MISP-maltego/Dockerfile

# Install MISP-maltego remote transform as docker image.
#
# DO NOT USE THIS UNLESS YOU REALLY KNOW YOU NEED THIS
# - Most people usually probably want to use the local transforms 
# - Others the 'ATT&CK - MISP' form the Transform Hub 
#
# To build: "docker build MISP-maltego -t misp-maltego"
# To run: "docker run -p 8080:8080/tcp misp-maltego" if you want to run and enable portforwarding
# To stop: "docker ps" and "docker stop <instance_name>"
#
# Then configure your iTDS server 
# - to create all the transforms and seeds and point to your docker.
# - export the objects, icons and machines to a mtz and associate to the seed
#   Paired Configurations:
#   - in Maltego > Export Config, and select
#   -- Entities > MISP
#   -- Icons > MISP + intelligence icons
#   -- Machines
#   Save as "paired_config.mtz", upload on TDS


# TODO 
# - run the service with TLS, but that makes stuff more complex to automate

FROM python:3

RUN pip install PyMISP canari

# keep this for normal install
RUN pip install MISP-maltego

# use this for install from your own local git repo
# - first run "python setup.py sdist" to build the package
# - change the version number below
#COPY dist/MISP_maltego-1.4.1.tar.gz /usr/local/src/
#RUN pip install /usr/local/src/MISP_maltego-1.4.1.tar.gz

ENV LC_ALL='C.UTF-8'
ENV LANG='C.UTF-8'
ENV PLUME_ROOT='/var/plume'
RUN addgroup nobody
RUN canari install-plume --accept-defaults
RUN canari load-plume-package MISP_maltego --plume-dir /var/plume --accept-defaults

EXPOSE 8080/tcp

CMD ["/etc/init.d/plume", "start-docker"]
new: [install] docker and ansible scripts for remote transform server 2020-01-11 21:55:11 +01:00			`# Install MISP-maltego remote transform as docker image.`
			`#`
			`# DO NOT USE THIS UNLESS YOU REALLY KNOW YOU NEED THIS`
			`# - Most people usually probably want to use the local transforms`
			`# - Others the 'ATT&CK - MISP' form the Transform Hub`
			`#`
			`# To build: "docker build MISP-maltego -t misp-maltego"`
			`# To run: "docker run -p 8080:8080/tcp misp-maltego" if you want to run and enable portforwarding`
			`# To stop: "docker ps" and "docker stop <instance_name>"`
			`#`
			`# Then configure your iTDS server`
			`# - to create all the transforms and seeds and point to your docker.`
			`# - export the objects, icons and machines to a mtz and associate to the seed`
			`# Paired Configurations:`
			`# - in Maltego > Export Config, and select`
			`# -- Entities > MISP`
			`# -- Icons > MISP + intelligence icons`
			`# -- Machines`
			`# Save as "paired_config.mtz", upload on TDS`


			`# TODO`
			`# - run the service with TLS, but that makes stuff more complex to automate`

			`FROM python:3`

			`RUN pip install PyMISP canari`

			`# keep this for normal install`
fix: [docker] default to pip and not local code 2020-01-11 22:07:38 +01:00			`RUN pip install MISP-maltego`
new: [install] docker and ansible scripts for remote transform server 2020-01-11 21:55:11 +01:00
			`# use this for install from your own local git repo`
			`# - first run "python setup.py sdist" to build the package`
			`# - change the version number below`
fix: [docker] default to pip and not local code 2020-01-11 22:07:38 +01:00			`#COPY dist/MISP_maltego-1.4.1.tar.gz /usr/local/src/`
			`#RUN pip install /usr/local/src/MISP_maltego-1.4.1.tar.gz`
new: [install] docker and ansible scripts for remote transform server 2020-01-11 21:55:11 +01:00
			`ENV LC_ALL='C.UTF-8'`
			`ENV LANG='C.UTF-8'`
			`ENV PLUME_ROOT='/var/plume'`
			`RUN addgroup nobody`
			`RUN canari install-plume --accept-defaults`
			`RUN canari load-plume-package MISP_maltego --plume-dir /var/plume --accept-defaults`

			`EXPOSE 8080/tcp`

			`CMD ["/etc/init.d/plume", "start-docker"]`