
© 版权声明
文章版权归作者所有,未经允许请勿转载。
THE END
暂无评论内容