master

分支 (22)

标签 (14)

管理

管理

master

issue-509

cicd

findsecbugs-parser

snyk-fix-20b9a7d1569d49e8d9d6641d8893cf5a

snyk-fix-0fa97f75fd508a615557d6a3b3adf281

snyk-fix-bcf96f8b9cb8f3388bb700302e4b48b0

snyk-fix-de215395389e877a25d1d0044f59d412

gh-pages

issue-486

setting-module

snyk-fix-f02f0e6330fdcbfc473aa9d493736551

snyk-fix-33e329a7c8357e243182d7a0cac4d6c4

snyk-fix-499c758994d8caa1e0378e4154984b73

snyk-fix-13fb043aa8922c89a1f43f189821fb4c

kub

workflow

404

406

63

v2.0.1

v2.0.0

v1.9.1

v1.9

v1.8

v1.7

v1.6

v1.5

v1.4

v1.3

archerysec-v1.2

v1.1

v1.0

ARCHERY-v1.0-beta

archerysec
/
Dockerfile

#Ubuntu base OS
FROM ubuntu:18.04
# Labels and Credits
LABEL \
    name="ArcherySec" \
    author="Anand Tiwari <[email protected]>" \
    maintainer="Anand Tiwari <[email protected]>" \
    description="Archery is an opensource vulnerability assessment and management tool which helps developers and pentesters to perform scans and manage vulnerabilities. Archery uses popular opensource tools to perform comprehensive scanning for web application and network. It also performs web application dynamic authenticated scanning and covers the whole applications by using selenium. The developers can also utilize the tool for implementation of their DevOps CI/CD environment."


ENV DJANGO_SETTINGS_MODULE="archerysecurity.settings.base" \
    DJANGO_WSGI_MODULE="archerysecurity.wsgi"

# Update & Upgrade Ubuntu. Install packages
RUN \
    apt-get update && \
    DEBIAN_FRONTEND=noninteractive \
    apt-get install --quiet --yes --fix-missing \
    make \
    default-jre \
    postgresql-client-10 \
    sslscan \
    nikto \
    nmap \
    wget \
    curl \
    unzip \
    git \
    python3-pip \
    virtualenv \
    gunicorn \
    postgresql \
    python-psycopg2 \
    postgresql-server-dev-all \
    libpq-dev \
    python3-dev \
    && \
    DEBIAN_FRONTEND=noninteractive \
    apt-get autoremove --purge -y && \
    apt-get clean && \
    rm -rf /var/lib/apt/lists/*

# Set locales
RUN locale-gen en_US.UTF-8
ENV LANG='en_US.UTF-8' LANGUAGE='en_US:en' LC_ALL='en_US.UTF-8'

# Create archerysec user and group
RUN groupadd -r archerysec && useradd -r -m -g archerysec archerysec

# Include init script
ADD ./docker-files/init.sh /usr/local/bin/init.sh

RUN chmod +x /usr/local/bin/init.sh

# Set user to archerysec to execute rest of commands
USER archerysec

# Create archerysec folder.
RUN mkdir /home/archerysec/app

# Set archerysec as a work directory.
WORKDIR /home/archerysec/app

RUN virtualenv -p python3 /home/archerysec/app/venv

# Copy all file to archerysec folder.
COPY . .

RUN mkdir nikto_result

RUN wget https://github.com/zaproxy/zaproxy/releases/download/2.7.0/ZAP_2.7.0_Linux.tar.gz

RUN tar -xvzf ZAP_2.7.0_Linux.tar.gz

RUN mkdir zap

RUN cp -r ZAP_2.7.0/* /home/archerysec/app/zap

COPY zap_config/policies /home/archerysec/app/zap

COPY zap_config/ascanrulesBeta-beta-24.zap /home/archerysec/app/zap/plugin/ascanrulesBeta-beta-24.zap

RUN rm -rf ZAP_2.7.0_Linux.tar.gz && \
    rm -rf ZAP_2.7.0

# Install requirements
RUN . venv/bin/activate && pip3 install --no-cache-dir -r requirements.txt && \
    rm -rf /home/archerysec/.cache

RUN . venv/bin/activate && python3 -m pip install git+https://github.com/archerysec/openvas_lib.git && python3 /home/archerysec/app/manage.py collectstatic --noinput

# Exposing port.
EXPOSE 8000

# UP & RUN application.
CMD ["/usr/local/bin/init.sh"]