blob: ec33c0d793bdc6f6e1cbad26e8b63707c536bcc9 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
|
# Ansible Playbooks
This repository contains a collection of Ansible roles and playbooks designed to automate the installation, configuration, hardening and deployment of various offensive security security tools and services.
> **WARNING**: These deployments are for **authorized security testing only**. Unauthorized use may violate laws and regulations. The author and contributors are not responsible for misuse. Always obtain explicit permission before testing any system.
## Roles Overview
### `roles/attackbox/` - Security tools and environment setup
- Installs various apt packages needed for security tooling.
- Installs Golang and sets environment variables.
- Installs a list of Go-based security tools.
- Clones useful GitHub repositories into `/opt/tools`.
- Installs Google Chrome browser.
### `roles/harden/` - System hardening and security measures
- Applies system hardening measures.
- Removes unwanted packages like snapd.
- Cleans system message files.
- Configures SSH daemon with hardened settings.
- Regenerates SSH host keys.
- Enables unattended upgrades.
- Configures and enables UFW firewall with deny policy.
- Deploys fail2ban configurations and reloads services.
- Disables IPv6 via GRUB.
### `roles/sliver-c2/` - Sliver C2 server setup
- Installs dependencies and Golang.
- Downloads and installs the latest Sliver C2 server.
- Sets up Sliver as a systemd service.
- Configures Sliver server and operator profiles.
### `roles/ssh-nginx-multiplex/` - SSH multiplexing proxy setup with Nginx
- Sets up an SSH multiplexing proxy with Nginx.
- Configures Nginx as a reverse proxy to tunnel SSH connections.
- Enables SSH multiplexing for better performance.
- Configures SSL and stream settings in Nginx for secure tunneling.
- Deploys necessary systemd services for SSH multiplexing.
- Provides a SSH access method over HTTP/S.
### `roles/tor/` - Tor installation and configuration
- Installs and configures the Tor service.
- Ensures Tor is routing traffic correctly.
## Usage
- Clone this repository onto your control machine.
- Run the appropriate playbook(s) targeting your hosts:
```
ansible-playbook -i inventory.yaml playbook.yml
```
## Requirements
- Ansible 2.9+
- Linux hosts with `systemd` service manager.
## License
This project is licensed under the GNU GENERAL PUBLIC LICENSE. See the LICENSE file for details.
## Disclaimer
This repository is provided "as is" without warranty. The author and contributors are not liable for any damages or legal consequences arising from its use. Use responsibly and only in authorized environments.
|