diff options
| author | heqnx <root@heqnx.com> | 2025-05-29 19:59:55 +0300 |
|---|---|---|
| committer | heqnx <root@heqnx.com> | 2025-05-29 19:59:55 +0300 |
| commit | 05d7102d6afa2d255926a3f4169176dd406c9cd3 (patch) | |
| tree | b04c4f7ded1e136aa3e04e94e57fe7a8c0df659c | |
| parent | b8f1d76bd38d03e68fbc51f8e7340a9963a4104d (diff) | |
| download | ansible-playbooks-05d7102d6afa2d255926a3f4169176dd406c9cd3.tar.gz ansible-playbooks-05d7102d6afa2d255926a3f4169176dd406c9cd3.zip | |
| -rw-r--r-- | playbook.yaml.example | 15 | ||||
| -rw-r--r-- | roles/attackbox/tasks/apt_packages.yaml | 3 | ||||
| -rw-r--r-- | roles/attackbox/tasks/chrome_install.yaml | 1 | ||||
| -rw-r--r-- | roles/icewm/tasks/main.yaml | 1 | ||||
| -rw-r--r-- | roles/sliver-c2/tasks/apt_install.yaml | 3 | ||||
| -rw-r--r-- | roles/ssh-nginx-multiplex/tasks/ssh_nginx_setup.yaml | 1 | ||||
| -rw-r--r-- | roles/tigervnc/tasks/main.yaml | 1 | ||||
| -rw-r--r-- | roles/tor/tasks/ssh_hidden_service.yaml | 6 | ||||
| -rw-r--r-- | roles/tor/tasks/tor_install.yaml | 1 | ||||
| -rw-r--r-- | roles/xrdp/tasks/main.yaml | 1 |
10 files changed, 23 insertions, 10 deletions
diff --git a/playbook.yaml.example b/playbook.yaml.example index 13308d8..07f4806 100644 --- a/playbook.yaml.example +++ b/playbook.yaml.example @@ -12,21 +12,26 @@ hosts: server01 become: true roles: - - harden - - tor - attackbox + - harden + - icewm - sliver-c2 - ssh-nginx-multiplex - ssh-port-fwd-user - - icewm + - tigervnc + - tor - xrdp #- name: setup server02 # hosts: server02 # become: true # roles: -# - harden -# - tor # - attackbox +# - harden +# - icewm # - sliver-c2 # - ssh-nginx-multiplex +# - ssh-port-fwd-user +# - tigervnc +# - tor +# - xrdp diff --git a/roles/attackbox/tasks/apt_packages.yaml b/roles/attackbox/tasks/apt_packages.yaml index 8910e04..3e118bc 100644 --- a/roles/attackbox/tasks/apt_packages.yaml +++ b/roles/attackbox/tasks/apt_packages.yaml @@ -2,4 +2,5 @@ apt: name: "{{ apt_packages }}" state: present - update_cache: true
\ No newline at end of file + update_cache: true + cache_valid_time: 86400 diff --git a/roles/attackbox/tasks/chrome_install.yaml b/roles/attackbox/tasks/chrome_install.yaml index a237b81..1bf272f 100644 --- a/roles/attackbox/tasks/chrome_install.yaml +++ b/roles/attackbox/tasks/chrome_install.yaml @@ -16,6 +16,7 @@ - name: update apt cache apt: update_cache: true + cache_valid_time: 86400 - name: install google chrome apt: diff --git a/roles/icewm/tasks/main.yaml b/roles/icewm/tasks/main.yaml index 7e6987d..d4738fc 100644 --- a/roles/icewm/tasks/main.yaml +++ b/roles/icewm/tasks/main.yaml @@ -9,6 +9,7 @@ - thunar state: present update_cache: true + cache_valid_time: 86400 - name: copy system-wide icewm config files copy: diff --git a/roles/sliver-c2/tasks/apt_install.yaml b/roles/sliver-c2/tasks/apt_install.yaml index 8910e04..3e118bc 100644 --- a/roles/sliver-c2/tasks/apt_install.yaml +++ b/roles/sliver-c2/tasks/apt_install.yaml @@ -2,4 +2,5 @@ apt: name: "{{ apt_packages }}" state: present - update_cache: true
\ No newline at end of file + update_cache: true + cache_valid_time: 86400 diff --git a/roles/ssh-nginx-multiplex/tasks/ssh_nginx_setup.yaml b/roles/ssh-nginx-multiplex/tasks/ssh_nginx_setup.yaml index 75a790c..4f614f3 100644 --- a/roles/ssh-nginx-multiplex/tasks/ssh_nginx_setup.yaml +++ b/roles/ssh-nginx-multiplex/tasks/ssh_nginx_setup.yaml @@ -8,6 +8,7 @@ - ufw state: present update_cache: true + cache_valid_time: 86400 - name: deploy index.html template: diff --git a/roles/tigervnc/tasks/main.yaml b/roles/tigervnc/tasks/main.yaml index a6c930d..edd3862 100644 --- a/roles/tigervnc/tasks/main.yaml +++ b/roles/tigervnc/tasks/main.yaml @@ -6,6 +6,7 @@ - autocutsel state: present update_cache: true + cache_valid_time: 86400 - name: deploy vnc-server script to /usr/local/bin copy: diff --git a/roles/tor/tasks/ssh_hidden_service.yaml b/roles/tor/tasks/ssh_hidden_service.yaml index e757aa1..d2415f2 100644 --- a/roles/tor/tasks/ssh_hidden_service.yaml +++ b/roles/tor/tasks/ssh_hidden_service.yaml @@ -84,7 +84,7 @@ fetch: src: /root/.ssh/id_ed25519_onion dest: "./{{ onion_address }}/{{ onion_address }}_id_ed25519" - flat: yes + flat: true - name: set correct permissions on fetched hidden service private key file: @@ -96,13 +96,13 @@ fetch: src: /root/.ssh/id_ed25519_onion.pub dest: "./{{ onion_address }}/{{ onion_address }}_id_ed25519.pub" - flat: yes + flat: true - name: fetch hidden service private key fetch: src: "/var/lib/tor/ssh/hs_ed25519_secret_key" dest: "./{{ onion_address }}/hs_ed25519_secret_key" - flat: yes + flat: true mode: '0600' - name: generate onion-specific ssh config snippet diff --git a/roles/tor/tasks/tor_install.yaml b/roles/tor/tasks/tor_install.yaml index 3a053e6..f1fc92f 100644 --- a/roles/tor/tasks/tor_install.yaml +++ b/roles/tor/tasks/tor_install.yaml @@ -9,6 +9,7 @@ - netcat-openbsd state: present update_cache: true + cache_valid_time: 86400 - name: check if /etc/tor/torrc exists stat: diff --git a/roles/xrdp/tasks/main.yaml b/roles/xrdp/tasks/main.yaml index ce89dd5..6b092c8 100644 --- a/roles/xrdp/tasks/main.yaml +++ b/roles/xrdp/tasks/main.yaml @@ -7,6 +7,7 @@ - tigervnc-standalone-server state: present update_cache: true + cache_valid_time: 86400 - name: configure polkit rules for xrdp sessions copy: |