Athena OS RDP Image
Athena OS container brings you to live a funny hacking experience in a containerized environment:
- Select your favourite InfoSec role between Bug Bounty Hunter, Red Teamer, OSINT Specialist and much more
- Play Hack The Box machines for improving your skills
- Explore more than 2800+ hacking tools retrievable by Arch Linux and BlackArch repositories
- Make your Capture The Flag or ethical hacking activity efficient
Click Docker icon above to explore Athena OS Docker containers!
Usage
Athena OS container has been developed in order to be run also by podman. The choice to use podman comes from its advantages over docker, one of most important: security.
According to your preference, install docker and docker-compose packages or podman package for your Linux environment.
In case you are using podman, edit /etc/containers/registries.conf and add:
[registries.search]registries = ['docker.io']in order to allow podman to search for images in Docker Hub.
Hack The Box API Token
Athena OS container allows you to learn and play on Hack The Box platform. It is possible to access to Hack The Box by using your App Token. Retrieve your App Token from the Hack The Box website in your Profile Settings.
Docker
You can run the container by docker-compose (recommended) or docker run.
docker-compose
The docker-compose.yml file should have the following content:
version: '3.4'
services: athena-rdp: image: athenaos/rdp cap_add: - cap_sys_admin - ipc_lock - net_admin cgroup: - host devices: - /dev/net/tun ports: - "127.0.0.1:23389:3389" - "127.0.0.1:8022:22" shm_size: '2gb' sysctls: - net.ipv6.conf.all.disable_ipv6=0 volumes: - /sys/fs/cgroup:/sys/fs/cgroup tmpfs: - /run - /tmp restart: unless-stoppedRun the container by:
sudo docker-compose run athena-rdpdocker run
docker run -ti \ --name athena-rdp \ --cap-add CAP_SYS_ADMIN \ --cap-add IPC_LOCK \ --cap-add NET_ADMIN \ --cgroupns=host \ --device /dev/net/tun \ --shm-size 2G \ --sysctl net.ipv6.conf.all.disable_ipv6=0 \ --volume /sys/fs/cgroup:/sys/fs/cgroup \ --publish 23389:3389 \ --publish 8022:22 \ --restart unless-stopped \ docker.io/athenaos/rdp:latestor
docker run -ti --name athena-rdp --cap-add CAP_SYS_ADMIN --cap-add IPC_LOCK --cap-add NET_ADMIN --cgroupns=host --device /dev/net/tun --shm-size 2G --sysctl net.ipv6.conf.all.disable_ipv6=0 --volume /sys/fs/cgroup:/sys/fs/cgroup --publish 23389:3389 --publish 8022:22 --restart unless-stopped docker.io/athenaos/rdp:latestIn case you exit the container and need to re-enter, run:
docker exec --user athena -ti athena-rdp /bin/zshIn case the container is not running, run:
docker start athena-rdpFor stopping the container, run:
docker stop athena-rdpFor deleting the container, run:
docker container rm athena-rdpPodman (Untested)
You can run the container by podman run.
podman run
podman run -ti \ --name athena-rdp \ --cap-add NET_RAW \ --cap-add NET_ADMIN \ --device /dev/net/tun \ --restart unless-stopped \ docker.io/athenaos/rdp:latestor
podman run -ti --name athena-rdp --cap-add NET_RAW --cap-add NET_ADMIN --device /dev/net/tun --restart unless-stopped docker.io/athenaos/rdp:latestPodman will automatically replicate /etc/hosts and /etc/hostname files of your host. For preventing this, add --no-hosts argument to the podman run command above.
In case you exit the container and need to re-enter, run:
podman exec --user athena -ti athena-rdp /bin/zshIn case the container is not running, run:
podman start athena-rdpFor stopping the container, run:
podman stop athena-rdpFor deleting the container, run:
podman container rm athena-rdpDefault Credentials
athena:athenaSetting HTB API Token
Once you retrieved your HTB API Token from your Hack The Box website profile settings, you can set the HTB API Token in two ways:
- By connecting by RDP to the GUI as explained in the next section, open terminal and run
htb-update(or clicking HTB Update button in Athena Welcome) - If you don’t want to connect to the GUI environment, run the following commands:
Terminal window sudo mkdir -p /run/secretssudo nano /run/secrets/htb-api<store your HTB API Token in htb-api file and save it>htb-play
Connect to the desktop by RDP
You should now be able to access your full-featured GNOME desktop using
the RDP client of your choice. For example, using Remmina along with the install of freerdp package:
remmina -c rdp://127.0.0.1:23389Remmina features
When you run Remmina, expand its window and on the left side press the Toggle dynamic resolution update icon button for automatically resizing the display.
For making the keyboard shortcut effective on the connected environment, on the left side press the Grab all keyboard events icon.
For copy and paste text from the host to the environment, copy a string, then, on the left side, click on Tools icon button and select Keystrokes and Send clipboard content as keystrokes.
Customizing and building the image
Clone this repository, edit Dockerfile and then run docker build as usual:
git clone https://github.com/Athena-OS/athena-rdp-docker.gitcd athena-rdp-dockerdocker build --tag 'custom-athena-rdp:latest' .Invalidating cache
Use --no-cache option:
docker build --tag 'custom-athena-rdp:latest' --no-cache .Deployment on Apple M1/M2
Download Docker Desktop, open it and go to Settings, then enable it (use Rosetta for x86/amd64 emulation on Apple Silicon):
In General, enable VirtueFS, then apply and restart:
Open Terminal and pull Athena OS container by using docker pull --platform linux/amd64 athenaos/rdp:latest for Athena OS RDP container.
Once pulled, run:
docker run -ti --name athena-rdp --cap-add CAP_SYS_ADMIN --cap-add IPC_LOCK --cap-add NET_ADMIN --cgroupns=host --device /dev/net/tun --shm-size 2G --sysctl net.ipv6.conf.all.disable_ipv6=0 --volume /sys/fs/cgroup:/sys/fs/cgroup --publish 23389:3389 --publish 8022:22 --restart unless-stopped docker.io/athenaos/rdp:latestLogin by using athena:athena credential.
To connect by RDP session, use Microsoft Remote Desktop Service, type 127.0.0.1:23389:
Save and connect to it.