A simple pentest container equipped with common python pentest tools. The container runs on Python 3.9.2 which circumevents the TLS issues with Python 3.10.
The following tools are supported:
- bloodhound.py
- certipy
- coercer
- crackmapexec
- dirsearch
- EyeWitness
- impacket
- ldapdomaindump
- pypykatz
- smbcrawler
- smbmap
- sqlmap
- ultimate-nmap-parser
The scripts use podman
but can be easily adjusted to use docker
(CONTAINER_PROVIDER=docker
) instead.
Firstly run build-pentest-container.sh
once to build the container.
$ ./build-pentest-container.sh
[2/2] STEP 1/13: FROM debian:bullseye-slim
Resolved "debian" as an alias (/etc/containers/registries.conf.d/000-shortnames.conf)
Trying to pull docker.io/library/debian:bullseye-slim...
Getting image source signatures
Copying blob 3f4ca61aafcd done
Copying config dd94cb6119 done
Writing manifest to image destination
Storing signatures
[...]
Then use run-pentest-container.sh
to start the container on demand.
$ ./run-pentest-container.sh
[+] Starting Container
[+] Shared folder: local:/tmp/contianer-share -> container:/share
[+] Share other folder with /home/user/Documents/pentest-python/run-pentest-container.sh [/path/to/your/local/share]
pentest-python-74af758ddc6b:~# python3 --version
Python 3.9.2
# on a machine with internet access
$ ./build-pentest-container.sh
[...]
$ podman save --output pentest-python-container.tar pentest-python
[...]
# copy the pentest-python-container.tar and ./run-pentest-container.sh to the target machine
$ podman load --input pentest-python-container.tar
[...]
./run-pentest-container.sh
[...]