Configuring the interactsh server¶
The Interactsh server is required for modules that use out‑of‑band interaction for vulnerability verification (see the “Finding issues” page for more information on modules).
This guide is intended for deploying the Interactsh server on a machine running Debian or Astra Linux. Deployment is optional. If no custom server is provided, the internal one is used.
Important
All commands in this guide are run by a user with the administrator role.
Domain configuration¶
Adding a DNS record via the DNS administration interface¶
- Navigate to the DNS management section.
- Add
ns1andns2as hosts. For each corresponding value, enter the server IP address.
Делегирование домена¶
Note
The terminology on your domain registrar's site may vary from what is described in these instructions.
- Log in to your account on the domain registrar's website.
- Go to the “DNS Management” tab.
- Select “Use custom nameservers”.
- Add the
ns1.INTERACTSH_DOMAINиns2.INTERACTSH_DOMAINnameservers.
Deployment¶
-
If the
/etc/systemd/resolved.conffile exists, add the following to it for correct DNS resolution (otherwise, skip this step):To apply the changes, restart the
systemd-resolvedservice. -
Install the Interactsh server from the archive suitable for your OS to the
/usr/local/bin/directory and grant execute permissions. -
Add the ability to run the server as a
systemdservice in the/etc/systemd/system/interactsh.service -
Ensure that the ports listed in the table below are open in the firewall settings.
-
Start the server.
Allowed ports¶
The following ports must be open in the firewall settings for the scanner to operate correctly.
| Protocol | Port | Purpose |
| TCP | 53 |
DNS |
80 |
HTTP | |
443 |
HTTPS | |
25 |
SMTP | |
587 |
SMTPS | |
465 |
SMTPS AutoTLS | |
389 |
LDAP | |
445 |
SMB | |
21 |
FTP | |
990 |
FTPS | |
| UDP | 53 |
DNS |
Logging¶
Logs can be viewed via the journalctl service.