[try to hack] vulhub shooting range construction

Blog home page ： Happy star The blog home page of
Series column ：Try to Hack
Welcome to focus on the likes collection ️ Leaving a message.
Starting time ：2022 year 6 month 24 Japan
The author's level is very limited , If an error is found , Please let me know , thank ！

Vulhub It's based on docker and docker-compose A collection of vulnerability environments , Enter the corresponding directory and execute a statement to start a new vulnerability environment , Make it easier to replicate vulnerabilities , Let security researchers focus more on the vulnerability principle itself .

vulhub Official website ：https://vulhub.org/
docker Official documents ：https://docs.docker.com/engine/install/#server

1、apt-get update
apt-get update Update the list of all software in the source .
apt-get upgrade Update software .
apt-get dist-upgrade Update system version . If your need for a new version of software is not so urgent , It's OK not to execute

2、 Uninstall the old version of docker
sudo apt-get remove docker docker-engine docker.io containerd runc

Finished uninstalling docker 了

3、 install https Agreement and CA certificate
apt-get install -y apt-transport-https ca-certificates

I have already installed it

4、 install docker
apt install docker.io

5、docker -v

6、 start-up docker
systemctl start docker

7、 View the open environment
docker ps -a

8、 install pip3
apt-get install python3-pip

Because I installed , Updated here

9、 install docker-compose
because Docker-compose be based on Python Development , So we can use it pip Installation .Compose Is used to define and run multiple containers Docker Application tools . adopt Compose, You can use YML File to configure all the services the application needs . then , Use a command , You can start from YML Create and start all services in the file configuration .
pip3 install docker-compose

10、 test docker Is the installation complete
docker run hello-world

11、 download vulhub
git clone https://github.com/vulhub/vulhub.git

12、 Get into nginx/CVE-2013-4547 route
cd vulhub-master/nginx/CVE-2013-4547

readme It's worth seeing.
There are loopholes and other introductions

13、 Pull the image locally
docker-compose build

14、 Start the vulnerability environment
docker-compose up -d

15、 View the open environment
docker ps -a

The browser can access the corresponding port number