OWASP Nightingale

Nightingale Logo

Twitter Follow

Description

Docker containerization is most powerful technologies in the current market so I came with the idea to develop Docker images for Pentesters.

Nightingle contain all the required famous tools that will be required to the pentestes at the time of Penetration Testing. This docker image has a base support of debian and it is completely platform Independent.

You can either create a docker image in your local host machine or you can directly pull the docker images from the docker hub itself.

Tools List

Operating System Tools

  • Vim
  • zsh
  • locate
  • tree
  • htop
  • snapd

    Compression Techniques Tools

  • unzip
  • p7zip-full

    Development Essentials

  • git
  • ruby
  • ruby-dev
  • bundler
  • bison
  • flex
  • autoconf
  • automake
  • ruby-full
  • make
  • curl
  • gnupg
  • patch
  • ruby-bundler
  • nasm
  • wget
  • smbclient

    Programming Language Support

  • Python
  • GO
  • Nodejs
  • Ruby

    Exploit Framework

  • Metasploit

    Port Scanning Tools

  • Nmap
  • Masscan
  • Amass (Not Installed Yet)

    Network Tool

  • Traceroute
  • telnt
  • net-tools
  • iputils-ping
  • tcpdump
  • openvpn
  • whois
  • host
  • nmap

    Forensics Tools

  • exiftool
  • steghide
  • binwalk
  • foremost

    Red Team Tool

  • Impact toolkit

    Iformation Gathering

  • Shodan

Wordlist

  • https://github.com/xmendez/wfuzz.git
  • https://github.com/danielmiessler/SecLists.git
  • https://github.com/fuzzdb-project/fuzzdb.git
  • https://github.com/daviddias/node-dirbuster.git
  • https://github.com/v0re/dirb.git
  • https://github.com/brannondorsey/naive-hashcat/releases/download/data/rockyou.txt
  • https://gist.githubusercontent.com/jhaddix/86a06c5dc309d08580a018c66354a056/raw/96f4e51d96b2203f19f6381c8c545b278eaa0837/all.txt
  • https://raw.githubusercontent.com/Bo0oM/fuzz.txt/master/fuzz.txt

    OS Selection

  • Debian : Latest

    Licensing

    This program is free software. Everyone is permitted to copy and distribute verbatim copies of this license document, but changing it is not allowed stated under GNU GENERAL PUBLIC LICENSE


Docker for Pentesters

Project Name: Nightingale

==================================================

Docker for Pentesters: Pentesting Framework

Description

This Docker image contain some usefull tools that are highly required for penetration testing and which is platform independent.

Why?

The Reason behind creating this Docker file to make a platform independent penetration toolkit. It Include all the usefull tools that will be required to a penetration tester (You can refer to the tool list section for same).

Docker Image build and Run

  • Take a clone of the repository
    git clone https://github.com/RAJANAGORI/Nightingale.git
    
  • Change the Directory
    cd Nightingale
    
  • Now build the Docker Image.
    docker build -t rajanagori/nightingale .
    
  • After Creating the Docker Image, Login into the image and Happy Hacking…. ;-)
     docker run -ti --hostname nightingale  rajanagori/nightingale /bin/bash
    
  • Now, you can directly access Nightingale interactive terminal using browser
    docker run -it -p 0.0.0.0:8080:7681 -d rajanagori/nightingale /home/tool-for-pentester/binary/ttyd -p 7681 bash
    
  • Now call your browser and hit 127.0.0.1:8080 and you will be prooo!!!!

To start, Restart and Stop the Postgresql database

  • To start the service
    service postgresql start
    
  • To Restart the service
    service postgresql restart
    
  • To Stop the service
    service postgresql stop
    

Note: Use of Postgresql is for msfConsole.

Refrence

  • https://github.com/phocean/dockerfile-msf.gitY
  • https://github.com/c0dejump/HawkScan.git
  • https://github.com/1N3/Sn1per.git
  • https://github.com/tomnomnom
  • https://github.com/s0md3v/XSStrike
  • https://github.com/tomnomnom/httprobe.git

Please feel free to contribute


Docker Image Creation GIF