instance-scripts/cloud-init.yml

@@ -9,22 +9,42 @@ packages:
   - curl
   - git
   - argon2
+  - build-essential
+  - pip3
+  - ffuf
+  - nmap
+  - john
+  - nikto
+  - dirb
+  - sqlmap
 
 runcmd:
-#
-# Cloud-init execute cmd before HOME and USER are set.
-#
+  #
+  # Cloud-init execute cmd before HOME and USER are set.
+  #
   - "export HOME=/root"
   - "export USER=root"
-#
-# Install Docker
-#
-  - "curl https://forge.grandlyon.com/systemes-dinformation/alpha/pocs/cloud-machinist/cloud-machinist-templates/scaleway-instances-template/-/raw/main/instance-scripts/scripts/docker.sh | bash"
-#
-# Install Atrium
-#
-  - "curl https://forge.grandlyon.com/systemes-dinformation/alpha/pocs/cloud-machinist/cloud-machinist-templates/scaleway-instances-template/-/raw/main/instance-scripts/scripts/atrium.sh | bash"
-#
-# Install ttyd
-#
-  - "curl https://forge.grandlyon.com/systemes-dinformation/alpha/pocs/cloud-machinist/cloud-machinist-templates/scaleway-instances-template/-/raw/main/instance-scripts/scripts/ttyd.sh | bash"
\ No newline at end of file
+  #
+  # Install Docker
+  #
+  - "curl https://forge.grandlyon.com/systemes-dinformation/alpha/pocs/cloud-machinist/cloud-machinist-templates/scaleway-attack-instances-template/-/raw/main/instance-scripts/scripts/docker.sh | bash"
+  #
+  # Install Atrium
+  #
+  - "curl https://forge.grandlyon.com/systemes-dinformation/alpha/pocs/cloud-machinist/cloud-machinist-templates/scaleway-attack-instances-template/-/raw/main/instance-scripts/scripts/atrium.sh | bash"
+  #
+  # Install ttyd
+  #
+  - "curl https://forge.grandlyon.com/systemes-dinformation/alpha/pocs/cloud-machinist/cloud-machinist-templates/scaleway-attack-instances-template/-/raw/main/instance-scripts/scripts/ttyd.sh | bash"
+  #
+  # Install Webtop
+  #
+  - "curl https://forge.grandlyon.com/systemes-dinformation/alpha/pocs/cloud-machinist/cloud-machinist-templates/scaleway-attack-instances-template/-/raw/main/instance-scripts/scripts/webtop.sh | bash"
+  #
+  # Install Tools
+  #
+  - "curl https://forge.grandlyon.com/systemes-dinformation/alpha/pocs/cloud-machinist/cloud-machinist-templates/scaleway-attack-instances-template/-/raw/main/instance-scripts/scripts/tools.sh | bash"
+  #
+  # Install Lists
+  #
+  - "curl https://forge.grandlyon.com/systemes-dinformation/alpha/pocs/cloud-machinist/cloud-machinist-templates/scaleway-attack-instances-template/-/raw/main/instance-scripts/scripts/lists.sh | bash"

instance-scripts/config-files/atrium.yaml

@@ -16,8 +16,19 @@ apps: # optional : applications served by atrium
     password: %user_password%
     roles:
       - ADMINS
+  - id: 2
+    name: Desktop
+    icon: web_asset
+    color: 4292030255
+    is_proxy: true
+    host: desktop
+    target: localhost:8082
+    login: admin
+    password: %user_password%
+    roles:
+      - ADMINS
 users:
   - login: admin
     password: %user_password_hash%
     roles:
-      - ADMINS
\ No newline at end of file
+      - ADMINS

instance-scripts/scripts/atrium.sh

@@ -7,7 +7,7 @@
 export USER_PASSWORD_HASH=$(echo -n "$(scw-userdata user_password)" | argon2 "$(echo $RANDOM | md5sum | head -c 12)" -id -l 32 -e)
 
 mkdir -p /root/atrium/data && mkdir -p /root/atrium/letsencrypt_cache
-curl https://forge.grandlyon.com/systemes-dinformation/alpha/pocs/cloud-machinist/cloud-machinist-templates/scaleway-instances-template/-/raw/main/instance-scripts/config-files/atrium.yaml -o root/atrium/atrium.yaml
+curl https://forge.grandlyon.com/systemes-dinformation/alpha/pocs/cloud-machinist/cloud-machinist-templates/scaleway-attack-instances-template/-/raw/main/instance-scripts/config-files/atrium.yaml -o root/atrium/atrium.yaml
 
 sed -i "s|%atrium_hostname%|$(scw-userdata atrium_hostname)|g" /root/atrium/atrium.yaml
 sed -i "s|%project_domain%|$(scw-userdata project_domain)|g" /root/atrium/atrium.yaml

instance-scripts/scripts/lists.sh

+#!/bin/bash
+
+# Curl lists into the /root/lists directory
+
+mkdir -p /root/lists
+
+git clone https://github.com/danielmiessler/SecLists /root/lists/SecLists
+git clone https://github.com/berzerk0/Probable-Wordlists /root/lists/Probable-Wordlists
+git clone https://github.com/swisskyrepo/PayloadsAllTheThings /root/lists/PayloadsAllTheThings

instance-scripts/scripts/tools.sh

+#!/bin/bash
+
+# Nmap
+# John
+# Nikto
+# Dirb
+# XSStrike
+# SQLMap
+# Wfuzz
+# Fuff
+# Gobuster
+# Dirbuster
+# Exegol
+# Metasploit
+
+# Make a directory to store the tools
+mkdir /root/tools
+
+# Clone the XSStrike repository
+git clone https://github.com/s0md3v/XSStrike.git
+mv /XSStrike /root/tools
+
+# Pip install Wfuzz
+pip3 install wfuzz
+
+# Python3 pip install Exegol
+python3 -m pip install exegol
+
+# Make a directory to store the tools
+mkdir -p /root/tools
+
+# Clone the XSStrike repository
+git clone https://github.com/s0md3v/XSStrike.git /root/tools/XSStrike
+
+# Create a symbolic link to xsstrike.py and make it executable
+ln -s /root/tools/XSStrike/xsstrike.py /usr/local/bin/xsstrike
+chmod +x /usr/local/bin/xsstrike
+
+# Clone the metasploit repository
+curl https://raw.githubusercontent.com/rapid7/metasploit-omnibus/master/config/templates/metasploit-framework-wrappers/msfupdate.erb > msfinstall
+
+# Make the msfinstall script executable and install metasploit then clean up
+chmod 755 msfinstall
+./msfinstall
+rm msfinstall
\ No newline at end of file

instance-scripts/scripts/ttyd.sh

@@ -7,7 +7,7 @@
 mkdir -p /root/ttyd
 curl -k -L -s https://github.com/tsl0922/ttyd/releases/download/1.7.3/ttyd.x86_64 -o root/ttyd/ttyd.x86_64
 chmod +x /root/ttyd/ttyd.x86_64
-curl https://forge.grandlyon.com/systemes-dinformation/alpha/pocs/cloud-machinist/cloud-machinist-templates/scaleway-instances-template/-/raw/main/instance-scripts/config-files/ttyd.service -o etc/systemd/system/ttyd.service
+curl https://forge.grandlyon.com/systemes-dinformation/alpha/pocs/cloud-machinist/cloud-machinist-templates/scaleway-attack-instances-template/-/raw/main/instance-scripts/config-files/ttyd.service -o etc/systemd/system/ttyd.service
 sed -i "s|%user_password%|$(scw-userdata user_password)|g" /etc/systemd/system/ttyd.service
 
 systemctl enable ttyd.service && systemctl start ttyd.service

instance-scripts/scripts/webtop.sh

+#!/bin/bash
+
+#
+# Run Webtop Container
+#
+
+docker run -d --name=webtop \
+       --security-opt seccomp=unconfined \
+       -e PUID=0 \
+       -e PGID=0 \
+       -e TZ=Europe/Paris \
+       -e SUBFOLDER=/ \
+       -e KEYBOARD=fr-fr-azerty \
+       -e AUTO_LOGIN=false \
+       -p 8082:3000 \
+       -v /root/webtop:/config \
+       -v /var/run/docker.sock:/var/run/docker.sock \
+       --shm-size=8gb \
+       --cap-add=NET_ADMIN \
+       --privileged \
+       --restart unless-stopped \
+       --sysctl net.ipv6.conf.all.disable_ipv6=0 lscr.io/linuxserver/webtop:ubuntu-xfce
+
+#
+# Modify default password
+#
+
+echo "$(scw-userdata user_password)\n$(scw-userdata user_password)" | docker exec -i webtop passwd abc