From bc2201284626a84a8b921a443d4cacc858ad4231 Mon Sep 17 00:00:00 2001
From: Ondrej Hladuvka <ondrej.hladuvka@gmail.com>
Date: Wed, 21 May 2025 21:21:06 +0300
Subject: [PATCH] cviko auth

---
 auth/Dockerfile           |  40 ++++++++++++++++++++++++++++++++++++++
 auth/apache_config.sh     |  38 ++++++++++++++++++++++++++++++++++++
 auth/keepass_crack.sh     |   4 ++++
 auth/password_crack.sh    |   3 +++
 auth/steve_passwords.kdbx | Bin 0 -> 1646 bytes
 5 files changed, 85 insertions(+)
 create mode 100644 auth/Dockerfile
 create mode 100644 auth/apache_config.sh
 create mode 100644 auth/keepass_crack.sh
 create mode 100644 auth/password_crack.sh
 create mode 100644 auth/steve_passwords.kdbx

diff --git a/auth/Dockerfile b/auth/Dockerfile
new file mode 100644
index 0000000..de5cb3b
--- /dev/null
+++ b/auth/Dockerfile
@@ -0,0 +1,40 @@
+FROM ubuntu:20.04
+
+ENV DEBIAN_FRONTEND=noninteractive
+
+RUN apt-get update && \
+    apt-get install -y build-essential git libssl-dev && \
+    #git clone https://github.com/openwall/john -b bleeding-jumbo john-jumbo && \
+    #cd john-jumbo/src && \
+    #./configure && \
+    #make -sj 12 && \
+    #ln -s /john-jumbo/run/keepass2john /usr/local/bin/keepass2john && \
+    cd / && \
+    #add-apt-repository ppa:eugenesan/ppa && apt update && apt-get install keepass2 && \
+    apt-get install -y \
+    wget \
+    apache2 \
+    openssl \
+    john \
+    hydra \
+    libssl-dev \
+    keepass2 \
+    build-essential \
+    keepass2 \
+    && apt-get clean
+
+RUN wget https://github.com/brannondorsey/naive-hashcat/releases/download/data/rockyou.txt -O /rockyou.txt
+
+COPY password_crack.sh /opt/password_crack.sh
+COPY keepass_crack.sh /opt/keepass_crack.sh
+COPY apache_config.sh /opt/apache_config.sh
+COPY steve_passwords.kdbx /opt/steve_passwords.kdbx
+
+RUN chmod +x /opt/*.sh
+
+RUN mkdir -p /var/www/web.ssb && echo "<h1>Hello world</h1>" > /var/www/web.ssb/index.html
+
+RUN /opt/apache_config.sh
+
+CMD ["bash"]
+
diff --git a/auth/apache_config.sh b/auth/apache_config.sh
new file mode 100644
index 0000000..cb3d077
--- /dev/null
+++ b/auth/apache_config.sh
@@ -0,0 +1,38 @@
+#!/bin/bash
+APACHE_CONF="/etc/apache2/sites-available/000-default.conf"
+
+a2enmod ssl
+a2ensite default-ssl
+
+mkdir -p /etc/apache2/ssl
+openssl req -x509 -nodes -days 365 -newkey rsa:2048 \
+    -keyout /etc/apache2/ssl/apache.key \
+    -out /etc/apache2/ssl/apache.crt \
+    -subj "/C=US/ST=State/L=City/O=Organization/OU=Unit/CN=wev.ssb"
+
+echo '
+<VirtualHost *:443>
+    ServerAdmin admin@localhost
+
+    DocumentRoot /var/www/web.ssb
+    ServerName web.ssb
+    ServerAlias www.web.ssb
+    SSLEngine on
+    SSLCertificateFile /etc/apache2/ssl/apache.crt
+    SSLCertificateKeyFile /etc/apache2/ssl/apache.key
+    ErrorLog ${APACHE_LOG_DIR}/error.log
+    CustomLog ${APACHE_LOG_DIR}/access.log combined
+
+    <Directory "/var/www/web.ssb">
+        AuthType Basic
+        AuthName "Restricted Content"
+        AuthUserFile /etc/apache2/.htpasswd
+        Require valid-user
+    </Directory>
+</VirtualHost>
+' > $APACHE_CONF
+
+htpasswd -cb /etc/apache2/.htpasswd test admin 
+
+service apache2 restart
+
diff --git a/auth/keepass_crack.sh b/auth/keepass_crack.sh
new file mode 100644
index 0000000..f5e7fdf
--- /dev/null
+++ b/auth/keepass_crack.sh
@@ -0,0 +1,4 @@
+#!/bin/bash
+
+john --wordlist=/rockyou.txt <(keepass2john /opt/steve_passwords.kdbx)
+
diff --git a/auth/password_crack.sh b/auth/password_crack.sh
new file mode 100644
index 0000000..7e8ae37
--- /dev/null
+++ b/auth/password_crack.sh
@@ -0,0 +1,3 @@
+#!/bin/bash
+john --fork=8 --wordlist=/rockyou.txt --format=crypt <(echo '$1$randsalt$1FzqFfQs5tCdStIZl215/.')
+
diff --git a/auth/steve_passwords.kdbx b/auth/steve_passwords.kdbx
new file mode 100644
index 0000000000000000000000000000000000000000..38ca904a1825c8ea6a9e8500821bd6cd9f81d374
GIT binary patch
literal 1646
zcmV-!29fy#*`k_f`%AR}00RI55CAd3^5(yBLr}h01tDtuTK@wC0096100bZaCecJ(
zU~0{d4~3g%YqkKKgHNV(?F&!7Df|9re~H%J1t0*=*;i$>cUYVO49C+=B?!BMNT`3l
zi7T2(p_`>+#UF+S2mk>900000000LN0JRiug$_Du1`t$TE+Ijho(LcSkLT{0Q24*q
zxJtL(#y6LD;wmeJwat7EWW2^8$3~Ts2_OJ9dhu}$K4T}Gn+=zw6epmc98cX3L&;wX
zRoLuwVKOBO1ONg60000401XNa3V#b~X<==c{%W7Q;5<e6*rvxC-UW`?iR!GfA7+BT
zK4UlFT8DA296=L=K46?odTSUfQMfqD-w2xa@kW0&nFgP&b*l}T%eaJV_dH!T{=5s-
z3GB_Fqy1N(z0*NG@WeVlFTg*?yF=;z8>Oo<vS4_`xvlE$FX~x*%?n+`K4#v*Wr3-A
zg{1c^uG8i@xX-gNVu?;g1)Yitm{V#_N(EX>eI`V%-?BKaFS1V{{r5qzrTrJaXW`?=
zF9rq~QZ#;d`Sp=y$mZ~YXs;OFPW7U=<!4Cc08*>hFfa3s3!VZUfCa~|!j<Rq)`wrY
zj08DX@i@@!zz*7=+|WE;8L@#Rne_YWwg*F4lRItIFM4ocN3+UP6j~h04r8slFIIX!
z(EI@Ksk-!kv4xx>7?x8VkIj}`q@Yk*9G90?kyTj9Cp8dG`^xz`+4AvUsnnG=-=D6E
zyW*{py)=60FNB3<?agR$E$w;ux~qCaJ+!+*#J>Jd4%i~>pbcKYs7fX4O1OpXwWd=B
zxW3?G=no}JshHM^5dWvs-={!rAmFwj^La7P5!lQWgNH@a?qCdNV&4G!6C5HdXLO)e
z(XX{RH3K=I1}stLnee{j)_-ZpX76O6+1uvR5P9Q9w7Y_$rK2|mCfwUy$=x67)(ic<
z>C@xgd2u;<AHcz)JHqjd$3oGKdkpxw3>l-e)IHm*OqrEt2-n2V_wp-Rb_ZkPvP=$>
zvKo(XCAB>t`k&LUE>k(`^Lqg-I``-x;?wB7)hjf5JT)bg%`nUsX9UtOcnba|Sx3bj
z2BS9Lt#MMX(>;8W9icj=@anj*$iUmrg8tB5Uk4QI@zHlO-wWg4LHz-Dhfxy>^;ay|
zZB!YvoY`a`T)~b&=*8vGJF3H->o`snEdW#i)@L|o5*UJ+7-z5IG3*kDBHSP~WKkvA
zGLU%ZsguOx84*+qEkRqxIM}UYEidvSqc1p<bMuFq{<}jCa)-1drSFMDBVhAte%gF)
zF)Hl6e5FnwII#QhrxK@A?hH8{{>NOtzeHR*ao2LUeMxLZPdEPaz)qW)G-apa8mai<
z6-b~~h$Kf*{P;aizZ)DuYRW+x{dV)3(?L!f$j*9LKom5>NW7ZcmiPZhc$s6I2SZ}`
zW$Yyw-{o@YpNmR+*%7Gw11#8fMt}QuZ>0bFxCxstNPWpGF}^a-bCFeyLBKJtzVfi{
zdcHfS$w5afp&#bPj8>nt=iNxj)6;lUCX5p5baBT=#`1`6djdlcIvm^(Ipmc)fFxP%
zGu^G2WEnTrz0t|pbl--!#}InRYPIg9)ukNu<KoYs2?k4fyX;IZ52I?zB(8$Qw)KGY
z9rsRT9=alG-3I>}+LEzYBi*y;LY52LBcaM;s1<HWEMh@!V5odL))GC_^(FLqxbYtj
z`oWdN?g$=*i}X=&l9yvkd`^v19!#o6GV)qEAZ{hb77Oq&(swInD8KozzjxPZ8LP}8
z7U7tD*XATDe#CfZ?dtI^l2mONmk1WC9^I1MTn3l@PwHB^rrN?BVP@H3BE-0pyv0p0
zFk#z^4J~^8>N#n4ge}Sr#`1=jVh>>0?<&$BQ%W!MJFl5J5-WU9pR}?)ab7k65Pe>K
zNK6_dDP519*cKJJV1&@{&Hz6Yo>s0t<o;H}haz8{r#`b^8b-{mv^iWZ6DFm07H&ba
z72iPkL2Sts39A)}|14`YSJYGM)}~6o%MRHGk8{lB?@0~L8v&h0d~o3Rax1xp!1AO<
zWI>EsvXdoKH_$CoA|Lz`-$*pY*C8Jr+!{Py=zZwaD_q1hR2UJRgvm%=8L%GjuTOfI
s%ewq5xp@t<lJ6~izt4Dqh?u9i{8*EkIjQhGIN_rn8$%|6Zngmr)=eTJ8UO$Q

literal 0
HcmV?d00001