https://github.com/mobsf/rp4mobsf

a nginx reverse proxy with ssl and auth for MobSF
https://github.com/mobsf/rp4mobsf

Last synced: about 1 year ago
JSON representation

a nginx reverse proxy with ssl and auth for MobSF

• Host: GitHub
• URL: https://github.com/mobsf/rp4mobsf
• Owner: MobSF
• Created: 2018-01-17T13:36:45.000Z (over 8 years ago)
• Default Branch: master
• Last Pushed: 2020-03-05T16:59:46.000Z (over 6 years ago)
• Last Synced: 2025-04-27T10:06:44.494Z (about 1 year ago)
• Language: Shell
• Size: 31.3 KB
• Stars: 24
• Watchers: 3
• Forks: 13
• Open Issues: 1
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

          
# RP4MobSF

## a nginx reverse proxy with ssl and auth for MobSF

### This docker image will let you run a ssl reverse proxy with basic authentication in front of your mobsf 

### This image use nginx-extras to provide extra features

1) to build the image 

   * if you are behing a proxy 

     * docker build --no-cache --build-arg http_proxy=${http_proxy} --build-arg https_proxy=${https_proxy}  -t rp4mobsf:latest .

   * if not :

     * docker build --no-cache  -t rp4mobsf:latest . 

2) you have a run.sh you can customize for your need :

 > export CONF_DIR='/home/debian/nginx_mobsfv2/conf/conf.d'

 

 > export PKI_DIR='/home/debian/nginx_mobsfv2/conf/pki'

 

 > export AUTH_DIR='/home/debian/nginx_mobsfv2/conf/auth'

 

 > docker run -d \

 > -p 80:80 -p 443:443 \

 > -e 'DH_SIZE=512' \

 > -e 'FORWARD_HOST=172.17.0.2' \

 > -e 'FORWARD_PORT=8000' \

 > -v $CONF_DIR:/etc/nginx/conf.d:rw \

 > -v $PKI_DIR:/etc/nginx/pki:rw \

 > -v $AUTH_DIR:/etc/nginx/auth:ro \

 > --name rp4mobsf \

 > rp4mobsf:latest 

3) Parameters:

   * CONF_DIR is the path to your conf directory which contain configuration

   * PKI_DIR is the path to your directory containing the certificate

   * AUTH_DIR is the path to your directory containing your auth.htpasswd file (user/password file)

   * FORWARD_HOST is the @IP or FQDN or your MobSF server 

   * FORWARD_PORT is the port used to access MOBSF web interface

    

4) Default user :

   * Default user is foo password bar

5) Managing password 

* if you want to change or add user, you must use htpasswd binary to generate password and put the poassword in the auth.htppasswd file located in your conf directory 

  * syntax will be :

    * htpasswd -b ./conf/auth.htpasswd foo bar  (for user foo with password bar)

  * to install and use htpasswd on your system refer too : 

    * https://httpd.apache.org/docs/current/programs/htpasswd.html

    

6) Certificates 

  * if you already have certificates put it in conf/pki/  ($EXT_DIR/pki/)

  * if you don't have the image will create autosigned certificates

7) Custom

  * nginx will not send the nginx version in header

  * nginx will send a custom name not nginx in header

    * to change the value :

      * edit basic .conf and modify : more_set_headers "Server: MobSF RP";

  

 8) Variables

  * if you want upload a file bigger than 300M  you must modify client_max_body_size 300M; in auth.conf

  * by default you have a 10 minutes cache so  if you go to recent scan just after doing an analysis, you will not see it.

 

This image is based on:

MarvAmBass/docker-nginx-ssl-secure