简单的kail中使用docker搭建vulhub靶场
我这里kali版本是6.12.38
一,安装docker
提权:sudo su
更新一手软件资源
命令:apt-get update
┌──(root㉿kali)-[/home/kali/Desktop] └─# apt-get update 获取:1 http://mirrors.ustc.edu.cn/kali kali-rolling InRelease [34.0 kB] 获取:2 http://mirrors.ustc.edu.cn/kali kali-rolling/main Sources [17.6 MB] 获取:3 http://mirrors.ustc.edu.cn/kali kali-rolling/non-free Sources [116 kB] 获取:4 http://mirrors.ustc.edu.cn/kali kali-rolling/contrib Sources [85.2 kB] 获取:5 http://mirrors.ustc.edu.cn/kali kali-rolling/main amd64 Packages [21.0 MB] 获取:6 http://mirrors.ustc.edu.cn/kali kali-rolling/main amd64 Contents (deb) [53.4 MB] 获取:7 http://mirrors.ustc.edu.cn/kali kali-rolling/non-free amd64 Packages [186 kB] 获取:8 http://mirrors.ustc.edu.cn/kali kali-rolling/non-free amd64 Contents (deb) [893 kB] 获取:9 http://mirrors.ustc.edu.cn/kali kali-rolling/contrib amd64 Packages [118 kB] 获取:10 http://mirrors.ustc.edu.cn/kali kali-rolling/contrib amd64 Contents (deb) [276 kB] 已下载 93.8 MB,耗时 37秒 (2,525 kB/s) 正在读取软件包列表... 完成 |
直接安装docker
命令:apt install docker.io
┌──(root㉿kali)-[/home/kali/Desktop] └─# apt install docker.io 将要安装: docker.io 将要安装的依赖: containerd docker-buildx docker-cli runc tini-static 建议安装: containernetworking-plugins btrfs-progs rinse xfsprogs | zfsutils-linux docker-doc debootstrap rootlesskit zfs-fuse 推荐安装: needrestart criu 摘要: 升级:0,安装:6,卸载:0,不升级:2102 下载大小:75.3 MB 所需的空间:321 MB / 63.1 GB 可用 是否继续? [Y/n] y 获取:1 http://mirrors.ustc.edu.cn/kali kali-rolling/main amd64 runc amd64 1.3.5+ds1-1 [6,726 kB] 获取:2 http://mirrors.ustc.edu.cn/kali kali-rolling/main amd64 containerd amd64 2.1.4~ds2-8 [27.8 MB] 获取:3 http://mirrors.ustc.edu.cn/kali kali-rolling/main amd64 docker-buildx amd64 0.29.1+ds1-2 [14.1 MB] 获取:4 http://mirrors.ustc.edu.cn/kali kali-rolling/main amd64 docker-cli amd64 28.5.2+dfsg3-2 [7,884 kB] 获取:5 http://mirrors.ustc.edu.cn/kali kali-rolling/main amd64 tini-static amd64 0.19.0-6+b1 [281 kB] 获取:6 http://mirrors.ustc.edu.cn/kali kali-rolling/main amd64 docker.io amd64 28.5.2+dfsg3-2 [18.5 MB] 已下载 75.3 MB,耗时 29秒 (2,579 kB/s) 正在选中未选择的软件包 runc。 (正在读取数据库 ... 系统当前共安装有 417671 个文件和目录。) 准备解压 .../0-runc_1.3.5+ds1-1_amd64.deb ... |
检查docker版本
命令:docker -v
┌──(root㉿kali)-[/home/kali/Desktop] └─# docker -v Docker version 28.5.2+dfsg3, build 9cc6dea35e9a963f281434761c656fba4ac43aed |
启动docker
命令:systemctl start docker
查看docker是否正常
┌──(root㉿kali)-[/home/kali/Desktop] └─# docker ps -a CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES |
二,安装Docker Compose
查看有没有Docker Compose安装包
命令:apt search docker-compose
┌──(root㉿kali)-[/home/kali/Desktop] └─# apt search docker-compose docker-compose/kali-rolling 2.40.3-2 amd64 Define and run multi-container applications with Docker (program) podman-compose/kali-rolling 1.5.0-2 all Run docker-compose.yml using podman resource-agents/kali-rolling 1:4.17.0-2 amd64 Cluster Resource Agents |
查看有docker-compose包
直接安装
命令:apt install docker-compose -y
┌──(root㉿kali)-[/home/kali/Desktop] └─# sudo apt install docker-compose -y 将要安装: docker-compose 摘要: 升级:0,安装:1,卸载:0,不升级:2100 下载大小:13.8 MB 所需的空间:69.4 MB / 62.8 GB 可用 获取:1 http://mirrors.ustc.edu.cn/kali kali-rolling/main amd64 docker-compose amd64 2.40.3-2 [13.8 MB] 已下载 13.8 MB,耗时 13秒 (1,105 kB/s) 正在选中未选择的软件包 docker-compose。 (正在读取数据库 ... 系统当前共安装有 418058 个文件和目录。) 准备解压 .../docker-compose_2.40.3-2_amd64.deb ... 正在解压 docker-compose (2.40.3-2) ... 正在设置 docker-compose (2.40.3-2) ... 正在处理用于 kali-menu (2025.3.2) 的触发器 ... 正在处理用于 man-db (2.13.1-1) 的触发器 ... |
查看Docker Compose版本
命令:docker-compose --version
┌──(root㉿kali)-[/home/kali/Desktop] └─# docker-compose --version Docker Compose version 2.40.3-2 |
三,安装vulhub
1,使用curl命令下载压缩包
命令:curl -L -o vulhub-master.zip https://github.com/vulhub/vulhub/archive/refs/heads/master.zip
┌──(root㉿kali)-[/home/kali/Desktop] └─# curl -L -o vulhub-master.zip https://github.com/vulhub/vulhub/archive/refs/heads/master.zip % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0 100 86.2M 0 86.2M 0 0 3383k 0 --:--:-- 0:00:26 --:--:-- 4174k |
2,使用unzip解压缩安装包
命令:unzip vulhub-master.zip
┌──(root㉿kali)-[/home/kali/Desktop] └─# unzip vulhub-master.zip Archive: vulhub-master.zip 933b6536f2e32481a91611cd732bd8d11dd92658 creating: vulhub-master/ creating: vulhub-master/.claude/ creating: vulhub-master/.claude/skills/ creating: vulhub-master/.claude/skills/add-vulhub-env/ inflating: vulhub-master/.claude/skills/add-vulhub-env/SKILL.md creating: vulhub-master/.claude/skills/add-vulhub-env/references/ inflating: vulhub-master/.claude/skills/add-vulhub-env/references/readme-writing-guide.md creating: vulhub-master/.claude/skills/vulhub-screenshot/ inflating: vulhub-master/.claude/skills/vulhub-screenshot/SKILL.md creating: vulhub-master/.claude/skills/vulhub-screenshot/scripts/ inflating: vulhub-master/.claude/skills/vulhub-screenshot/scripts/browser-screenshot inflating: vulhub-master/.claude/skills/vulhub-screenshot/scripts/gnome-screenshot inflating: vulhub-master/.claude/skills/vulhub-screenshot/scripts/window-screenshot inflating: vulhub-master/.gitattributes creating: vulhub-master/.github/ inflating: vulhub-master/.github/FUNDING.yml creating: vulhub-master/.github/ISSUE_TEMPLATE/ inflating: vulhub-master/.github/ISSUE_TEMPLATE/bug-report.md creating: vulhub-master/.github/assets/ |
3,这里要配置一下加速拉取源
配置 /etc/docker/daemon.json 文件
提权sudo su
命令:nano/etc/docker/daemon.json文件
输入:
{ "registry-mirrors": [ "https://docker.registry.cyou", "https://docker-cf.registry.cyou", "https://dockercf.jsdelivr.fyi", "https://docker.jsdelivr.fyi", "https://dockertest.jsdelivr.fyi", "https://mirror.aliyuncs.com", "https://dockerproxy.com", "https://mirror.baidubce.com", "https://docker.m.daocloud.io", "https://docker.nju.edu.cn", "https://docker.mirrors.sjtug.sjtu.edu.cn", "https://docker.mirrors.ustc.edu.cn", "https://mirror.iscas.ac.cn", "https://docker.rainbond.cc", "https://do.nark.eu.org", "https://dc.j8.work", "https://gst6rzl9.mirror.aliyuncs.com", "https://registry.docker-cn.com", "http://hub-mirror.c.163.com", "http://mirrors.ustc.edu.cn/", "https://mirrors.tuna.tsinghua.edu.cn/", "http://mirrors.sohu.com/" ], "insecure-registries": [ "registry.docker-cn.com", "docker.mirrors.ustc.edu.cn" ], "debug": true, "experimental": false } |
重启docker使其启用
命令:systemctl restart docker
┌──(root㉿kali)-[/home/…/Desktop/vulhub/shiro/CVE-2016-4437] └─# systemctl restart docker |
验证是否启用
命令:docker info | grep -A 5 "Registry Mirrors"
出现文件里面配置即可
┌──(root㉿kali)-[/home/…/Desktop/vulhub/shiro/CVE-2016-4437] └─# docker info | grep -A 5 "Registry Mirrors" Registry Mirrors: https://docker.registry.cyou/ https://docker-cf.registry.cyou/ https://dockercf.jsdelivr.fyi/ https://docker.jsdelivr.fyi/ https://dockertest.jsdelivr.fyi/ |
四,启动 靶场环境
cd到目标目录下
cd /home/kali/Desktop/vulhub/shiro/CVE-2016-4437 |
启动靶场环境
命令:sudo docker-compose up -d
┌──(root㉿kali)-[/home/…/Desktop/vulhub/shiro/CVE-2016-4437] └─# docker-compose up -d [+] Running 9/9 ✔ web Pulled 150.1s ✔ 43c265008fae Pull complete 21.2s ✔ af36d2c7a148 Pull complete 21.9s ✔ 2b7b4d10e1c1 Pull complete 22.0s ✔ f264389d8f2f Pull complete 22.0s ✔ 1a2c46e93f4a Pull complete 22.0s ✔ f9506bb322c0 Pull complete 38.7s ✔ 96f5dad14c2c Pull complete 38.7s ✔ b6ea9c6684a0 Pull complete 39.0s [+] Running 2/2 ✔ Network cve-2016-4437_default Created 0.0s ✔ Container cve-2016-4437-web-1 Started |
查看使用哪个端口
命令:docker ps
┌──(root㉿kali)-[/home/…/Desktop/vulhub/shiro/CVE-2016-4437] └─# docker ps CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES 1bc1cf32c175 vulhub/shiro:1.2.4 "java -jar /shirodem…" 24 seconds ago Up 23 seconds 0.0.0.0:8080->8080/tcp, [::]:8080->8080/tcp cve-2016-4437-web-1 |
访问127.0.0.1:8080
完成!
开测shiro漏洞!!
注意:用完及时清理
查看状态 |
|
停止环境 |
|
启动环境 |
|
完全关闭 |
|
重启环境 |
|
查看日志 |
|