Skip to content
/ PwnJail Public

It's a fancy process isolation tool that creates an isolated environment for your binary in under 10 minutes and lets you reset the execution state in under seconds. All this, with a couple of one-liner commands from your trusty terminal.

License

MIT license
4 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Saket-Upadhyay/PwnJail

BranchesTags

Repository files navigation

PwnJail

A google/nsjail and Docker-based automated vulnerable binary isolation tool for CTFs and Cybersecurity Training; Set up an isolated environment for your next vulnerable binary in minutes!

Who is this for?

Anyone who wants to set up an isolated environment for their next vulnerable code deployment in minutes!

Example:

  1. Cybersecurity Students
  2. CTF Organisers
  3. Vulnerability Testers

How to build

  1. Clone this repo by git clone https://github.com/Saket-Upadhyay/PwnJail.git
  2. Copy your vulnerable application in the ./chal folder
  3. If you have a flag, copy it in ./flag/flag
  4. Change your current directory to PwnJail cd PwnJail
  5. Build docker image by ./BuildDockerimage.sh, ./BuildDockerimage_Windows.ps1 or docker compose build in the root directory of PwnJail

Note: You should have a docker image named pwnjail_launcher; check this by docker images

How to use

  1. Run runPWNJail.sh or runPWNJail_Windows.ps1 and wait for the docker shell to open
  2. In docker's shell run /pwnjailexec.sh or pwnjail --config /etc/pwnjail.cfg
  3. To exit press CTRL+C

Note: To run in detached mode type pwnjail --config /etc/pwnjail.cfg -d

Why PwnJail?

When I was trying to learn ROP and other binary exploits, I stumbled upon many archived CTF challenges but I was not able to set up an environment for them. It took me 2 days to set up my first docker environment for practice. I understand how painful it can be to do it every time from scratch if something goes wrong or you are setting up a new set of challenges to practice on.

So I took one more day to automate the whole process which works well in 2022 (unlike some old scrap abominations I found on GitHub) so that you can focus on your practice/challenge and leave setting up everything else on PwnJail!

Credits

  1. This project uses Google's opensource NSJail https://github.com/google/nsjail
  2. The sample challenge in ./chal/return-to-what is taken from DownUnderCTF/Challenges_2020_public
  3. The main banner of this project is created in photoshop using following free vectors and fonts-

License

This project is made by Saket Upadhyay and is available under MIT License.

Tested on
  1. Ubuntu 22.04 kernel 5.15.0; Docker version 20.10.17, build 100c701
  2. Windows 11 Education Version 21H2 OS build 22000.739; Docker version 20.10.16, build aa7e414

Note: NSJail is used in this project is a static build of nsjail 3.1, you can replace contents of ./bin/nsjail to build your prefered version.

About

It's a fancy process isolation tool that creates an isolated environment for your binary in under 10 minutes and lets you reset the execution state in under seconds. All this, with a couple of one-liner commands from your trusty terminal.

Topics

docker security process-isolation pwn ctf ctf-tools

Resources

Readme

License

MIT license
Activity

Stars

4 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases 1

PwnJail v1.0.0 Latest
Jun 19, 2022

Languages