IoT固件漏洞复现环境
GPL-3.0 License
Vulhub IoT
Ubuntu 20.04 docker docker-compose
# pip
$ curl -s https://bootstrap.pypa.io/get-pip.py | python3
# docker
$ curl -s https://get.docker.com/ | sh
# docker
$ systemctl start docker
# docker-compose
$ python3 -m pip install docker-compose
#
$ wget https://github.com/VulnTotal-Team/IoT-vulhub/archive/master.zip -O iot-vulhub-master.zip
$ unzip iot-vulhub-master.zip && cd iot-vulhub-master
# ubuntu1604
$ cd baseImage/ubuntu1604 && docker build -t firmianay/ubuntu1604 .
# binwalk
$ cd baseImage/binwalk && docker build -t firmianay/binwalk .
#
$ cd D-Link/CVE-2019-17621
#
$ docker run --rm -v $PWD/firmware:/root/firmware firmianay/binwalk -Mer "/root/firmware/firmware.bin"
# arm/mips/mipsel
$ ./init_env.sh xxxx
#
$ docker-compose -f docker-compose-user.yml build # QEMU
$ docker-compose -f docker-compose-system.yml build # QEMU
$ docker-compose -f docker-compose-firmadyne.yml build # firmadyne
$ docker-compose -f docker-compose-firmae.yml build # firmae
#
$ docker-compose -f docker-compose-xxxx.yml up
#
#
$ docker-compose -f docker-compose-xxxx.yml down -v
Ctrl+A
X
/etc/init.d/xxxx start
-p 1234:22
ssh -D 2345 [email protected] -p 1234
127.0.0.1:2345
Burpsuite/PythonGNU General Public License v3.0