trinitor/DetectionLab
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
930 Commits 1 Branch 0 Tags
21301e7240ce34e975679f0a8b64335baf91db3d
Commit Graph

45 Commits

Author SHA1 Message Date
Chris Long
bf99ffd478 Provision hosts in parallel during build process 2021-07-11 11:39:40 -07:00
Chris Long
fbb03be0d0 Move Exchange to AddOns Folder 2021-05-05 21:40:48 -07:00
Chris Long
553f9a13c5 Adding more code for Exchange 2021-03-29 20:50:01 -07:00
Chris Long
ec57ad4fb9 Implement taskbar layout GPO 2020-12-17 17:14:22 -08:00
Chris Long
6bd07be431 Rename bootstrap.sh -> logger_bootstrap.sh 2020-11-14 19:09:52 -08:00
Chris Long
ff3e595235 Adding ATA to Packer image, adding evtx-attack-samples 2020-09-29 17:36:32 -07:00
Chris Long
165ba4ae41 Fixing fix-second-network.ps1 2020-08-05 00:28:30 -07:00
Chris Long
8cc591b7d7 Add velociraptor 2020-07-03 01:55:19 -07:00
Chris Long
bb12246e74 Refactor osquery and add retry-loop for OU 2020-06-20 18:32:28 -07:00
Chris Long
a67ce6efb5 Fixing logger bugs, updating vm tools, updating Win10 ISO 2020-04-13 00:05:49 -07:00
Chris Long
16003bbd68 LibVirt fixes 2020-02-17 15:04:32 -08:00
Selora
2a6cb92f51 Libvirt provider 
Adding Packer Qemu builder:
* Packer/answer_files/*_virtio: Install the virtio drivers from the ISO (NOT provided)
* windows_*.json needs some manual tweaks to match the virtio drivers ISO path

Adding Vagrant-libvirt provider:
* Uses the QEMU qcow2 images provided by packer to build the DetectionLab
* Vagrantfile needs manual tweaking to match libvirt's host configuration (backing store, network interfaces, etc)

README:
* Added separate README with instructions for libvirt
 2020-01-15 17:28:54 +00:00
Chris Long
7e17727cbb Logger bump to Ubuntu 18.04 & Migrate to Zeek 2019-12-20 15:48:13 -08:00
Chris Long
249ce2ec76 Updating channel permissions for Microsoft-Windows-Sysmon 2019-12-03 22:18:20 -08:00
Chris Long
f3fa80299f Adding rearm to each Windows host 2019-12-03 19:53:59 -08:00
Chris Long
ee9a1f87fd Removing Splunk forwarder from Windows hosts 2019-12-03 00:42:02 -08:00
dtrizna
9bfcc8296c Update Vagrantfile 2019-07-24 14:18:04 +03:00
dtrizna
9694416e33 Update Vagrantfile 2019-07-24 14:16:10 +03:00
Chris Long
f55b721da2 Remove debugging paths from Vagrantfile 2019-07-06 18:35:02 -07:00
Chris Long
df718b4408 Update to 1903 2019-07-06 18:29:29 -07:00
Chris Long
7d844fd988 Removing Caldera 2019-04-27 22:36:06 -07:00
Chris Long
dae0393b00 Fixing issues 228, 252, 255 2019-04-25 23:06:07 -07:00
Chris Long
fcb74cbd0c Migrate boxes to Vagrant Cloud, add tests to Logger 2019-04-10 22:17:26 -07:00
Chris Long
7810b6afbd Remove vmware_fusion provider from Vagrantfile 2019-04-07 23:15:09 -07:00
Chris Long
c732ba6908 Reverting vagrantfile changes 2019-03-01 22:46:50 -08:00
Chris Long
93183a95e2 Update Splunk apps, create vagrantfile_minimum, bugfixes 2019-03-01 22:45:37 -08:00
Chris Long
52faea3e67 Override virtualbox NIC type 
Addressing  https://github.com/clong/DetectionLab/issues/170
 2018-12-06 23:47:26 -08:00
Chris Long
9e19393138 Ignore Microsoft-Windows-LiveId when clearing event channels 
Addresses https://github.com/clong/DetectionLab/issues/171
 2018-12-05 13:46:38 -08:00
Chris Long
e547dc1ff9 Set privilege to false for all windows shell cmds 
https://github.com/clong/DetectionLab/issues/172
 2018-12-05 01:22:10 -08:00
Chris Long
63e4b29e4a Add boot timeout to win10 host in Vagrantfile [ci skip] 2018-09-13 10:40:00 -07:00
Chris Long
a95143a2d3 Fix formatting, add Splunk ASN lookup app 2018-09-07 14:57:53 -07:00
Chris Long
ba7784e0e8 Multiple fixes, additions 2018-09-06 22:58:36 -07:00
Dmitry
04318c0bff Added vm names to vmmare providers 2018-09-05 22:24:49 +07:00
Dmitry
ac1cab0170 Rename virtualbox VM names to predictable 
Hi!
I suggest you to add this to make virtualbox vm names more predictable.
Now i suspect that virtualbox vm names are slightly random.

cfg.vm.provider "virtualbox" do |vb, override|
...
vb.name = "name.windomain.local"
...
end
 2018-09-04 13:36:04 +07:00
Jeff Beley
5501b69598 Added bro and suricata to the logger vagrant 
configured splunk to ingest both bro and suricata logs

reconfigured logger vagrant box to have 2 CPUs and 4GB of RAM
 2018-08-29 11:58:23 -05:00
Chris Long
95e177f5aa Fixing bugs 2018-07-30 21:54:42 -07:00
Chris Long
b9b65601a6 Updating hashes for pre-built boxes and small fixes 2018-06-28 23:20:24 -07:00
Chris Long
a105722872 Adding some small fixes 2018-06-26 23:48:11 -07:00
Chris Long
bd6c3520f3 Update Win10 to 1804 & Fixes 2018-06-23 23:27:23 -07:00
hhofs
0e898af33f added verification of iso download, changed memory for wef and dc, fixed issue with post-build tests 2018-05-11 23:59:17 +02:00
Henk Hofs
406fa8ca1f added installation & configuration of ms_ata 2018-05-05 23:04:03 +02:00
Chris Long
8112bfac42 Adding Caldera to DetectionLab 2018-01-18 21:39:41 -08:00
Chris Long
f0cc38f850 Removing port forwarding from Vagrantfile 
Removing port_forwards due to poor support from Vagrant
 2018-01-11 23:56:27 -08:00
Chris Long
30341aa3ea Adding download_palantir_wef.ps1 back into Win10 Vagrantfile 2017-12-14 11:36:31 -08:00
Chris Long
1577341ce9 Initial commit 2017-12-11 08:49:25 -08:00