All-in-one Docker-based workstation with hacking tools for Pentesting and offsec Labs, maintained by @Fenrir.pro.
Based on Alpine Linux, Vulpes is clutter-free, lightweight, and perfect for penetration testing, local training, workshops, and online classes on hack.courses.
We needed an efficient, hacking-oriented OS with a minimal CPU/RAM/storage footprint for on-demand online workstations. Unlike bulky systems like Kali and Ubuntu that take 20~30 minutes to set up, Vulpes deploys in under 20 seconds on Windows!
So, here's Vulpes! Oh, also, we added encryption of (potentially) hidden volumes in files with LUKS!
PS> docker-compose -f docker-compose-win-novnc.yml up$> docker-compose -f docker-compose-unix-novnc.yml upOnce built (usually in 10 to 20 seconds), access Vulpes in your browser:
- Locally: http://127.0.0.1:8080/?path=127.0.0.1:6080
- On a server/remote machine: http://YOUR_SERVER_IP:8080/?path=YOUR_SERVER_IP:6080
IMPORTANT: The default configuration exposes ports 8000 (noVNC web interface), 6080 (websockify), and 5900 (VNC) on 0.0.0.0. Ensure you trust machines on your local network (or change this setting) and change the default VNC password (currently CHANGEME) in the docker-compose-win-novnc.yml file.
Using the VNC client of your choice, open the port 5900 (or ither if specified in your docker-compose file) on your local IP address, and voilà!
- Keep the distribution lightweight, ensuring it builds in under a minute with a standard network connection.
- Integrate all tools needed for our training sessions.
- Wireshark
- nmap
- radare2
- netcat
- socat
- John the Ripper
Scripts are provided for easy installations of:
- Metasploit Framework
- CrackMapExec
- Villain (C2)
- BurpSuite Community Edition
- dirb
- nuclei
- shellGPT
- sqlmap
- ffuf
- Metasploit Framework
And more!
Dive in and hack away! 🚀