extern/workspaces-images
1
0
Fork 0
mirror of https://github.com/kasmtech/workspaces-images.git synced 2025-03-10 04:19:10 +01:00
Code Issues Packages Projects Releases Wiki Activity

KASM-5299 Nessus

Browse Source
This commit is contained in:
Justin Travis 2023-12-26 16:44:31 -05:00
parent 26ad957d24
commit 4e0afc82b9
No known key found for this signature in database
7 changed files with 178 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
ci-scripts/template-vars.yaml
View File

@ -75,6 +75,15 @@ multiImages:
changeFiles:
- dockerfile-kasm-libre-office
- src/ubuntu/install/libre_office/**
- name: nessus
base: core-ubuntu-focal
dockerfile: dockerfile-kasm-nessus
changeFiles:
- dockerfile-kasm-nessus
- src/ubuntu/install/chromium/**
- src/ubuntu/install/nessus/**
- src/ubuntu/install/tools/**
- src/ubuntu/install/cleanup/**
- name: opensuse-15-desktop
base: core-opensuse-15
dockerfile: dockerfile-kasm-opensuse-15-desktop

35
dockerfile-kasm-nessus Normal file
View File

@ -0,0 +1,35 @@
ARG BASE_TAG="develop"
ARG BASE_IMAGE="core-ubuntu-focal"
FROM kasmweb/$BASE_IMAGE:$BASE_TAG
USER root
ENV HOME /home/kasm-default-profile
ENV STARTUPDIR /dockerstartup
ENV INST_SCRIPTS $STARTUPDIR/install
WORKDIR $HOME
######### Customize Container Here ###########
# Install Google Chrome
COPY ./src/ubuntu/install/chromium $INST_SCRIPTS/chromium/
RUN bash $INST_SCRIPTS/chromium/install_chromium.sh && rm -rf $INST_SCRIPTS/chromium/
COPY ./src/ubuntu/install/nessus $INST_SCRIPTS/nessus/
RUN bash $INST_SCRIPTS/nessus/install_nessus.sh && rm -rf $INST_SCRIPTS/nessus/
COPY ./src/ubuntu/install/nessus/custom_startup.sh $STARTUPDIR/custom_startup.sh
RUN chmod +x $STARTUPDIR/custom_startup.sh
RUN chmod 755 $STARTUPDIR/custom_startup.sh
RUN cp /usr/share/extra/backgrounds/bg_kasm.png /usr/share/extra/backgrounds/bg_default.png
######### End Customizations ###########
RUN chown 1000:0 $HOME
ENV HOME /home/kasm-user
WORKDIR $HOME
RUN mkdir -p $HOME && chown -R 1000:0 $HOME
USER 1000

11
docs/nessus/README.md Normal file
View File

@ -0,0 +1,11 @@
# About This Image
This Image contains a browser-accessible version of [Tennable Nessus](https://www.tenable.com/products/nessus).
![Screenshot][Image_Screenshot]
[Image_Screenshot]: https://5856039.fs1.hubspotusercontent-na1.net/hubfs/5856039/dockerhub/deluge.png "Image Screenshot"
# Environment Variables
* `APP_ARGS` - Additional arguments to pass to the application when launched.

9
docs/nessus/demo.txt Normal file
View File

@ -0,0 +1,9 @@
# Live Demo
<a href="https://app.kasmweb.com/#/cast/8801410682" target="_blank"><img src="https://info.kasmweb.com/hubfs/dockerhub/GIFs/deluge.gif" width="640" height="360"></a>
**Launch a real-time demo in a new browser window:** <a href="https://app.kasmweb.com/#/cast/8801410682" target="_blank">Live Demo</a>.
<a href="https://app.kasmweb.com/#/cast/8801410682" target="_blank"><img src="https://5856039.fs1.hubspotusercontent-na1.net/hub/5856039/hubfs/dockerhub/casting-buttons/Deluge.png" width="300" height="104"></a>
&lowast;*Note: Demo is limited to 3 minutes and has upload/downloads restricted for security purposes.*

1
docs/nessus/description.txt Normal file
View File

@ -0,0 +1 @@
Nessus Vulnerability Scanner for Kasm Workspaces

85
src/ubuntu/install/nessus/custom_startup.sh Normal file
View File

@ -0,0 +1,85 @@
#!/usr/bin/env bash
set -ex
START_COMMAND="/opt/nessus/sbin/nessusd start"
PGREP="nessusd"
DEFAULT_ARGS=""
ARGS=${APP_ARGS:-$DEFAULT_ARGS}
options=$(getopt -o gau: -l go,assign,url: -n "$0" -- "$@") || exit
eval set -- "$options"
while [[ $1 != -- ]]; do
case $1 in
-g|--go) GO='true'; shift 1;;
-a|--assign) ASSIGN='true'; shift 1;;
-u|--url) OPT_URL=$2; shift 2;;
*) echo "bad option: $1" >&2; exit 1;;
esac
done
shift
# Process non-option arguments.
for arg; do
echo "arg! $arg"
done
FORCE=$2
kasm_exec() {
if [ -n "$OPT_URL" ] ; then
URL=$OPT_URL
elif [ -n "$1" ] ; then
URL=$1
fi
# Since we are execing into a container that already has the browser running from startup,
# when we don't have a URL to open we want to do nothing. Otherwise a second browser instance would open.
if [ -n "$URL" ] ; then
/usr/bin/filter_ready
/usr/bin/desktop_ready
bash ${MAXIMIZE_SCRIPT} &
$START_COMMAND $ARGS $OPT_URL &
sleep 3
chromium-browser https://localhost:8834 --start-maximized
else
echo "No URL specified for exec command. Doing nothing."
fi
}
kasm_startup() {
if [ -n "$KASM_URL" ] ; then
URL=$KASM_URL
elif [ -z "$URL" ] ; then
URL=$LAUNCH_URL
fi
if [ -z "$DISABLE_CUSTOM_STARTUP" ] || [ -n "$FORCE" ] ; then
echo "Entering process startup loop"
set +x
while true
do
if ! pgrep -x $PGREP > /dev/null
then
/usr/bin/filter_ready
/usr/bin/desktop_ready
set +e
bash ${MAXIMIZE_SCRIPT} &
$START_COMMAND $ARGS $URL &
sleep 3
chromium-browser https://localhost:8834 --start-maximized &
set -e
fi
sleep 1
done
set -x
fi
}
if [ -n "$GO" ] || [ -n "$ASSIGN" ] ; then
kasm_exec
else
kasm_startup
fi

28
src/ubuntu/install/nessus/install_nessus.sh Normal file
View File

@ -0,0 +1,28 @@
#!/usr/bin/env bash
set -ex
ARCH=$(arch | sed 's/x86_64/amd64/g')
apt-get update
apt-get install -y jq
NESSUS_URL=$(curl --request GET --url https://www.tenable.com/downloads/api/v2/pages/nessus --header 'accept: application/json' | jq -r '.releases.latest[][] | select(.file_url | contains("ubuntu1404")) | .file_url' | grep $ARCH)
NESSUS_UPDATES_URL=$(curl --request GET --url https://www.tenable.com/downloads/api/v2/pages/nessus --header 'accept: application/json' | jq -r '.releases.latest[][] | select(.file_url | contains("nessus-updates-latest")) | .file_url')
cd /tmp
curl --request GET \
--url "${NESSUS_URL}" \
--output 'nessus.deb'
curl --request GET \
--url ${NESSUS_UPDATES_URL} \
--output 'nessus-updates-latest.tar.gz'
apt-get install -y ./nessus.deb
rm nessus.deb
/opt/nessus/sbin/nessuscli update /tmp/nessus-updates-latest.tar.gz
rm nessus-updates-latest.tar.gz