Scribd
Upload
119 views3 pages

Docker Compose Setup for Security Tools

This document defines the configuration for multiple Docker containers that together form a threat intelligence platform. It includes containers for Cassandra, TheHive, Elasticsearch, Cortex, Redis, MySQL, MISP, and ThePhish. Each container is configured with settings like the image to use, ports, volumes, environment variables, and dependencies on other containers.

Uploaded by

Alvian Rizaldi
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
119 views3 pages

Docker Compose Setup for Security Tools

This document defines the configuration for multiple Docker containers that together form a threat intelligence platform. It includes containers for Cassandra, TheHive, Elasticsearch, Cortex, Redis, MySQL, MISP, and ThePhish. Each container is configured with settings like the image to use, ports, volumes, environment variables, and dependencies on other containers.

Uploaded by

Alvian Rizaldi
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd

version: "3.

8"
services:

cassandra:
image: cassandra:3.11
container_name: cassandra
restart: unless-stopped
hostname: cassandra
environment:
- MAX_HEAP_SIZE=1G
- HEAP_NEWSIZE=1G
- CASSANDRA_CLUSTER_NAME=thp
volumes:
- ./vol/cassandra-data:/var/lib/cassandra/data

thehive:
image: thehiveproject/thehive4:4.1.9-1
container_name: thehive
restart: unless-stopped
depends_on:
- cassandra
ports:
- '[Link]:9000:9000'
volumes:
- ./thehive/[Link]:/etc/thehive/[Link]
- ./vol/data:/opt/data
- ./vol/index:/opt/index
command: '--no-config --no-config-secret'

elasticsearch:
image: [Link]/elasticsearch/elasticsearch:7.11.1
container_name: elasticsearch
restart: unless-stopped
ports:
- '[Link]:9200:9200'
environment:
- [Link]=[Link]
- [Link]=single-node
- [Link]=hive
- script.allowed_types= inline
- thread_pool.search.queue_size=100000
- thread_pool.write.queue_size=10000
- gateway.recover_after_nodes=1
- [Link]=false
- bootstrap.memory_lock=true
- 'ES_JAVA_OPTS=-Xms256m -Xmx256m'
ulimits:
nofile:
soft: 65536
hard: 65536
volumes:
- ./vol/elasticsearch_data:/usr/share/elasticsearch/data
- ./vol/elasticsearch_logs:/usr/share/elasticsearch/logs

cortex:
image: thehiveproject/cortex:3.1.1-1
container_name: cortex
restart: unless-stopped
volumes:
- ./cortex/[Link]:/etc/cortex/[Link]
- /var/run/[Link]:/var/run/[Link]
- /tmp:/tmp
environment:
- http_proxy=${http_proxy}
- https_proxy=${https_proxy}
depends_on:
- elasticsearch
ports:
- '[Link]:9001:9001'

redis:
image: redis:6.2.5
container_name: redis
restart: unless-stopped

mysql:
image: mysql:8.0.26
container_name: mysql
restart: unless-stopped
command: --default-authentication-plugin=mysql_native_password
environment:
- "MYSQL_USER=misp"
- "MYSQL_PASSWORD=example"
- "MYSQL_ROOT_PASSWORD=password"
- "MYSQL_DATABASE=misp"
volumes:
- ./vol/mysql:/var/lib/mysql

misp:
image: coolacid/misp-docker:core-v2.4.148a
container_name: misp
restart: unless-stopped
depends_on:
- redis
- mysql
ports:
- '[Link]:80:80'
- '[Link]:443:443'
environment:
- "MYSQL_HOST=mysql"
- "HOSTNAME=[Link]
- "REDIS_FQDN=redis"
- "INIT=true"
- "CRON_USER_ID=1"
- "DISIPV6=true"

thephish:
image: emalderson/thephish:latest
container_name: thephish
restart: unless-stopped
depends_on:
- thehive
- cortex
- misp
ports:
- '[Link]:8080:8080'
volumes:
-
./thephish_conf_files/analyzers_level_conf.json:/root/thephish/analyzers_level_conf
.json
- ./thephish_conf_files/[Link]:/root/thephish/[Link]
- ./thephish_conf_files/[Link]:/root/thephish/[Link]

You might also like