Designed specifically for cybersecurity enthusiasts, Athena OS offers a cutting-edge platform for InfoSec professionals, bug bounty hunters, and students.
Explore robust tools and a dynamic community, enhancing your pentesting capabilities with the latest in cybersecurity innovation.
Hephaestus is the Athena OS Continuous Integration/Continuous Delivery Builder to improve the integration and delivery of the packages.
As a container, it can be run in every platform supporting Docker or Podman. It is used to automate the building and delivery of Athena OS packages and for package debugging.
**===========================================================**
|| __ __ __ __ ||
|| / / / /__ ____ / /_ ____ ____ _____/ /___ _______ ||
|| / /_/ / _ \/ __ \/ __ \/ __ `/ _ \/ ___/ __/ / / / ___/ ||
|| / __ / __/ /_/ / / / / /_/ / __(__ ) /_/ /_/ (__ ) ||
|| /_/ /_/\___/ .___/_/ /_/\__,_/\___/____/\__/\__,_/____/ ||
|| /_/ ||
**===========================================================**
The Athena OS CI/CD Builder
Usage: /build/packages/hephaestus [-a] [-c <ncores>] [-d] [-r] [-s] [-x] [package1 package2 ...]
Options:
-a Build all packages.
-c Set number of cores for building (maximum 4).
-d Update the package repository database.
-h Print this Help.
-r Upload packages to the specified repository server. Use '-e SSH_SEC=' to specify the SSH secret object and '-e REPOSITORY_SERVER=' to define the target repository server as container environment variable arguments.
-s Sign packages. Use '-e GPG_SEC' to specify the signing key secret object as container environment variable argument.
-x Search for the fastest mirrors.It builds the specified packages or all the repository packages if no package names are provided.
First to proceed, it is important to set the secret objects of GPG and SSH keys if needed. To do it in a secure manner:
key-sec-file, write the secret inside it and save it;ssh-sec-file, write the secret inside it and save it.Then, run:
podman secret create key-sec key-sec-file
podman secret create ssh-sec ssh-sec-fileFinally, remove the file storing the secrets because no needed anymore:
rm key-sec-file ssh-sec-fileHephaestus can be run by using the following parameters:
systemctl start --user podman
podman run \
-ti \
--rm \
--secret key-sec \
--secret ssh-sec \
--ulimit nofile=1024:524288 \ # Fix fakeroot hanging
--userns=keep-id \ # Prevent to set root as owner of mounted volume directories
-v "$HOME/output:/build/output" \ # Set the target directory to store packages
-v "$HOME/keydir:/build/keydir" \ # Set the target directory to retrieve the signing key from the host
-e GPG_SEC=$(key-sec) \ # Set the signing key secret object
-e SSH_SEC=$(ssh-sec) \ # Set the SSH repository server secret object
-e REPOSITORY_SERVER=username@server.com:/path/to/dir// \ # Set the target repository server
-e PRE_EXEC="ls -la /build" \ # Pre-build command
-e POST_EXEC="ls -la /build/output" # Post-build command
docker.io/athenaos/hephaestus -a -d -r -s -xbomber is an application that scans SBOMs for security vulnerabilities. So you've asked a vendor…
Embed a payload within a PNG file by splitting the payload across multiple IDAT sections.…
Exploit-Street, where we dive into the ever-evolving world of cybersecurity with a focus on Local…
Shadow Dumper is a powerful tool used to dump LSASS (Local Security Authority Subsystem Service)…
shadow-rs is a Windows kernel rootkit written in Rust, demonstrating advanced techniques for kernel manipulation…
Extract and execute a PE embedded within a PNG file using an LNK file. The…