trinitor/DetectionLab
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
855 Commits 1 Branch 0 Tags
4a8781f698cae22b27f950d35053d8ba8da37e5c
Commit Graph

70 Commits

Author SHA1 Message Date
Chris Long
4bde98ff08 Adding Exchange for Azure and ESXi 2021-03-13 20:12:24 -08:00
Chris Long
758d6b5d34 Merge branch 'master' into add_exchange 2021-03-08 09:50:24 -08:00
Chris Long
3ac2b21ccc Update ThreatHunting, Add Exchange install script 2021-03-08 09:49:10 -08:00
Tyler Bennett
eb7d7a5a67 provide flexibility in packer servers with more then one NIC, 
when a packer server has more then one NIC, Packer can often
select the wrong http server using {{ .HTTPIP }}. We extend the
variables file to include an http_server_address which can be set
to the IP address of the correct NIC. This configuration propagates down
to the http_bind_address directive of the builder and the boot_command
entered on the guest VM. Adding 0.0.0.0 as a reasonable default as it
preserves comptability with packers default behavior.

This commit was required to get Packer to build the ubuntu guest
successfully in our environment

Additional Reading:
https://github.com/hashicorp/packer/issues/9973
https://www.packer.io/docs/builders/vmware/vsphere-iso#http-directory-configuration
 2021-02-26 18:23:19 -06:00
Parker McGee
f6a85be0c6 Fix Fleet install in ESXi to use the latest fleet.zip release 2021-02-19 08:21:25 -05:00
Chris Long
c91b48e4bc Moving the VMX time settings, reodering JSON files 2021-01-11 17:14:12 -08:00
Chris Long
f0987e8148 Don't sync VM clock with ESXi host 2020-12-27 20:53:33 -08:00
Tyler Bennett
f206996a40 ensure all resources utilize the vars.esxi_datastore var 2020-12-18 22:53:41 -06:00
Chris Long
ec57ad4fb9 Implement taskbar layout GPO 2020-12-17 17:14:22 -08:00
Chris Long
39513f5eea Remove boot_disk_size 
This can cause issues with the ESXi provider per https://github.com/josenk/vagrant-vmware-esxi/issues/90#issuecomment-516141239
 2020-12-14 16:40:07 -08:00
Chris Long
af07f095f2 Update ESXi bootstrap to match vagrant 2020-11-17 20:32:14 -08:00
Chris Long
91c5763032 Creating esxi_datastore variable 2020-11-17 13:37:16 -08:00
Chris Long
1a47c92d90 Update bootstrap.sh with fleet fixes, remove duplicate registry key code 2020-11-16 16:51:23 -08:00
kernel-sanders
4d04dafdb6 Fix issues with fleet, ansible, and splunk 2020-11-16 13:07:14 -05:00
Chris Long
6bd07be431 Rename bootstrap.sh -> logger_bootstrap.sh 2020-11-14 19:09:52 -08:00
Chris Long
92f7d91769 Backporting updates this role 2020-11-09 23:46:17 -08:00
Chris Long
821e9a65b9 Merge branch 'master' of https://github.com/clong/detectionlab 2020-11-08 22:55:04 -08:00
Chris Long
0db18b0859 Resolving Issue #553 2020-11-08 22:54:45 -08:00
sukster
fc3416874c ESXi Terraform Provider automatic installation 
Since Terraform 0.13.x there is no need to build the provider or download it manually. The file versions.tf was added to specify the provider name in the Terraform Registry. The instructions in the README file have been updated to reflect this change.
 2020-11-08 10:41:24 +01:00
sukster
f110936fef Added VIB file to open VNC ports automatically 
I have created this VIB file to automate the manual steps to open the VNC ports on ESXi firewall.
 2020-11-07 21:05:19 +01:00
Chris Long
0d250b679f ESXi Bugfixes - Use only 2 network adapters instead of 3 2020-11-05 14:36:37 -08:00
Chris Long
c68da5ca44 Update ESXi docs 
Note about MacOS Ansible fork() error from https://github.com/clong/DetectionLab/issues/543
 2020-11-03 12:38:04 -08:00
Aan
61118d371e Update ESXi Provider to josenk 
Update ESXi provider to josenk from hashicorp/esxi

```
DetectionLab/ESXi terraform init && terraform apply                                                                                                                             

Initializing the backend...

Initializing provider plugins...
- Finding latest version of hashicorp/esxi...

Error: Failed to install provider

Error while installing hashicorp/esxi: provider registry registry.terraform.io
does not have a provider named registry.terraform.io/hashicorp/esxi
```
 2020-10-30 02:42:10 +07:00
Sean Ryan
0c9a096c17 added missing commands from bootstrap file for 
threathunting app to work
 2020-10-18 19:08:57 -07:00
Aan
be51658802 Update README packer for ESXI 7.0 support 
Updating packer build for ESXI 7.0 support
 2020-10-15 23:03:28 +07:00
Chris Long
483a8f7d13 Update WEF ansible role for evtx-event-samples 2020-10-04 11:36:44 -07:00
Jonathan Moss
55aa80294a Updated iso_name & SHA256 2020-09-27 15:27:15 -04:00
Chris Long
086df6f534 Update ESXI netplan, de-hardcode Velociraptor URL 2020-09-07 23:19:04 -07:00
Chris Long
bee5d4ce1b Replace build scripts with prepare scripts 2020-08-27 18:14:41 -07:00
Chris Long
ae1769e723 Merge branch 'master' into ESXi-ifconfig-up-fix 2020-08-06 12:22:06 -07:00
sukster
b620c15d2e Ifconfig up fix for logger 
The syntax "sudo ifconfig up eth1" was throwing an error in the current version of Ubuntu. The "up" option needs to come after the interface name for it to work.
 2020-08-06 17:52:10 +02:00
Chris Long
84c29f6739 Fix sysmon sourcetype, update ThreatHunting app 2020-08-04 21:58:18 -07:00
sukster
f2367c8f83 Added new section "Configuring Windows 10 with WSL as a Provisioning Host" 2020-07-31 14:23:35 +02:00
Chris Long
77f0cb3025 Merge branch 'master' of https://github.com/clong/detectionlab 2020-07-27 22:20:02 -07:00
Chris Long
fcb8001bbe ESXi fixes 2020-07-27 22:19:10 -07:00
Chris Long
b1ef753f58 Fixing Velociraptor 2020-07-26 17:41:58 -07:00
Chris Long
2058aae44e Re-fix threathunting app and update ESXi logger role 2020-07-26 15:24:26 -07:00
Chris Long
8cc591b7d7 Add velociraptor 2020-07-03 01:55:19 -07:00
Chris Long
37911b150a Remove more references to iso_checksum_type 2020-06-26 16:58:22 -07:00
Chris Long
976b58f126 More linting errors fixed 2020-06-25 23:26:12 -07:00
Chris Long
21477e376a Fix lint errors, update packer files 2020-06-25 23:11:59 -07:00
Chris Long
7858530c17 Remove from Ansible too 2020-06-21 00:28:38 -07:00
Chris Long
5791b99c8f Azure development 2020-06-14 18:45:18 -07:00
Chris Long
14e47a9650 Remove ' from ansible comment 
Ansible barfs with an `ERROR! failed at splitting arguments, either an unbalanced jinja2 block or quotes` message when comments contain apostrophes
 2020-06-02 00:04:18 -07:00
Chris Long
74dda07942 Update ESXi bootstrap too 2020-06-01 22:53:36 -07:00
Chris Long
7dc7e6916c ESXi RAM Bump, osquery fixes 2020-06-01 22:51:14 -07:00
Chris Long
71206dc243 Update README.md and ESXi logger code 2020-04-23 19:35:26 -07:00
Chris Long
c7e013558a Resolving merge conflicts 2020-03-27 14:58:18 -07:00
Chris Long
34d8a39c43 Multiple bugfixes, add dashboard 2020-03-27 14:53:04 -07:00
Chris Long
0f5faccf46 Update main.yml 2020-03-26 13:34:20 -07:00