FROM golang:1.11.4 as envtpl ARG HTTP_PROXY= ARG HTTPS_PROXY= ARG http_proxy= ARG https_proxy= RUN apt-get update -y && apt-get install -y git RUN git clone https://github.com/subfuzion/envtpl /src \ && cd /src \ && git checkout v1.0.0 \ && CGO_ENABLED=0 GOOS=linux go build \ -ldflags "-X main.AppVersionMetadata=$(date -u +%s)" \ -a -installsuffix cgo -o ./bin/envtpl ./cmd/envtpl/. FROM alpine:3.9 ARG HTTP_PROXY= ARG HTTPS_PROXY= ARG http_proxy= ARG https_proxy= COPY --from=envtpl /src/bin/envtpl /usr/local/bin/envtpl RUN apk --no-cache add \ build-base \ git \ libffi-dev \ libxslt-dev \ linux-headers \ openssl-dev \ py-pillow \ py-pip \ py-setuptools \ python \ python-dev \ sqlite-dev \ yaml-dev \ nodejs \ npm RUN pip install --upgrade pip \ && pip install \ pyClamd==0.4.0 \ GitPython==2.1.3 \ chardet==3.0.4 \ futures==3.2.0 \ pyOpenSSL==18.0.0 \ ndg-httpsclient==0.4.0 \ pyasn1==0.4.2 \ scapy==2.4.0 \ msgpack==0.5.6 \ Jinja2==2.10 \ vulndb==0.1.1 \ psutil==5.4.8 \ ds-store==1.1.2 \ pebble==4.3.8 \ acora==2.1 \ diff-match-patch==20121119 \ bravado-core==5.0.2 \ lz4==1.1.0 \ vulners==1.3.0 \ ipaddresses==0.0.2 \ PyGithub==1.21.0 \ pybloomfiltermmap==0.3.14 \ phply==0.9.1 nltk==3.0.1 \ tblib==0.2.0 \ pdfminer==20140328 \ lxml==3.4.4 \ guess-language==0.2 \ cluster==1.1.1b3 \ python-ntlm==1.0.1 \ halberd==0.2.4 \ darts.util.lru==0.5 \ markdown==2.6.1 \ termcolor==1.1.0 \ mitmproxy==0.13 \ ruamel.ordereddict==0.4.8 \ Flask==0.10.1 \ PyYAML==3.12 \ tldextract==1.7.2 \ esmre==0.3.1 \ && npm install -g retire \ && rm -rf /root/.cache/pip \ && apk del build-base linux-headers RUN adduser -D w3af RUN git clone --depth=1 \ --branch=master \ https://github.com/andresriancho/w3af.git /home/w3af/w3af \ && rm -rf /home/w3af/w3af/.git \ && chown -R w3af /home/w3af/w3af USER w3af WORKDIR /home/w3af/w3af COPY audit.w3af.tmpl /home/w3af/w3af/audit.w3af.tmpl CMD ["./w3af_console"]