From 15f16ec2d341f500ed08dbf45ae31e2ddeafcb0a Mon Sep 17 00:00:00 2001
From: Pie Security <admin@pie-secure.org>
Date: Fri, 12 Aug 2016 01:38:02 +0000
Subject: [PATCH 1/4] Initial Dockerfile

---
 setup/Dockerfile      | 18 ++++++++++++++++++
 setup/setup-docker.sh | 39 +++++++++++++++++++++++++++++++++++++++
 2 files changed, 57 insertions(+)
 create mode 100644 setup/Dockerfile
 create mode 100644 setup/setup-docker.sh

diff --git a/setup/Dockerfile b/setup/Dockerfile
new file mode 100644
index 0000000..5a3041e
--- /dev/null
+++ b/setup/Dockerfile
@@ -0,0 +1,18 @@
+#All client protocols work with Docker Image. Server Protocols FTP and ICMP are not currently functional.
+#Build this docker file with the following command
+#$cd ./setup
+#$docker build -t egressassess .
+FROM ubuntu
+MAINTAINER piesecurity <admin@pie-secure.org>
+RUN apt-get update && \
+#python-pip is just too big, but I don't think it is required right now
+apt-get install tcpdump git wget -y  && \
+git clone https://github.com/ChrisTruncer/Egress-Assess.git
+ADD setup-docker.sh /Egress-Assess/setup/setup-docker.sh
+RUN chmod +x /Egress-Assess/setup/setup-docker.sh
+RUN bash -c "cd /Egress-Assess && ./setup/setup-docker.sh"
+EXPOSE 80 443 53/udp 25 21 20 445
+ENTRYPOINT bash -c "cd /Egress-Assess && ./Egress-Assess.py --list-servers && ./Egress-Assess.py -h && bash" 
+#Example Server Execution- Slight changes in port incase these are inuse
+#Loots can be any local folder you want
+#docker run -it -p 25:25 -p 20:20 -p 21:21 -p 80:80 -p 445:445 -p 53:53/udp -p 444:443 -p 23:22 -v /home/ubuntu/Egress-Assess-Docker/loots:/Egress-Assess/data/ piesecurity/egressasess 
diff --git a/setup/setup-docker.sh b/setup/setup-docker.sh
new file mode 100644
index 0000000..c0f0909
--- /dev/null
+++ b/setup/setup-docker.sh
@@ -0,0 +1,39 @@
+#Customize the certificate below if you wish. Otherwise this file is good to go.
+#See ./setup/Dockerfile for instructions to build a docker image
+#!/bin/bash
+
+clear
+echo "[*] Installing Egress-Assess Dependencies..."
+apt-get install -y smbclient
+echo "[*] Installing scapy"
+apt-get install -y python-scapy
+echo "[*] Installing paramiko"
+apt-get install -y python-paramiko python-crypto
+echo "[*] Installing ecdsa"
+pip install ecdsa
+echo "[*] Installing pyasn1"
+apt-get install -y python-pyasn1
+echo "[*] Installing dnspython"
+apt-get install -y python-dnspython
+echo "[*] Installing impacket"
+wget https://pypi.python.org/packages/source/i/impacket/impacket-0.9.13.tar.gz
+tar -xvf impacket-0.9.13.tar.gz
+cd impacket-0.9.13
+python setup.py install
+cd ..
+rm -rf impacket-0.9.13
+echo "[*] Installing pyftpdlib..."
+git clone https://github.com/giampaolo/pyftpdlib.git
+cd pyftpdlib
+python setup.py install
+cd ..
+rm -rf pyftpdlib
+cd /Egress-Assess/protocols/servers/serverlibs/web
+clear
+echo "[*] Generating SSL Certificate"
+#Change the certificate information in the below line if you wish
+openssl req -new -x509 -keyout server.pem -out server.pem -days 365 -nodes -subj "/C=US/ST=Texas/L=Huston/O=Another Network/OU=IT Department/CN=www.change.org"
+echo
+echo
+echo "[*] Install complete!"
+echo "[*] Enjoy Egress-Assess!"

From 67a0bb41e82e4c5602121e6d952cf151dd3b9592 Mon Sep 17 00:00:00 2001
From: Pie Security <admin@pie-secure.org>
Date: Fri, 12 Aug 2016 01:50:40 +0000
Subject: [PATCH 2/4] Docker image name update

---
 setup/Dockerfile | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/setup/Dockerfile b/setup/Dockerfile
index 5a3041e..48fa718 100644
--- a/setup/Dockerfile
+++ b/setup/Dockerfile
@@ -2,6 +2,8 @@
 #Build this docker file with the following command
 #$cd ./setup
 #$docker build -t egressassess .
+#You can also just pull it from Docker hub
+#docker pull piesecurity/egress-assess
 FROM ubuntu
 MAINTAINER piesecurity <admin@pie-secure.org>
 RUN apt-get update && \
@@ -15,4 +17,4 @@ EXPOSE 80 443 53/udp 25 21 20 445
 ENTRYPOINT bash -c "cd /Egress-Assess && ./Egress-Assess.py --list-servers && ./Egress-Assess.py -h && bash" 
 #Example Server Execution- Slight changes in port incase these are inuse
 #Loots can be any local folder you want
-#docker run -it -p 25:25 -p 20:20 -p 21:21 -p 80:80 -p 445:445 -p 53:53/udp -p 444:443 -p 23:22 -v /home/ubuntu/Egress-Assess-Docker/loots:/Egress-Assess/data/ piesecurity/egressasess 
+#docker run -it -p 25:25 -p 20:20 -p 21:21 -p 80:80 -p 445:445 -p 53:53/udp -p 444:443 -p 23:22 -v /home/ubuntu/loots:/Egress-Assess/data/ piesecurity/egress-assess

From 15dfd3dd2b2ccb30292fca691e45f067dfe622c1 Mon Sep 17 00:00:00 2001
From: Pie Security <admin@pie-secure.org>
Date: Sun, 14 Aug 2016 14:18:20 +0000
Subject: [PATCH 3/4] FTP Server is now configured to use PASV Mode. Added
 workaround for ICMP protocol types.

---
 protocols/servers/ftp_server.py |  6 +++++-
 setup/Dockerfile                | 12 +++++++++---
 2 files changed, 14 insertions(+), 4 deletions(-)

diff --git a/protocols/servers/ftp_server.py b/protocols/servers/ftp_server.py
index ccd558a..bb13dc5 100644
--- a/protocols/servers/ftp_server.py
+++ b/protocols/servers/ftp_server.py
@@ -10,7 +10,7 @@ import sys
 from pyftpdlib.authorizers import DummyAuthorizer
 from pyftpdlib.handlers import FTPHandler
 from pyftpdlib.servers import FTPServer
-
+import urllib
 
 class Server:
 
@@ -45,6 +45,10 @@ class Server:
 
             # Define a customized banner (string returned when client connects)
             handler.banner = "Connecting to Egress-Assess's FTP server!"
+            #Define public address and  passive ports making NAT configurations more predictable
+            public_ip = urllib.urlopen("http://api.ipify.org/").read()
+            handler.masquerade_address = public_ip
+            handler.passive_ports = range(60000, 60100)
 
             try:
                 server = FTPServer(('', self.port), handler)
diff --git a/setup/Dockerfile b/setup/Dockerfile
index 48fa718..6770587 100644
--- a/setup/Dockerfile
+++ b/setup/Dockerfile
@@ -15,6 +15,12 @@ RUN chmod +x /Egress-Assess/setup/setup-docker.sh
 RUN bash -c "cd /Egress-Assess && ./setup/setup-docker.sh"
 EXPOSE 80 443 53/udp 25 21 20 445
 ENTRYPOINT bash -c "cd /Egress-Assess && ./Egress-Assess.py --list-servers && ./Egress-Assess.py -h && bash" 
-#Example Server Execution- Slight changes in port incase these are inuse
-#Loots can be any local folder you want
-#docker run -it -p 25:25 -p 20:20 -p 21:21 -p 80:80 -p 445:445 -p 53:53/udp -p 444:443 -p 23:22 -v /home/ubuntu/loots:/Egress-Assess/data/ piesecurity/egress-assess
+#Example Client Execution
+#docker run -it piesecurity/egress-assess
+#Example Server Execution- This requires all of the port mappings and location of your loots folder
+#Slight changes in port incase these are already in use
+#loots can be any local folder you want
+#docker run -it -p 25:25 -p 20-21:20-21 -p 60000-60100:60000-60100 -p 80:80 -p 445:445 -p 53:53/udp -p 444:443 -p 23:22 -v /home/ubuntu/loots:/Egress-Assess/data/ piesecurity/egress-assess
+#Special note for running the ICMP Server in Docker: Add the below iptables rule after the docker container is running
+#iptables -t nat -A PREROUTING -p ICMP -i <internet_interface> -j DNAT --to-destination <dockerContainerIP>
+#You can find the <dockerContainerIP> through the docker inpsect command, or just look at the rest of your iptables rules under the DOCKER chain

From c8fccff820e4cebb2dfe0f2a7e4617c37bbc15e7 Mon Sep 17 00:00:00 2001
From: Pie Security <admin@pie-secure.org>
Date: Wed, 17 Aug 2016 00:34:52 +0000
Subject: [PATCH 4/4] Masquerade Address (PASV FTP IP) can be defined with --ip
 parameter

---
 protocols/servers/ftp_server.py | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/protocols/servers/ftp_server.py b/protocols/servers/ftp_server.py
index bb13dc5..65aedc7 100644
--- a/protocols/servers/ftp_server.py
+++ b/protocols/servers/ftp_server.py
@@ -10,7 +10,6 @@ import sys
 from pyftpdlib.authorizers import DummyAuthorizer
 from pyftpdlib.handlers import FTPHandler
 from pyftpdlib.servers import FTPServer
-import urllib
 
 class Server:
 
@@ -23,6 +22,10 @@ class Server:
             self.port = int(cli_object.server_port)
         else:
             self.port = 21
+	if cli_object.ip:
+	    self.ip = cli_object.ip
+	else:
+	    self.ip = None
 
     def serve(self):
         # current directory
@@ -46,8 +49,7 @@ class Server:
             # Define a customized banner (string returned when client connects)
             handler.banner = "Connecting to Egress-Assess's FTP server!"
             #Define public address and  passive ports making NAT configurations more predictable
-            public_ip = urllib.urlopen("http://api.ipify.org/").read()
-            handler.masquerade_address = public_ip
+            handler.masquerade_address = self.ip
             handler.passive_ports = range(60000, 60100)
 
             try: