trinitor/DetectionLab
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
685 Commits 1 Branch 0 Tags
53b0ec43a34241e039844c04a3a0531c95f7e79b
Commit Graph

685 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
man715
53b0ec43a3 Add the ability to use the hyperv provider. 2020-08-25 13:03:34 -07:00
man715
85a5990b2f Copy the Splunk app to the temp directory of the VM before installing. 2020-08-25 13:01:39 -07:00
man715
37fb2347d0 Add the HyperV\.vagrant folder 2020-08-25 13:00:12 -07:00
Chris Long
4ed4d9ed4a Update detectionlab.com endpoint 2020-08-15 23:29:04 -07:00
Chris Long
25e8ce0b22 Whitespace 2020-08-14 01:36:10 -07:00
Chris Long
1c35d1b39e Reverting the UF update 2020-08-14 01:35:46 -07:00
Chris Long
4795afb77b Update locals.tf 2020-08-14 00:33:59 -07:00
Chris Long
e7a0d9c675 Update README.md 2020-08-14 00:22:36 -07:00
Chris Long
7aaa8a205e Add files via upload 2020-08-13 16:52:08 -07:00
Chris Long
4c49dcafe3 Delete overview.jpeg 2020-08-13 16:51:20 -07:00
Chris Long
1f32dff71c Update README.md 2020-08-13 16:33:12 -07:00
Chris Long
5b712a8f86 Filter AutorunsToWinEventlog invocation more widely 2020-08-13 14:14:36 -07:00
Chris Long
769dabf8a6 Update transforms.conf 2020-08-12 23:02:59 -07:00
Chris Long
83f5bf601c Add transforms to remove eventid description text 2020-08-12 23:02:33 -07:00
Chris Long
0bf5a631fa Filter out Splunk and osqueryd events 2020-08-12 23:01:06 -07:00
Chris Long
97c98f332b Update install-splunkuf.ps1 2020-08-12 20:27:38 -07:00
Chris Long
d1f78d153f Update the Splunk UF 2020-08-12 20:27:26 -07:00
Chris Long
4901e02d0d Merge branch 'master' of https://github.com/clong/detectionlab 2020-08-06 23:50:40 -07:00
Chris Long
34889a8bb6 Many Splunk fixes, add sponsors list to README 2020-08-06 23:50:10 -07:00
Chris Long
826a493fcf Merge pull request #505 from sukster/ESXi-ifconfig-up-fix 
Ifconfig up fix for logger
 2020-08-06 12:22:13 -07:00
Chris Long
ae1769e723 Merge branch 'master' into ESXi-ifconfig-up-fix 2020-08-06 12:22:06 -07:00
sukster
b620c15d2e Ifconfig up fix for logger 
The syntax "sudo ifconfig up eth1" was throwing an error in the current version of Ubuntu. The "up" option needs to come after the interface name for it to work.
 2020-08-06 17:52:10 +02:00
Chris Long
ec4c5d1483 Remove inputsconf 2020-08-05 13:38:46 -07:00
Chris Long
bcf4eff575 Merge pull request #504 from clong/fix_sysmon_st 
Fix sysmon sourcetype, update ThreatHunting app
 2020-08-05 12:49:48 -07:00
Chris Long
165ba4ae41 Fixing fix-second-network.ps1 2020-08-05 00:28:30 -07:00
Chris Long
84c29f6739 Fix sysmon sourcetype, update ThreatHunting app 2020-08-04 21:58:18 -07:00
Chris Long
3fc3119be2 Update bootstrap.sh 2020-08-02 23:43:58 -07:00
Chris Long
4a26eb6cf9 Update install-microsoft-ata.ps1 2020-08-02 19:49:27 -07:00
Chris Long
9085136f17 Insert hardcoded Velociraptor URL 
Workaround for issue #497
 2020-08-02 15:26:52 -07:00
Chris Long
12a4c719bd Merge pull request #496 from sukster/Win10-WSL-Doc 
Added new section "Configuring Windows 10 with WSL as a Provisioning …
 2020-07-31 15:36:12 -07:00
sukster
f2367c8f83 Added new section "Configuring Windows 10 with WSL as a Provisioning Host" 2020-07-31 14:23:35 +02:00
Chris Long
ba5b14658c Remove defrag 2020-07-30 16:01:30 -07:00
Chris Long
77f0cb3025 Merge branch 'master' of https://github.com/clong/detectionlab 2020-07-27 22:20:02 -07:00
Chris Long
fcb8001bbe ESXi fixes 2020-07-27 22:19:10 -07:00
Chris Long
6393da6c3a Update bootstrap.sh 2020-07-27 21:54:54 -07:00
Chris Long
f68a8a4120 Fixing Velociraptor install 2020-07-26 17:43:21 -07:00
Chris Long
b1ef753f58 Fixing Velociraptor 2020-07-26 17:41:58 -07:00
Chris Long
2058aae44e Re-fix threathunting app and update ESXi logger role 2020-07-26 15:24:26 -07:00
Chris Long
b9edc1591e Merge pull request #488 from clong/fleet3_fixes 
Fixes for Fleet 3.0
 2020-07-26 14:50:03 -07:00
Chris Long
cbaa7643d6 Actually comitting files 2020-07-26 14:47:09 -07:00
Chris Long
d6810717b3 Merge pull request #486 from lnxg33k/master 
Update fleet installer
 2020-07-26 14:38:22 -07:00
Ahmed Shawky
f1299990b2 Point splunk to the right osquery path 2020-07-26 16:55:13 +04:00
Ahmed Shawky
2eec4ec46e Update fleet installer 2020-07-26 16:48:10 +04:00
Chris Long
2d5a3c014a Merge branch 'master' of https://github.com/clong/detectionlab 2020-07-23 22:46:46 -07:00
Chris Long
a163eb55d1 Updating build.ps1 and ThreatHunting app 2020-07-23 22:46:30 -07:00
Chris Long
b8d8c01cae Update vm-guest-tools.ps1 2020-07-20 21:13:13 -07:00
Chris Long
2929882a71 Update vm-guest-tools.ps1 2020-07-20 17:55:20 -07:00
Chris Long
cc6ca57a97 Merge pull request #484 from clong/ata_azure_fix 
Fixing Microsoft ATA on Azure
 2020-07-20 17:21:00 -07:00
Chris Long
bf2b89275e Fixing Microsoft ATA on Azure 2020-07-20 17:19:17 -07:00
Chris Long
27aa62706d Merge pull request #477 from clong/vm-guest-tools 
Fix Cloud ingress rules, re-write vm-guest-tools to powershell
 2020-07-05 02:09:45 -07:00