VulnWhisperer/docker-compose-test.yml

version: '2'
services:
  elasticsearch:
    image: docker.elastic.co/elasticsearch/elasticsearch:6.6.0
    container_name: elasticsearch
    environment:
      - cluster.name=vulnwhisperer
      - bootstrap.memory_lock=true
      - "ES_JAVA_OPTS=-Xms1g -Xmx1g"
      - xpack.security.enabled=false
      - cluster.routing.allocation.disk.threshold_enabled=false
    ulimits:
      memlock:
        soft: -1
        hard: -1
      nofile:
        soft: 65536
        hard: 65536
    mem_limit: 8g
    volumes:
      - ./data/esdata1:/usr/share/elasticsearch/data
      - ./data/es_snapshots:/snapshots
    ports:
      - 9200:9200
    #restart: always
    networks:
      esnet:
        aliases:
          - elasticsearch.local

  kibana:
    image: docker.elastic.co/kibana/kibana:6.6.0
    container_name: kibana
    environment:
      SERVER_NAME: kibana
      ELASTICSEARCH_URL: http://elasticsearch:9200
    ports:
      - 5601:5601
    depends_on:
      - elasticsearch
    networks:
      esnet:
        aliases:
          - kibana.local

  kibana-config:
    image: alpine
    container_name: kibana-config
    volumes:
      - ./resources/elk6/init_kibana.sh:/opt/init_kibana.sh
      - ./resources/elk6/kibana_APIonly.json:/opt/kibana_APIonly.json
      - ./resources/elk6/logstash-vulnwhisperer-template.json:/opt/index-template.json
    command: sh -c "apk add --no-cache curl bash && chmod +x /opt/init_kibana.sh && chmod +r /opt/kibana_APIonly.json && cd /opt/ && /bin/bash /opt/init_kibana.sh" # /opt/kibana_APIonly.json"
    networks:
      esnet:
        aliases:
          - kibana-config.local

  logstash:
    image: docker.elastic.co/logstash/logstash:6.6.0
    container_name: logstash
    volumes:
      - ./resources/elk6/pipeline/:/usr/share/logstash/pipeline
      - ./data/vulnwhisperer/:/opt/VulnWhisperer/data
      # - ./resources/elk6/logstash.yml:/usr/share/logstash/config/logstash.yml
    environment:
      - xpack.monitoring.enabled=false
    depends_on:
      - elasticsearch
    ports:
      - 9600:9600
    networks:
      esnet:
        aliases:
          - logstash.local
  vulnwhisperer:
    # image: hasecuritysolutions/vulnwhisperer:latest
    image: vulnwhisperer-local
    container_name: vulnwhisperer
    entrypoint: [
                  "vuln_whisperer",
                  "-F",
                  "-c",
                  "/opt/VulnWhisperer/vulnwhisperer.ini",
                  "--mock",
                  "--mock_dir",
                  "/tests/data"
    ]    
    volumes:
      - ./data/vulnwhisperer/:/opt/VulnWhisperer/data
      # - ./resources/elk6/vulnwhisperer.ini:/opt/VulnWhisperer/vulnwhisperer.ini
      - ./configs/test.ini:/opt/VulnWhisperer/vulnwhisperer.ini
      - ./tests/data/:/tests/data
    network_mode: host

networks:
  esnet: