{"id":13788258,"url":"https://github.com/iknowjason/AriaCloud","last_synced_at":"2025-05-12T02:33:23.127Z","repository":{"id":53027716,"uuid":"277958698","full_name":"iknowjason/AriaCloud","owner":"iknowjason","description":"A Docker container for remote penetration testing.","archived":false,"fork":false,"pushed_at":"2021-03-16T19:33:00.000Z","size":23312,"stargazers_count":131,"open_issues_count":0,"forks_count":27,"subscribers_count":10,"default_branch":"master","last_synced_at":"2024-07-27T14:33:18.367Z","etag":null,"topics":["cloud-security","docker-container","kali-linux","penetration-testing"],"latest_commit_sha":null,"homepage":"","language":"HCL","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/iknowjason.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2020-07-08T01:22:00.000Z","updated_at":"2024-05-31T11:57:39.000Z","dependencies_parsed_at":"2022-08-28T13:31:12.109Z","dependency_job_id":null,"html_url":"https://github.com/iknowjason/AriaCloud","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/iknowjason%2FAriaCloud","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/iknowjason%2FAriaCloud/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/iknowjason%2FAriaCloud/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/iknowjason%2FAriaCloud/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/iknowjason","download_url":"https://codeload.github.com/iknowjason/AriaCloud/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":213856344,"owners_count":15648199,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["cloud-security","docker-container","kali-linux","penetration-testing"],"created_at":"2024-08-03T21:00:40.822Z","updated_at":"2024-08-03T21:02:01.540Z","avatar_url":"https://github.com/iknowjason.png","language":"HCL","funding_links":[],"categories":["Resources","Pentesting"],"sub_categories":["Lab Exercises","ARM"],"readme":"# Aria Cloud Overview\nAria Cloud Penetration Testing Tools Container.  **Aria Cloud** is a Docker Container ideal for remote pentesting over SSH or RDP, with a primary emphasis on cloud security tools and secondary on Active Directory tools.  Use it for an assumed breach pentest where remote access is necessary via RDP or SSH, or for simple AD lab testing.  It is built for use cases where one needs to remote into a container using SSH or RDP, and then run their security workflows (i.e., Cloud environments).  This repo also included an automated Terraform template + Ansible Playbook to deploy Aria Cloud as a container running on an Ubuntu Linux VM, with remote access over RDP. \n\nMedium Blog:  https://medium.com/bugbountywriteup/pentesting-in-the-clouds-introducing-ariacloud-58cb5cc1c50d\n\n\n# Summary of Tools (Image Built on Kali Linux Rolling)\n* Metapackages:  kali-linux-core, kali-linux-top10, kali-desktop-core\n* xRDP and SSH (for remote access)\n* socat, powershell 7, smbclient\n* AWS cli tools (aws, s3cmd)\n* Azure cli tools (az)\n* Google Cloud Platform cli tool (gcloud, kubectl)\n* ROADTools (https://github.com/dirkjanm/ROADtools)\n* Stormspotter (https://github.com/Azure/Stormspotter)\n* ScoutSuite (https://github.com/nccgroup/ScoutSuite)\n* Cloud_Enum (https://github.com/initstring/cloud_enum)\n* cloudmapper (https://github.com/duo-labs/cloudmapper)\n* Bucket Stream (https://github.com/eth0izzle/bucket-stream)\n* Pacu (https://github.com/RhinoSecurityLabs/pacu)\n* WeirdAAL (https://github.com/carnal0wnage/weirdAAL)\n* evil-winrm (https://github.com/Hackplayers/evil-winrm)\n* Impacket Python library and tools (https://github.com/SecureAuthCorp/impacket)\n* Neo4j (https://neo4j.com/)\n* Bloodhound (https://github.com/BloodHoundAD/BloodHound)\n* Plumhound (https://github.com/DefensiveOrigins/PlumHound)\n* Fox-IT Bloodhound-python data ingestor (https://github.com/fox-it/BloodHound.py)\n* gitleaks (https://github.com/zricethezav/gitleaks)\n* shhgit (https://github.com/eth0izzle/shhgit)\n* gitrob (https://github.com/michenriksen/gitrob)\n* Trufflehog (https://github.com/dxa4481/truffleHog)\n* detect-secrets (https://github.com/Yelp/detect-secrets)\n* Rubeus (https://github.com/GhostPack/Rubeus)\n* Mimikatz (https://github.com/gentilkiwi/mimikatz)\n\n# Terraform Automated Deployment\n\nThis repo now includes a Terraform template and Ansible Playbook that automatically deploys Aria Cloud into an Azure VM with remote access over RDP.  For more information, navigate into the **terraform-azure** directory and see the README.\n\n\n# Default Credentials\n\n**Username:**  aria\n\n**Password:**  !aria123!\n\n**Default Tools Directory** Most special tools are installed into **/opt** directory if they aren't in the default /usr/local/bin/ path\n\n# 3 Docker Containers:  3 Potential Use Cases\n**Use Case #1:**  aria-base:  Attach to /bin/bash local console, and do your thing.\n\n**Use Case #2:**  aria-rdp:  Use an RDP client to remotely access the container.  Best for running Bloodhound and other tools that require Neo4j GUI.\n\n**Use Case #3:**  aria-ssh:  Use an SSH client to remotely access the container.\n\n# Base Image Use Case:  Build or Pull, and then Run \n\n**Pre-requisite:** Install docker for your system\n\n**Quickly run it with docker pull:** \n\n```\ndocker pull iknowjason/aria-base:latest\n```\nRun it!\n```\ndocker run -ti iknowjason/aria-base:latest\n```\n\nYou can get the IMAGE_ID with **docker images** command\n\n**Build \u0026 Run It** \n\nClone this repo:\n\n```\ngit clone https://github.com/iknowjason/AriaCloud.git\ncd AriaCloud\n```\nBuild:\n```\ndocker build -f Dockerfile.base -t aria .\n```\nRun:\n```\ndocker run -ti aria\n```\n\n# RDP Container Use Case:  Build or Pull, and then Run \n\n**Quickly run it with docker pull:** \n\n```\ndocker pull iknowjason/aria-rdp:latest\n```\n\nBind the RDP ports from the docker container to expose them on the LAN interface of the host computer\n\n```\ndocker run -d --name myname -p 3389:3389 iknowjason/aria-rdp:latest\n```\n\nYou can get the IMAGE_ID with **docker images** command\n\nVerify ports:\n```\ndocker port myname\n```\nNow RDP to your Host computer's IP address on port 3389.\n\n**Build \u0026 Run It** \n\nClone this repo:\n```\ngit clone https://github.com/iknowjason/AriaCloud.git\ncd AriaCloud\n```\nBuild:\n```\ndocker build -f Dockerfile.rdp -t aria .\n```\nRun:\n```\ndocker run -d --name myname -p 3389:3389 aria\n```\n\n# SSH Container Use Case:  Build or Pull, and then Run \n\n**Quickly run it with docker pull:** \n```\ndocker pull iknowjason/aria-ssh:latest\n```\nBind the SSH ports from the docker container to expose them on the LAN interface of the host computer\n```\ndocker run -d --name myname -p 22:22 iknowjason/aria-ssh:latest\n```\nYou can get the IMAGE_ID with **docker images** command\n\nVerify ports:\n```\ndocker port myname\n```\nNow SSH to your Host computer's IP address on port 22.\n\n**Build \u0026 Run It** \n\nClone this repo:\n```\ngit clone https://github.com/iknowjason/AriaCloud.git\ncd AriaCloud\n```\nBuild:\n```\ndocker build -f Dockerfile.ssh -t aria .\n```\nRun:\n```\ndocker run -d --name myname -p 22:22 aria\n```\n\n# To Do\n* Fix small errors after RDP connection and auth success\n* Fix MacOS RDP client black screen\n* Terraform template deployment for AWS\n* K8s tools\n\n# Hat Tips\n* Offensive Security team for Kali\n* All the other tool authors listed above\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fiknowjason%2FAriaCloud","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fiknowjason%2FAriaCloud","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fiknowjason%2FAriaCloud/lists"}