Skip to content

MobSF/RP4MobSF

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

38 Commits

conf

conf

 
 

Dockerfile

Dockerfile

 
 

README.md

README.md

 
 

entrypoint.sh

entrypoint.sh

 
 

run.sh

run.sh

 
 

Repository files navigation

RP4MobSF

a nginx reverse proxy with ssl and auth for MobSF

This docker image will let you run a ssl reverse proxy with basic authentication in front of your mobsf

This image use nginx-extras to provide extra features

  1. to build the image

    • if you are behing a proxy

      • docker build --no-cache --build-arg http_proxy=${http_proxy} --build-arg https_proxy=${https_proxy} -t rp4mobsf:latest .

    • if not :

      • docker build --no-cache -t rp4mobsf:latest .

  2. you have a run.sh you can customize for your need :

export CONF_DIR='/home/debian/nginx_mobsfv2/conf/conf.d'

export PKI_DIR='/home/debian/nginx_mobsfv2/conf/pki'

export AUTH_DIR='/home/debian/nginx_mobsfv2/conf/auth'

docker run -d
-p 80:80 -p 443:443
-e 'DH_SIZE=512'
-e 'FORWARD_HOST=172.17.0.2'
-e 'FORWARD_PORT=8000'
-v $CONF_DIR:/etc/nginx/conf.d:rw
-v $PKI_DIR:/etc/nginx/pki:rw
-v $AUTH_DIR:/etc/nginx/auth:ro
--name rp4mobsf
rp4mobsf:latest

  1. Parameters:

    • CONF_DIR is the path to your conf directory which contain configuration
    • PKI_DIR is the path to your directory containing the certificate
    • AUTH_DIR is the path to your directory containing your auth.htpasswd file (user/password file)
    • FORWARD_HOST is the @IP or FQDN or your MobSF server
    • FORWARD_PORT is the port used to access MOBSF web interface

  2. Default user :

    • Default user is foo password bar

  3. Managing password

  • if you want to change or add user, you must use htpasswd binary to generate password and put the poassword in the auth.htppasswd file located in your conf directory

  1. Certificates
  • if you already have certificates put it in conf/pki/ ($EXT_DIR/pki/)
  • if you don't have the image will create autosigned certificates
  1. Custom
  • nginx will not send the nginx version in header
  • nginx will send a custom name not nginx in header
    • to change the value :
      • edit basic .conf and modify : more_set_headers "Server: MobSF RP";
  1. Variables
  • if you want upload a file bigger than 300M you must modify client_max_body_size 300M; in auth.conf
  • by default you have a 10 minutes cache so if you go to recent scan just after doing an analysis, you will not see it.

This image is based on: MarvAmBass/docker-nginx-ssl-secure

About

a nginx reverse proxy with ssl and auth for MobSF

Resources

Readme
Activity
Custom properties

Stars

22 stars

Watchers

3 watching

Forks

13 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages