trinitor/DetectionLab
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
703 Commits 1 Branch 0 Tags
4770e303ecb830d99ad917354ed10ca86a533e81
Commit Graph

267 Commits

Author SHA1 Message Date
Sunny Neo
8d7bc4b9dc Explicitly define the file directory 
Osquery was not working with Fleet after deployment due to wrong directories. 

The following command installs the osqueryd service with --flagfile=\ProgramData\osquery\osquery.flags" however osquery.flags found at "C:\Program Files\osquery\osquery.flags" 

``` "c:\Program Files\osquery\osqueryd\osqueryd.exe" -ArgumentList "--install" -Wait  
```

The original osquery.flags defines the certfile.crt to be in "C:\programdata\osquery", it should be in  "c:\Program Files\osquery\" instead.
 2019-06-16 22:56:11 +08:00
Chris Long
95d1fb31f4 Updating ASNGen App 2019-06-09 17:53:21 -07:00
Chris Long
e9ccc17e17 Revert Vagrantfile changes 2019-05-26 21:37:24 -07:00
Chris Long
e78c312bc5 Actually add files 2019-05-26 21:36:10 -07:00
Chris Long
cd722dab8b Fix ThreatHunting App, add Lookup Editor, Update VM tools 2019-05-26 21:34:45 -07:00
Chris Long
9dcc235a55 Update osquery paths in v3.4.0 2019-05-25 12:36:45 -07:00
Olaf Hartong
7916fd1818 added v1.3.2 2019-05-19 22:33:01 +02:00
Olaf Hartong
04bbd7d25e Updated ThreatHunting app to 1.3 2019-05-19 21:06:04 +02:00
Chris Long
6b40e372bd Actually include the files 2019-05-11 01:42:35 -07:00
Chris Long
4082b7a193 Add JA3 for Bro and Suricata. Add background wallpaper. 2019-05-11 01:40:23 -07:00
Chris Long
1261c0dfd8 Adding timestamps to scripts, Vagrantfile_prebuilt, logo 2019-05-06 09:26:59 -07:00
Chris Long
bb2a17ba98 Adding TaskManager.reg 2019-04-28 22:12:59 -07:00
Chris Long
1746b49811 Add Atomic Red Team, Poll Packet for Provisioning, Fixes 2019-04-28 22:02:11 -07:00
Chris Long
3de47b621a Fix WEF inputs for Splunk 2019-04-28 13:12:53 -07:00
Chris Long
88cd120e6e Don't try to re-disable Defender 2019-04-28 01:42:25 -07:00
Chris Long
e1039c8090 Adding back repository for apt-fast 2019-04-27 23:07:11 -07:00
Chris Long
65381681c9 Removing remnants of python3.6 and pip 2019-04-27 22:53:13 -07:00
Chris Long
7d844fd988 Removing Caldera 2019-04-27 22:36:06 -07:00
Chris Long
614af67405 Update to Caldera 2.0, reduce verbosity 2019-04-27 21:05:23 -07:00
Chris Long
4accd72069 Add a retry for SplunkForwarder stoppage 
Attempt at fixing https://github.com/clong/DetectionLab/issues/243
 2019-04-26 01:14:22 -07:00
Chris Long
dae0393b00 Fixing issues 228, 252, 255 2019-04-25 23:06:07 -07:00
Chris Long
a283d561e6 Merge branch 'master' into vagrant_cloud 2019-04-10 22:30:11 -07:00
Chris Long
0d3ba24cfc Update README, fix incorrect comment 2019-04-10 22:26:44 -07:00
Chris Long
fcb74cbd0c Migrate boxes to Vagrant Cloud, add tests to Logger 2019-04-10 22:17:26 -07:00
Chris Long
d3e00c8d57 Install WinPcap to fix network interface issue 
Addresses https://github.com/clong/DetectionLab/issues/246
 2019-04-09 22:51:51 -07:00
Chris Long
c19f924de9 Update install-redteam.ps1 2019-04-07 23:42:09 -07:00
Chris Long
42b70d627c Update Splunk to v7.2.5.1 2019-04-07 23:16:08 -07:00
Chris Long
7810b6afbd Remove vmware_fusion provider from Vagrantfile 2019-04-07 23:15:09 -07:00
Jonathan Johnson
6f2b788f76 Update install-redteam.ps1 2019-04-02 14:43:24 -05:00
Chris Long
53feb06c95 Fix typo 2019-03-31 12:04:32 -07:00
Chris Long
bd2847603e Update bootstrap.sh 2019-03-31 12:02:13 -07:00
Chris Long
9c3a7f3188 Speed up logger provisioning by using apt-fast 2019-03-31 12:00:31 -07:00
Chris Long
deb94c9416 Fix config file typo 2019-03-28 00:05:15 +08:00
Chris Long
7c25cd1e00 Hardcode caldera config settings 2019-03-27 11:20:27 +07:00
Chris Long
f656b82db4 Update configure-ou.ps1 2019-03-25 08:13:44 +07:00
Chris Long
03b0c894d0 Update configure-wef-gpo.ps1 2019-03-25 08:11:54 +07:00
Chris Long
a30eb41737 Update create-domain.ps1 2019-03-24 22:11:32 +07:00
Chris Long
11b1ae4963 Update configure-ou.ps1 2019-03-24 22:11:10 +07:00
Chris Long
173723d96f Bash -> Powershell 2019-03-24 10:08:19 +07:00
Chris Long
57003667e0 More debugging 2019-03-23 16:33:35 +07:00
Chris Long
1d7cc0ed3e fix typo 2019-03-12 14:16:03 -07:00
Chris Long
7aaf35efbb Merge branch 'master' into configure_ou 2019-03-11 22:37:53 -07:00
Chris Long
23f0b30dab Add try/catch to configure-ou.ps1 2019-03-11 22:37:37 -07:00
Chris Long
da57f05b4a Revert last change 2019-03-11 22:31:40 -07:00
Chris Long
f6c5fd521b Fix ThreatHunting app macros.conf 
- Fixes https://github.com/clong/DetectionLab/issues/223
- Update Splunk to 7.2.4.2
 2019-03-11 21:46:40 -07:00
Chris Long
612474c6da Change order of configure-ou.ps1 
Attempting to debug issue #221
 2019-03-10 20:03:30 -07:00
Chris Long
5978e1b750 Update caldera.service 
Updated python3.6 path after installing from apt rather than source
 2019-03-08 23:46:28 -08:00
Chris Long
ed74fdcb71 Update bootstrap.sh 
Address Issues #214 and #215
 2019-03-08 23:22:08 -08:00
Chris Long
a4a074ad24 Removing Microsoft-Message-Analyzer as it conflicts with Microsoft ATA 2019-03-02 10:28:05 -08:00
Chris Long
ebdaa07080 Fixing working in choco and redteam 2019-03-01 22:51:26 -08:00