Pre-Built Vulnerable Environments Based on Docker-Compose: VulHub

By /

Listen to this Post

VulHub is a collection of pre-built vulnerable environments designed for security testing, penetration testing, and red team/blue team exercises. These environments are based on Docker-Compose, making them easy to deploy and use for practicing exploits, vulnerability research, and security hardening.

GitHub Repository:

VulHub – Pre-Built Vulnerable Environments

You Should Know:

1. Setting Up VulHub

To get started with VulHub, you need Docker and Docker-Compose installed.

Install Docker on Linux:

sudo apt update 
sudo apt install docker.io docker-compose 
sudo systemctl enable --now docker

Clone VulHub Repository:

git clone https://github.com/vulhub/vulhub.git 
cd vulhub

2. Running a Vulnerable Environment

VulHub contains multiple CVEs and vulnerable apps. For example, to run a vulnerable WordPress instance:

cd wordpress/CVE-2017-8295 
docker-compose up -d

Access the environment at `http://localhost:8080`.

3. Exploiting Vulnerabilities

Once the environment is running, you can practice exploits. For instance, testing SQL injection on a vulnerable web app:

sqlmap -u "http://localhost:8080/vuln-page?id=1" --dbs

4. Analyzing Network Traffic

Use `tcpdump` to monitor Docker network traffic:

sudo tcpdump -i docker0 -w vuln-traffic.pcap

5. Stopping and Cleaning Up

After testing, shut down the environment:

docker-compose down 
docker system prune -f

What Undercode Say:

VulHub is an excellent resource for cybersecurity professionals to practice real-world exploits in a controlled environment. By using Docker, it simplifies deployment and ensures isolation. Key takeaways:
– Always test exploits in a lab before real-world assessments.
– Use network monitoring tools like Wireshark (wireshark vuln-traffic.pcap) to analyze attacks.
– Familiarize yourself with common Linux commands (netstat -tulnp, ss -lntp) for system analysis.
– For Windows testing, use PowerShell commands like `Test-NetConnection` or Get-NetTCPConnection.

Expected Output:

A fully functional vulnerable environment where you can safely practice penetration testing techniques without risking real systems.

Would you like additional details on a specific CVE or exploitation technique? Let me know!

References:

Reported By: Florian Hansemann – Hackers Feeds
Extra Hub: Undercode MoN
Basic Verification: Pass ✅

Join Our Cyber World:

💬 Whatsapp | 💬 TelegramFeatured Image

Related Posts: