This project builds a minimal Kali Linux Docker Image with basic networking tools and SSH support. The KaliBox base image can then be expanded by configuring various tools and plugins in the init.sh script.
Before building the KaliBox image, you can configure the init.sh script by changing the comments inside or adding your own configurations:
Access Config: Configure passwords and create new players.SSH Config: Configure SSH to backup default keys, generate new keys and start the ssh service.Language Config: Configure Language support for the image.Tools Config: Configure and extend Kali Linux Tools.
If you are going to use NodeJs to build and run the KaliBox image, be sure to install the project's dependencies after cloning the repository:
npm install Execute the following script inside the project directory to build the image:
npm run docker:buildOnce you build the image you can run it with the following script:
npm run docker:run <HOST-PORT> <ROOT-PASSWORD> <PLAYER-PASSWORD><HOST-PORT>: [number] Define the host port for the Image to bind SSH service.<ROOT-PASSWORD>: [string] Define the root password for the Image.<PLAYER-PASSWORD>: [string] Define the player password for the Image.
After cloning the repository, execute the following command inside the project directory to build the image:
docker build -t kalibox ./kaliboxOnce you build the image you can run it using:
docker run -d -p <HOST-PORT>:22 kalibox <ROOT-PASSWORD> <PLAYER-PASSWORD> <HOST-PORT>: [number] Define the host port for the Image to bind SSH service.<ROOT-PASSWORD>: [string] Define the root password for the Image.<PLAYER-PASSWORD>: [string] Define the player password for the Image.
You can use docker compose to build a network stack with KaliBox and a WSS Proxy in the same network and interact with them through the terminal and WS client scripts respectively. Execute the following command inside the project directory to start the network:
docker compose upTo connect to KaliBox container, use one of the following methods:
-
Command Prompt: Open a command prompt and enter the following command:ssh -p <HOST-PORT> player@localhost Password: <PLAYER-PASSWORD>
⚠️ If there is an entry for[localhost]:<HOST-PORT>inside /.ssh/known_hosts go ahead and delete it, if you don't you will get a warning that the remote host identification has changed and you won't be allowed to connect. This happens because everytime the container restarts, unless reconfigured, it generates new SSH key pairs. -
NodeJs Terminal: Inside the terminal specify the correct host, port and credentials in the config object.You can then execute the following command inside the project directory to open a virtual ssh terminal into KaliBox:npm run terminal -
Socket.io Server: For the WSS Proxy server you can specify the port of the server inside the server file (default: 3000), then inside the project directory execute the following script:npm run devYou can build and run the WSS Proxy with the following command:
npm run startAfter ther server has started you can the use the WS client inside the client file to get an interactive shell, by executing the following script:
npm run client
Once you are connected to KaliBox be sure to change the initial configurations of init.sh in the container's /box directory. Here's an example how to change the root password, persist it through container restarts and disable ssh key generation:
player@<CONTAINER-ID>:~$ su root
Password:<ROOT-PASSWORD>
root@<CONTAINER-ID>:~$[/home/player] echo "root:<NEW-PASSWORD>" | chpasswd
root@<CONTAINER-ID>:~$[/home/player] cd /box
root@<CONTAINER-ID>:~$[/box] nano init.sh #!/bin/bash
apt-get update
# - - - - - - - - - -
### *** Access Config ***
echo "[*] Access Configuration Setup"
### Remove comment on commands to enable Access configurations
### Change root password
# echo "root:$1" | chpasswd <-- COMMENT OUT THIS TO PERSIST LATEST ROOT PASS
.
.
### Generate new SSH keys
# dpkg-reconfigure openssh-server <-- COMMENT OUT THIS TO DISABLE SSH KEYGEN
.
.