From df7090809a050ec48985142bb797b318afa2a233 Mon Sep 17 00:00:00 2001 From: Tom Date: Thu, 2 Sep 2021 21:13:17 -0500 Subject: [PATCH 1/5] updates to compose --- docker-compose.yaml | 15 +++++++++------ 1 file changed, 9 insertions(+), 6 deletions(-) diff --git a/docker-compose.yaml b/docker-compose.yaml index d70d005..cc277a7 100644 --- a/docker-compose.yaml +++ b/docker-compose.yaml @@ -1,9 +1,12 @@ -version: 3.1 - version: '3.7' + services: - helix-honeypot: - build: ./ + helix-honeypot-ad: + image: helixhoneypot/helixhoneypot + ports: + - "8000:8000" + entrypoint: [/helix-honeypot, -mode=ad] + helix-honeypot: + image: helixhoneypot/helixhoneypot ports: - - "8000:8000" - entrypoint: [/helix-honeypot, -mode=ad] + - "80:8000" \ No newline at end of file From 106109a1ec4a37d8aaedab3f6adf8da88d96a0c4 Mon Sep 17 00:00:00 2001 From: Tom Date: Thu, 2 Sep 2021 21:14:54 -0500 Subject: [PATCH 2/5] readme updates --- readme.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/readme.md b/readme.md index dd9ca38..44803ce 100644 --- a/readme.md +++ b/readme.md @@ -20,10 +20,10 @@ Clone this repo ``` docker-compose up -d ``` -Setup your kubeconfig for helix +Setup your kubeconfig for helix ``` - cluster: - server: http://127.0.0.1:8000 + server: http://127.0.0.1:80 name: helix - context: cluster: helix From ef8b443184eb85e2dca03816c5cd7881ed99a783 Mon Sep 17 00:00:00 2001 From: Tom Date: Thu, 2 Sep 2021 21:15:57 -0500 Subject: [PATCH 3/5] words --- readme.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/readme.md b/readme.md index 44803ce..5d9efd1 100644 --- a/readme.md +++ b/readme.md @@ -6,7 +6,7 @@ [![Docker Image CI](https://github.com/Zeerg/helix-honeypot/actions/workflows/docker-image.yml/badge.svg)](https://github.com/Zeerg/helix-honeypot/actions/workflows/docker-image.yml) # Introduction -Helix is a honeypot that serves two primary purposes. When running in K8s mode it listens and responds as a typical K8s api server(most endpoints). When running in active defense mode the api responses become massive and are meant to disrupt typical internet scanners. +Helix is a honeypot that serves two primary purposes. When running in K8s mode it listens and responds as a typical K8s api server(most endpoints). When running in active defense a never ending response is generated on all api endpoints. # Usage ``` From 5e02f4a84a6fe9ffe51b36ab2ea559ddaa56dd05 Mon Sep 17 00:00:00 2001 From: Tom Date: Thu, 2 Sep 2021 21:25:04 -0500 Subject: [PATCH 4/5] words --- handler/openapiHandler.go | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/handler/openapiHandler.go b/handler/openapiHandler.go index 83ff2a8..28f936d 100644 --- a/handler/openapiHandler.go +++ b/handler/openapiHandler.go @@ -24,7 +24,7 @@ func gzipHelper(data []byte) []byte { func computeETag(data []byte) string { return fmt.Sprintf("\"%X\"", sha512.Sum512(data)) } -// OpenAPI Handler becuase unless the swagger doc is cached locally it's transferred on every request :( +// OpenAPI Handler just sends the swagger doc via proto func OpenApiHandler(c echo.Context) error { openApiDoc, err := openapi_v2.ParseDocument(embedGet("v1.19.7_openapi.yaml")) if err != nil { From 07bdbca184792dbe1c3360e47fb9aadb89e8b5ac Mon Sep 17 00:00:00 2001 From: Tom Date: Thu, 2 Sep 2021 22:07:27 -0500 Subject: [PATCH 5/5] fixing docker issue with random --- Dockerfile | 1 - docker-compose.yaml | 8 +++++--- 2 files changed, 5 insertions(+), 4 deletions(-) diff --git a/Dockerfile b/Dockerfile index 136f768..b5b3fd6 100644 --- a/Dockerfile +++ b/Dockerfile @@ -11,7 +11,6 @@ FROM alpine:latest WORKDIR / COPY --from=build /helix-honeypot /helix-honeypot RUN addgroup -S helix && adduser -S helix -G helix -USER helix EXPOSE 8000 diff --git a/docker-compose.yaml b/docker-compose.yaml index cc277a7..4e73daf 100644 --- a/docker-compose.yaml +++ b/docker-compose.yaml @@ -2,11 +2,13 @@ version: '3.7' services: helix-honeypot-ad: - image: helixhoneypot/helixhoneypot + build: ./ ports: - "8000:8000" entrypoint: [/helix-honeypot, -mode=ad] + volumes: + - /dev/random:/dev/random helix-honeypot: - image: helixhoneypot/helixhoneypot + build: ./ ports: - - "80:8000" \ No newline at end of file + - "80:8000"