trinitor/DetectionLab
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

bootstrap.sh comment fix

Browse Source
This commit is contained in:
Mike Haag
2020-03-19 10:41:19 -06:00
parent 4bc014ca63
commit e52f8eee5a
1 changed files with 3 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
Vagrant/bootstrap.sh
View File

@@ -187,7 +187,7 @@ install_splunk() {
### BOTSv2 COMMENT BLOCK ENDS ### ### BOTSv2 COMMENT BLOCK ENDS ###
# Uncomment the following block to install BOTSv3 # Uncomment the following block to install BOTSv3
# Thanks to @MHaggis for this addition! # Thanks to @MHaggis for this addition!
# More information on BOTSv3 can be found at https://github.com/splunk/botsv3 # More information on BOTSv3 can be found at https://github.com/splunk/botsv3
@@ -226,16 +226,13 @@ install_splunk() {
# /opt/splunk/bin/splunk install app /vagrant/resources/splunk_server/url-toolbox_18.tgz -auth 'admin:changeme' # /opt/splunk/bin/splunk install app /vagrant/resources/splunk_server/url-toolbox_18.tgz -auth 'admin:changeme'
# /opt/splunk/bin/splunk install app /vagrant/resources/splunk_server/virustotal-workflow-actions-for-splunk_020.tgz -auth 'admin:changeme' # /opt/splunk/bin/splunk install app /vagrant/resources/splunk_server/virustotal-workflow-actions-for-splunk_020.tgz -auth 'admin:changeme'
### UNCOMMENT THIS BLOCK FOR THE ATTACK-ONLY DATASET (Recommended) ### ### UNCOMMENT THIS BLOCK FOR BOTSv3 DATASET ###
# echo "[$(date +%H:%M:%S)]: Downloading Splunk BOTSv3 Attack Only Dataset..." # echo "[$(date +%H:%M:%S)]: Downloading Splunk BOTSv3 Attack Only Dataset..."
# wget --progress=bar:force -P /opt/ https://botsdataset.s3.amazonaws.com/botsv3/botsv3_data_set.tgz # wget --progress=bar:force -P /opt/ https://botsdataset.s3.amazonaws.com/botsv3/botsv3_data_set.tgz
# echo "[$(date +%H:%M:%S)]: Download Complete." # echo "[$(date +%H:%M:%S)]: Download Complete."
# echo "[$(date +%H:%M:%S)]: Extracting to Splunk Apps directory" # echo "[$(date +%H:%M:%S)]: Extracting to Splunk Apps directory"
# tar zxvf /opt/botsv3_data_set.tgz -C /opt/splunk/etc/apps/ # tar zxvf /opt/botsv3_data_set.tgz -C /opt/splunk/etc/apps/
### ATTACK-ONLY COMMENT BLOCK ENDS ### ### BOTSv3 COMMENT BLOCK ENDS ###
### BOTSv3 COMMENT BLOCK ENDS ###
# Add custom Macro definitions for ThreatHunting App # Add custom Macro definitions for ThreatHunting App
cp /vagrant/resources/splunk_server/macros.conf /opt/splunk/etc/apps/ThreatHunting/default/macros.conf cp /vagrant/resources/splunk_server/macros.conf /opt/splunk/etc/apps/ThreatHunting/default/macros.conf