From 864729b4f38eec1f6ac8f7d07dd568ad18bd30ae Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Gr=C3=A9goire=20Lodi?= <gregoire.lodi@gmail.com>
Date: Mon, 27 Apr 2020 23:30:36 +0200
Subject: [PATCH] Adds Dockerfile and README instructions

---
 README.md      | 32 ++++++++++++++++++++++++--------
 eos.Dockerfile | 17 +++++++++++++++++
 2 files changed, 41 insertions(+), 8 deletions(-)
 create mode 100644 eos.Dockerfile

diff --git a/README.md b/README.md
index 6309fd7..75b252d 100644
--- a/README.md
+++ b/README.md
@@ -2,25 +2,35 @@
 
 `EOS` loots information from a Symfony target in debug mode:
 
-| Section | Description |
-| --- | --- |
-| General | Get general information about the target. |
-| Phpinfo | Extract Symfony environment variables from the exposed phpinfo(). |
-| Routes | Get the list of registered routes. |
-| Request logs | Look for credentials in POST request logs. |
+| Section       | Description                                                                 |
+| ------------- | --------------------------------------------------------------------------- |
+| General       | Get general information about the target.                                   |
+| Phpinfo       | Extract Symfony environment variables from the exposed phpinfo().           |
+| Routes        | Get the list of registered routes.                                          |
+| Request logs  | Look for credentials in POST request logs.                                  |
 | Project files | Retrieve project files (configuration, database, etc.) based on a wordlist. |
-| Sources | Extract the application source code. |
-| Cookies | Craft Remember Me cookies. |
+| Sources       | Extract the application source code.                                        |
+| Cookies       | Craft Remember Me cookies.                                                  |
 
 More info at https://www.synacktiv.com/posts/pentest/looting-symfony-with-eos.html.
 
 ## Installation
 
+### Standard
+
 ```bash
 $ git clone https://github.com/Synacktiv/eos
 $ python3 -m pip install --user ./eos
 ```
 
+### Docker
+
+```bash
+$ git clone https://github.com/Synacktiv/eos
+$ cd eos
+$ docker build . -f eos.Dockerfile -t eos
+```
+
 ## Usage
 
 ```bash
@@ -204,3 +214,9 @@ $ eos scan http://localhost --output results
 [+] Generated tokens: 5894a5 f68efa
 [+] Scan completed in 0:00:13
 ```
+
+### Example usage with Docker
+
+```bash
+$ docker run --rm -v /tmp/eos:/tmp/res eos eos scan http://localhost/ --output /tmp/res
+```
diff --git a/eos.Dockerfile b/eos.Dockerfile
new file mode 100644
index 0000000..1a7f07e
--- /dev/null
+++ b/eos.Dockerfile
@@ -0,0 +1,17 @@
+FROM python:3-alpine
+
+WORKDIR /eos
+
+RUN apk add --no-cache --virtual .build-deps gcc musl-dev
+RUN apk add --no-cache libxslt-dev
+
+COPY requirements.txt /eos
+RUN python3 -m pip install -r requirements.txt
+
+RUN apk del .build-deps
+
+COPY . ./
+RUN python3 -m pip install /eos/
+
+
+CMD "eos"