gauntlt / gauntlt-docker Goto Github PK

the docker for gauntlt

Makefile 17.18% Shell 24.68% Dockerfile 58.14%

gauntlt-docker's Introduction

gauntlt

Gauntlt is a ruggedization framework that enables security testing that is usable by devs, ops and security.

PROJECT STATUS

As of 2018, Gauntlt is re-launching development efforts and building a commmunity of practice. Join us on the gauntlt slack channel. We are hoping to extend gauntlt functionality, add attack adapters and buildup a library of sharable attacks that fit everyone's needs. This isn't just for ruby developers, we need feedback and contributions from security experts and people with experience running gauntlt in build pipelines. Join us!

We welcome feedback and contributions. Please file issues via github and follow the project on twitter: @gauntlt.

Have questions? Feel free to open a ticket, but we would prefer you find us on the gauntlt slack channel (gauntlt.slack.com).

GET STARTED

You might want also take a look at gauntlt-docker which has gauntlt and a few attack tools all grouped into one container.

Note: if you are new to gauntlt, have a look at gauntlt-starter-kit, it is the easiest way to get up and running.

If you are using Kali Linux 2.0, Debian Jessie, Ubuntu 14.04, or Ubuntu 15.10, you can run the following:

git clone https://github.com/gauntlt/gauntlt
cd gauntlt
source ./install_gauntlt_deps.sh
bash ./ready_to_rumble.sh
gauntlt

This script will install Ruby RVM, all the required system dependencies and tools, and update your .bashrc with the necessary environmental variables. You can install this for another user by exporting $HOME_FOLDER and $USER_NAME variables before running install_gauntlt_deps.sh

To install Gauntlt from source, you will need ruby version 2.1.0 or higher, but you can run gauntlt against applications built with any language or platform.

Install the gem
```
$ gem install gauntlt
```

Create an attack file and put it anywhere you like. (There is a more relevant example on gauntlt.org)

# simplest.attack
Feature: simplest attack possible
  Scenario:
    When I launch a "generic" attack with:
      """
      ls -a
      """
    Then the output should contain:
      """
      .
      """

Run gauntlt to launch the attack defined above

$ gauntlt
# equivalent to gauntlt ./**/*.attack
# by default, gauntlt will search in the current folder
# and its subfolders for files with the .attack extension

# you can also specify one or more paths yourself:
$ gauntlt my_attacks/*.attack some_other.file

For more attacks, refer to the examples.

Other commands

# list defined attacks
$ gauntlt --list

# get help
$ gauntlt --help

ATTACK ADAPTERS

Gauntlt includes attack adapters for the following tools:

You will need to install each tool yourself before you can use it with gauntlt. However, if you try to use a tool that is not installed or that gauntlt cannot find, you will get a helpful error message from gauntlt with information on how to install and/or configure the tool for use with gauntlt.

We also include a generic attack adapter that allows you to run anything on the command line, parse its output and check its exit status.

ATTACK FILES

Preamble

To use gauntlt, you will need one or more attack files. An attack file is a plain text file written with Gherkin syntax and named with the .attack extension. For more info on the Gherkin syntax, have a look at Cucumber. A gauntlt attack file is almost the same as a cucumber feature file. The main difference is that gauntlt aims to provide the user with predefined steps geared towards security and durability testing so that you do not have to write your own step definitions, whereas cucumber is aimed at developers and stakeholders building features from end to end. Gauntlt and cucumber can and do work together harmoniously.

What an attack file looks like

# my.attack
Feature: Description for all scenarios in this file
  Scenario: Description of this scenario
    Given ...
    When ...
    Then ...

  Scenario: ...
    Given ...
    When ...
    Then ...

You can have as many Scenario entries as you like, but it is good practice to keep the number low and to ensure that the scenarios in an attack file are all related. You can create as many attack files as you like and organize them in folders and sub-folders as well.

There are a large number of step definitions available, but you can do a lot with just these 3:

Feature: Attack with kindness

  Scenario: Ensure I am not mean
    # verify a given attack adapter is installed
    # HIGHLY RECOMMENDED to catch installation/configuration problems
    Given "kindness" is installed

    # Execute the attack
    When I launch a "kindness" attack with:
      """
      whoami  # EXACT commands to be executed on the command line
      """

    # Check exit status and STDOUT
    Then it should pass with:
      """
      very_kind
      """

FOR DEVELOPERS

NOTE: We currently use ruby 2.3.4 for development and testing.

Clone the git repo and get the submodules

$ git clone --recursive git://github.com/gauntlt/gauntlt.git

Install bundler
```
cd gauntlt
$ gem install bundler
```

Install dependencies

$ bundle
# if you get errors, you may need to install curl libs first
# on ubuntu:
#   $ sudo apt-get install libcurl4-openssl-dev
# alternatively: update and use the install_gauntlt.sh script, tested on
# Kali Linux 2.0, Debian Jessie, Ubuntu 14.04, and Ubuntu 15.10

Run the ready_to_rumble.sh script to make sure you have all the dependencies installed like sqlmap and sslyze. This is meant to replicate the travis setup for devs. This should be a rake task instead.
Run the cucumber features and rspec examples
```
$ bundle exec rake
```
Launch attacks with bin/gauntlt
```
$ bin/gauntlt attack
```
Refer to the features directory for usage examples and please write cucumber features for any new functionality you wish to submit.

ROADMAP

Gauntlt has been steady for some time now, but we are working on some new features. Join us on slack for more info.

We appreciate your suggestions and bug reports. We aim to be very responsive and friendly while adhering to a consistent design based on minimalism, simplicity and extensibility.

LICENSE

gauntlt is licensed under The MIT License. See the LICENSE file in the repo or visit gauntlt.mit-license.org for details.

gauntlt-docker's People

Contributors

Stargazers

Watchers

gauntlt-docker's Issues

How to implement timeout variable

rom the Aruba docs I found out that in order to increase the timeout, I have to put in the env.rb file the following code:

 Aruba.configure do |config|
      config.exit_timeout = 0.2
end

But I don't want to hardcode any variables, and some of my tests should run at least 10/40/90 minutes. How do I achieve this? I'd like to have couple profiles/attack vectors with variable timeouts

gauntlt-docker - gives No files found - file present int the current directory

./gauntlt-docker ./xss.attack
[DEPRECATION] The trollop gem has been renamed to optimist and will no longer be supported. Please switch to optimist as soon a
s possible.
/var/lib/gems/2.3.0/gems/gauntlt-1.0.13/lib/gauntlt/runtime.rb:20:in initialize': No files found in path: ./xss.attack (Gauntl t::Runtime::NoFilesFound) from /var/lib/gems/2.3.0/gems/gauntlt-1.0.13/lib/gauntlt/attack.rb:8:in new'
from /var/lib/gems/2.3.0/gems/gauntlt-1.0.13/lib/gauntlt/attack.rb:8:in initialize' from /var/lib/gems/2.3.0/gems/gauntlt-1.0.13/lib/gauntlt.rb:36:in new'
from /var/lib/gems/2.3.0/gems/gauntlt-1.0.13/lib/gauntlt.rb:36:in attack' from /var/lib/gems/2.3.0/gems/gauntlt-1.0.13/bin/gauntlt:55:in <top (required)>'
from /usr/local/bin/gauntlt:23:in load' from /usr/local/bin/gauntlt:23:in

docker: invalid reference format: repository name must be lowercase.

I am trying to follow along with Lynda class DevSecOps: Automated Security Testing but when I try to run gauntlt-docker eg. get "docker:invalid reference format: repository name must be lowercase"

bash-3.2$ gauntlt-docker --help
docker: invalid reference format: repository name must be lowercase.
See 'docker run --help'.

gauntlt docker issue

Hello, Im getting an error when trying to run make build after cloning the gauntlt docker from your github page. Here is the error:

I havent seen an update to your repo in a few months but are you still maintaining it?

Make build fails -> nokorigi issue

Hi everyone,
I am using a Mac with the latest version of Docker for Mac installed to follow the LinkedIn Learning course DevSecOps: Automated Testing which references the use of this repository. I follow the instructions in the course:

Checkout this repository
Change directories into the repository folder
Execute the make build command which results in the following output for me:

gauntlt-docker % make build    
Building docker container...
[+] Building 119.8s (9/19)                                                                                                                                        
 => [internal] load build definition from Dockerfile                                                                                                         0.0s
 => => transferring dockerfile: 2.08kB                                                                                                                       0.0s
 => [internal] load .dockerignore                                                                                                                            0.0s
 => => transferring context: 2B                                                                                                                              0.0s
 => [internal] load metadata for docker.io/library/ubuntu:20.04                                                                                              1.2s
 => [ 1/15] FROM docker.io/library/ubuntu:20.04@sha256:80ef4a44043dec4490506e6cc4289eeda2d106a70148b74b5ae91ee670e9c35d                                      0.0s
 => [internal] load build context                                                                                                                            0.0s
 => => transferring context: 70B                                                                                                                             0.0s
 => CACHED [ 2/15] RUN apt-get update &&     apt-get install -y build-essential       bzip2       ca-certificates       curl       gcc       git       libc  0.0s
 => CACHED [ 3/15] RUN gem install rake                                                                                                                      0.0s
 => CACHED [ 4/15] RUN gem install ffi -v 1.9.18                                                                                                             0.0s
 => ERROR [ 5/15] RUN gem install gauntlt                                                                                                                  118.5s
------                                                                                                                                                            
 > [ 5/15] RUN gem install gauntlt:                                                                                                                               
#8 118.4 ERROR:  Error installing gauntlt:                                                                                                                        
#8 118.4        The last version of nokogiri (~> 1.8, >= 1.8.1) to support your Ruby & RubyGems was 1.15.6. Try installing it with `gem install nokogiri -v 1.15.6` and then running the current command again
#8 118.4 	nokogiri requires Ruby version >= 3.0, < 3.4.dev. The current ruby version is 2.7.0.0.
#8 118.5 !    The 'trollop' gem has been deprecated and has been replaced by 'optimist'.
#8 118.5 !    See: https://rubygems.org/gems/optimist
#8 118.5 !    And: https://github.com/ManageIQ/optimist
#8 118.5 Successfully installed trollop-2.9.10
------
executor failed running [/bin/sh -c gem install gauntlt]: exit code: 1
make: *** [build] Error 1

Any help to resolve these errors would be appreciated.

Best,
Nicola

Gauntlt docker issue

I am getting below error when i run "make build" on gauntlt-docker
Step 6/20 : RUN gem install gauntlt --no-rdoc --no-ri
---> Running in 50e1cf3d08a1
Successfully installed builder-3.2.3
Successfully installed diff-lcs-1.3
Successfully installed multi_json-1.13.1
Building native extensions. This could take a while...
Successfully installed gherkin-2.12.2
Successfully installed multi_test-0.1.2
Successfully installed cucumber-1.3.20
Building native extensions. This could take a while...
ERROR: Error installing gauntlt:
ERROR: Failed to build gem native extension.

current directory: /var/lib/gems/2.3.0/gems/childprocess-1.0.1/ext

/usr/bin/ruby2.3 mkrf_conf.rb

current directory: /var/lib/gems/2.3.0/gems/childprocess-1.0.1/ext
/usr/bin/ruby2.3 -rubygems /usr/share/rubygems-integration/all/gems/rake-10.5.0/bin/rake RUBYARCHDIR=/var/lib/gems/2.3.0/extensions/x86_64-linux/2.3.0/childprocess-1.0.1 RUBYLIBDIR=/var/lib/gems/2.3.0/extensions/x86_64-linux/2.3.0/childprocess-1.0.1
/usr/bin/ruby2.3: No such file or directory -- /usr/share/rubygems-integration/all/gems/rake-10.5.0/bin/rake (LoadError)

rake failed, exit code 1

Gem files will remain installed in /var/lib/gems/2.3.0/gems/childprocess-1.0.1 for inspection.
Results logged to /var/lib/gems/2.3.0/extensions/x86_64-linux/2.3.0/childprocess-1.0.1/gem_make.out
The command '/bin/sh -c gem install gauntlt --no-rdoc --no-ri' returned a non-zero code: 1
Makefile:4: recipe for target 'build' failed
make: *** [build] Error 1

Please check. Let me know if you need more info.

Build Error

! The 'trollop' gem has been deprecated and has been replaced by 'optimist'.
! See: https://rubygems.org/gems/optimist
! And: https://github.com/ManageIQ/optimist
Successfully installed trollop-2.9.10
Successfully installed mini_portile2-2.4.0
Building native extensions. This could take a while...
ERROR: Error installing gauntlt:
childprocess requires Ruby version >= 2.4.0.
Successfully installed nokogiri-1.10.9
Successfully installed rspec-support-3.9.3
Successfully installed diff-lcs-1.4.2
Successfully installed rspec-expectations-3.9.2
The command '/bin/sh -c gem install gauntlt --no-rdoc --no-ri' returned a non-zero code: 1
Makefile:4: recipe for target 'build' failed
make: *** [build] Error 1

Expanded to support all vendor tooling

FROM ubuntu:14.04
MAINTAINER [email protected]

ENV GOPATH /opt/go
ENV GOROOT /usr/local/go
ENV SSLYZE_PATH /usr/local/bin/sslyze
ENV SQLMAP_PATH /usr/local/bin/sqlmap
ENV DIRB_WORDLISTS /opt/dirb/wordlists

ENV PATH $PATH:$GOPATH/bin:$GOROOT/bin

# Get dependencies
RUN echo "deb http://ppa.launchpad.net/brightbox/ruby-ng/ubuntu trusty main" > /etc/apt/sources.list.d/ruby.list
RUN apt-key adv --keyserver keyserver.ubuntu.com --recv-keys C3173AA6
RUN \
  apt-get update && \
  apt-get install -y build-essential \
    git \
    mercurial \
    ruby2.0 \
    ruby2.0-dev \
    libxml2 \
    libxml2-dev \
    libxslt-dev \
    libcurl4-openssl-dev \
    libsqlite3-dev \
    libyaml-dev \
    zlib1g-dev \
    python-dev \
    python-pip \
    python-setuptools \
    curl \
    nmap \
    w3af-console \
    wget && \
  rm -rf /var/lib/apt/lists/*

# Install dirb
RUN \
  wget -q http://downloads.sourceforge.net/project/dirb/dirb/2.22/dirb222.tar.gz && \
  tar -C /opt -xzf dirb222.tar.gz && \
  rm -rf dirb222.tar.gz && \
  mv /opt/dirb222 /opt/dirb && \
  chmod -R +x /opt/dirb && \
  cd /opt/dirb && \
  bash ./configure && \
  make && \
  ln -s `pwd`/dirb /usr/local/bin/dirb

# Install golang.
RUN \
  wget -q https://storage.googleapis.com/golang/go1.5.3.linux-amd64.tar.gz && \
  tar -C /usr/local -xzf go1.5.3.linux-amd64.tar.gz && \
  rm -rf go1.5.3.linux-amd64.tar.gz

# Install Heartbleed
RUN go get -u -v github.com/FiloSottile/Heartbleed
RUN ln -s `which Heartbleed` /usr/local/bin/Heartbleed

# Install Arachni, from a gem
RUN gem install arachni --no-rdoc --no-ri
RUN gem install service_manager --no-rdoc --no-ri

# Install sslyze
RUN pip install sslyze
RUN ln -s `which sslyze_cli.py` /usr/local/bin/sslyze

# Install SQLMap
RUN \
  cd /opt && \
  git clone https://github.com/sqlmapproject/sqlmap.git && \
  ln -s /opt/sqlmap /usr/local/bin/sqlmap

RUN \
  cd /opt && \
  git clone https://github.com/freddyb/Garmr.git && \
  cd Garmr && \
  python setup.py install

# Install Gauntlt
RUN gem install gauntlt --no-rdoc --no-ri

ENTRYPOINT [ "/usr/local/bin/gauntlt" ]

no outfile produced

no files are produced when --outfile=results is defined

[feature req] multiple reports

Is it possible to set outfile to use two formats ? for example: --outfile=json,html

ERROR: Failed to build gem native extension.

I am getting the following build error, when building the docker image. Any idea why?

Building native extensions.  This could take a while...
ERROR:  Error installing gauntlt:
	ERROR: Failed to build gem native extension.

    current directory: /var/lib/gems/2.3.0/gems/childprocess-1.0.1/ext
/usr/bin/ruby2.3 mkrf_conf.rb

current directory: /var/lib/gems/2.3.0/gems/childprocess-1.0.1/ext
/usr/bin/ruby2.3 -rubygems /usr/share/rubygems-integration/all/gems/rake-10.5.0/bin/rake RUBYARCHDIR=/var/lib/gems/2.3.0/extensions/x86_64-linux/2.3.0/childprocess-1.0.1 RUBYLIBDIR=/var/lib/gems/2.3.0/extensions/x86_64-linux/2.3.0/childprocess-1.0.1
/usr/bin/ruby2.3: No such file or directory -- /usr/share/rubygems-integration/all/gems/rake-10.5.0/bin/rake (LoadError)

rake failed, exit code 1

Gem files will remain installed in /var/lib/gems/2.3.0/gems/childprocess-1.0.1 for inspection.
Results logged to /var/lib/gems/2.3.0/extensions/x86_64-linux/2.3.0/childprocess-1.0.1/gem_make.out
The command '/bin/sh -c gem install gauntlt --no-rdoc --no-ri' returned a non-zero code: 1
make: *** [build] Error 1

Errors were encountered while processing

[Errno 13] Permission denied: '/usr/lib/python3.10/pycache/future.cpython-310.pyc.139965444708864'dpkg: error processing package python3.10-minimal (--configure):
installed python3.10-minimal package post-installation script subprocess returned error exit status 1
Errors were encountered while processing:
python3.10-minimal
E: Sub-process /usr/bin/dpkg returned an error code (1)
The command '/bin/sh -c apt-get update && apt-get install -y build-essential bzip2 ca-certificates curl gcc git libcurl4 libcurl4-openssl-dev wget zlib1g-dev libfontconfig libxml2-dev libxslt1-dev make python3-pip ruby ruby-dev ruby-bundler && rm -rf /var/lib/apt/lists/*' returned a non-zero code: 100

Ubuntu 22.04.1

/working/tmp/aruba

Testing/adding to the gauntlt-docker for a Jenkins deployment - when running tests - output details below, but I notice the following ->$ cd /working/tmp/aruba and then a tmp directory is created on the host running the image (no contents)

Whats going on with that? Anyway to control that?

❯❯❯ gauntlt-docker                                                                         
@slow @announce
Feature: simple nmap attack (sanity check)

  Background:                  # ./nmap.attack:3
    Given "nmap" is installed  # gauntlt-1.0.11/lib/gauntlt/attack_adapters/nmap.rb:4
    And the following profile: # gauntlt-1.0.11/lib/gauntlt/attack_adapters/gauntlt.rb:9
      | name      | value           |
      | hostname  | scanme.nmap.org |
      | tcp_ports | 80,443          |

  Scenario: Verify server is available on standard web ports # ./nmap.attack:10
    When I launch an "nmap" attack with:                     # gauntlt-1.0.11/lib/gauntlt/attack_adapters/nmap.rb:8
      $ cd /working/tmp/aruba
      $ nmap -F -PS80,443 scanme.nmap.org
      """
      nmap -F -PS<tcp_ports> <hostname>
      """
    Then the output should match /80.tcp\s+open/             # aruba-0.5.4/lib/aruba/cucumber.rb:171

Docker build error while installing ffi version 1.9.18 - script failed to recognize operating system you are using.

I am getting the following error when I clone the repository and run "make build".

I am not sure if it is related but I am using MacOS venture 13.2.1 (22D68) with iTerm2 Build 3.4.19

I searched the web for someone having a similar issue, but looks like I am the first lucky one to get it :)

% git clone https://github.com/gauntlt/gauntlt-docker.git
Cloning into 'gauntlt-docker'...
remote: Enumerating objects: 90, done.
remote: Counting objects: 100% (6/6), done.
remote: Compressing objects: 100% (5/5), done.
remote: Total 90 (delta 1), reused 4 (delta 1), pack-reused 84
Receiving objects: 100% (90/90), 1.79 MiB | 6.31 MiB/s, done.
Resolving deltas: 100% (38/38), done.

% cd gauntlt-docker

% make build
Building docker container...
[+] Building 3.5s (8/19)
 => [internal] load build definition from Dockerfile                                                                                                                                                                                   0.0s
 => => transferring dockerfile: 2.08kB                                                                                                                                                                                                 0.0s
 => [internal] load .dockerignore                                                                                                                                                                                                      0.0s
 => => transferring context: 2B                                                                                                                                                                                                        0.0s
 => [internal] load metadata for docker.io/library/ubuntu:20.04                                                                                                                                                                        1.6s
 => [ 1/15] FROM docker.io/library/ubuntu:20.04@sha256:4a45212e9518f35983a976eead0de5eecc555a2f047134e9dd2cfc589076a00d                                                                                                                0.0s
 => [internal] load build context                                                                                                                                                                                                      0.1s
 => => transferring context: 2.05MB                                                                                                                                                                                                    0.1s
 => CACHED [ 2/15] RUN apt-get update &&     apt-get install -y build-essential       bzip2       ca-certificates       curl       gcc       git       libcurl4       libcurl4-openssl-dev       wget       zlib1g-dev       libfontc  0.0s
 => CACHED [ 3/15] RUN gem install rake                                                                                                                                                                                                0.0s
 => ERROR [ 4/15] RUN gem install ffi -v 1.9.18                                                                                                                                                                                        1.9s
------
 > [ 4/15] RUN gem install ffi -v 1.9.18:
#7 1.020 Building native extensions. This could take a while...
#7 1.836 ERROR:  Error installing ffi:
#7 1.836 	ERROR: Failed to build gem native extension.
#7 1.836
#7 1.836     current directory: /var/lib/gems/2.7.0/gems/ffi-1.9.18/ext/ffi_c
#7 1.836 /usr/bin/ruby2.7 -I /usr/lib/ruby/2.7.0 -r ./siteconf20230220-7-1ywi83s.rb extconf.rb
#7 1.836 checking for ffi.h... no
#7 1.836 checking for ffi.h in /usr/local/include,/usr/include/ffi... no
#7 1.836 checking for shlwapi.h... no
#7 1.836 checking for rb_thread_blocking_region()... no
#7 1.836 checking for rb_thread_call_with_gvl()... yes
#7 1.836 checking for rb_thread_call_without_gvl()... yes
#7 1.836 checking for ffi_prep_cif_var()... no
#7 1.836 creating extconf.h
#7 1.836 creating Makefile
#7 1.836
#7 1.836 current directory: /var/lib/gems/2.7.0/gems/ffi-1.9.18/ext/ffi_c
#7 1.836 make "DESTDIR=" clean
#7 1.836
#7 1.836 current directory: /var/lib/gems/2.7.0/gems/ffi-1.9.18/ext/ffi_c
#7 1.836 make "DESTDIR="
#7 1.836 Configuring libffi
#7 1.836 /var/lib/gems/2.7.0/gems/ffi-1.9.18/ext/ffi_c/libffi/config.guess: unable to guess system type
#7 1.836
#7 1.836 This script, last modified 2009-11-20, has failed to recognize
#7 1.836 the operating system you are using. It is advised that you
#7 1.836 download the most up to date version of the config scripts from
#7 1.836
#7 1.836   http://git.savannah.gnu.org/gitweb/?p=config.git;a=blob_plain;f=config.guess;hb=HEAD
#7 1.836 and
#7 1.836   http://git.savannah.gnu.org/gitweb/?p=config.git;a=blob_plain;f=config.sub;hb=HEAD
#7 1.836
#7 1.836 If the version you run (/var/lib/gems/2.7.0/gems/ffi-1.9.18/ext/ffi_c/libffi/config.guess) is already up to date, please
#7 1.836 send the following data and any information you think might be
#7 1.836 pertinent to <[email protected]> in order to provide the needed
#7 1.836 information to handle your system.
#7 1.836
#7 1.836 config.guess timestamp = 2009-11-20
#7 1.836
#7 1.836 uname -m = aarch64
#7 1.836 uname -r = 5.10.124-linuxkit
#7 1.836 uname -s = Linux
#7 1.836 uname -v = #1 SMP PREEMPT Thu Jun 30 08:18:26 UTC 2022
#7 1.836
#7 1.836 /usr/bin/uname -p = aarch64
#7 1.836 /bin/uname -X     =
#7 1.836
#7 1.836 hostinfo               =
#7 1.836 /bin/universe          =
#7 1.836 /usr/bin/arch -k       =
#7 1.836 /bin/arch              = aarch64
#7 1.836 /usr/bin/oslevel       =
#7 1.836 /usr/convex/getsysinfo =
#7 1.836
#7 1.836 UNAME_MACHINE = aarch64
#7 1.836 UNAME_RELEASE = 5.10.124-linuxkit
#7 1.836 UNAME_SYSTEM  = Linux
#7 1.836 UNAME_VERSION = #1 SMP PREEMPT Thu Jun 30 08:18:26 UTC 2022
#7 1.836 configure: error: cannot guess build type; you must specify one
#7 1.836 make: *** [libffi.mk:7: "/var/lib/gems/2.7.0/gems/ffi-1.9.18/ext/ffi_c/libffi-aarch64-linux-gnu"/.libs/libffi_convenience.a] Error 1
#7 1.836
#7 1.836 make failed, exit code 2
#7 1.836
#7 1.836 Gem files will remain installed in /var/lib/gems/2.7.0/gems/ffi-1.9.18 for inspection.
#7 1.836 Results logged to /var/lib/gems/2.7.0/extensions/aarch64-linux/2.7.0/ffi-1.9.18/gem_make.out
------
executor failed running [/bin/sh -c gem install ffi -v 1.9.18]: exit code: 1
make: *** [build] Error 1

Upgrade to support the latest version of sslyze

This pull request #5 added sslyze 1.3.4 to the docker image. However that is not the latest version of sslyze. Attempting to add the latest failed, related issue nabla-c0d3/sslyze#306. Resolving this issue may require upgrading the version of Ubuntu to support Python 3.6 so the latest version of sslyze can be installed.

No files found in path

./bin/gauntlt-docker ../security-testing-class/attacks/xss/xss.attack

/var/lib/gems/2.3.0/gems/gauntlt-1.0.13/lib/gauntlt/runtime.rb:20:in `initialize': No files found in path: ../security-testing-class/attacks/xss/xss.attack (Gauntlt::Runtime::NoFilesFound)

Gaunlt docker error

I am receiving the below error logs while installing it on Ubuntu 16.04 version:

---> 316249cf98df
Step 14/29 : RUN gem install rake
---> Running in 7afcb0d0ecc1
/usr/lib/ruby/vendor_ruby/rubygems/defaults/operating_system.rb:10: warning: constant Gem::ConfigMap is deprecated
/usr/lib/ruby/vendor_ruby/rubygems/defaults/operating_system.rb:10: warning: constant Gem::ConfigMap is deprecated
/usr/lib/ruby/vendor_ruby/rubygems/defaults/operating_system.rb:29: warning: constant Gem::ConfigMap is deprecated
/usr/lib/ruby/vendor_ruby/rubygems/defaults/operating_system.rb:30: warning: constant Gem::ConfigMap is deprecated
/usr/lib/ruby/vendor_ruby/rubygems/defaults/operating_system.rb:10: warning: constant Gem::ConfigMap is deprecated
/usr/lib/ruby/vendor_ruby/rubygems/defaults/operating_system.rb:10: warning: constant Gem::ConfigMap is deprecated
/usr/lib/ruby/vendor_ruby/rubygems/defaults/operating_system.rb:29: warning: constant Gem::ConfigMap is deprecated
/usr/lib/ruby/vendor_ruby/rubygems/defaults/operating_system.rb:30: warning: constant Gem::ConfigMap is deprecated
/usr/lib/ruby/vendor_ruby/rubygems/defaults/operating_system.rb:10: warning: constant Gem::ConfigMap is deprecated
/usr/lib/ruby/vendor_ruby/rubygems/defaults/operating_system.rb:10: warning: constant Gem::ConfigMap is deprecated
/usr/lib/ruby/vendor_ruby/rubygems/defaults/operating_system.rb:10: warning: constant Gem::ConfigMap is deprecated
Successfully installed rake-13.0.3
Parsing documentation for rake-13.0.3
Done installing documentation for rake after 0 seconds
1 gem installed
Removing intermediate container 7afcb0d0ecc1
---> f19bbed725f2
Step 15/29 : RUN gem install gauntlt --no-rdoc --no-ri
---> Running in 9f7a6e61406e
/usr/lib/ruby/vendor_ruby/rubygems/defaults/operating_system.rb:10: warning: constant Gem::ConfigMap is deprecated
/usr/lib/ruby/vendor_ruby/rubygems/defaults/operating_system.rb:10: warning: constant Gem::ConfigMap is deprecated
/usr/lib/ruby/vendor_ruby/rubygems/defaults/operating_system.rb:29: warning: constant Gem::ConfigMap is deprecated
/usr/lib/ruby/vendor_ruby/rubygems/defaults/operating_system.rb:30: warning: constant Gem::ConfigMap is deprecated
/usr/lib/ruby/vendor_ruby/rubygems/defaults/operating_system.rb:10: warning: constant Gem::ConfigMap is deprecated
/usr/lib/ruby/vendor_ruby/rubygems/defaults/operating_system.rb:10: warning: constant Gem::ConfigMap is deprecated
/usr/lib/ruby/vendor_ruby/rubygems/defaults/operating_system.rb:29: warning: constant Gem::ConfigMap is deprecated
/usr/lib/ruby/vendor_ruby/rubygems/defaults/operating_system.rb:30: warning: constant Gem::ConfigMap is deprecated
ERROR: While executing gem ... (OptionParser::InvalidOption)
invalid option: --no-rdoc
Did you mean? no-force
The command '/bin/sh -c gem install gauntlt --no-rdoc --no-ri' returned a non-zero code: 1