trinitor/DetectionLab
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
677 Commits 1 Branch 0 Tags
7aaa8a205e22d4c973a7da583c67c5dd7b063b47
Commit Graph

677 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Chris Long
5645cfcb45 Merge pull request #459 from clong/azure-dont-change-dns 
Don't change adapter DNS settings in Azure
 2020-06-13 21:51:17 -07:00
Chris Long
dfa0a09d43 Update create-domain.ps1 2020-06-13 21:50:00 -07:00
Chris Long
f8cc4a9ec7 Update join-domain.ps1 2020-06-13 21:49:41 -07:00
Chris Long
add22be68b Update create-domain.ps1 
Don't change DNS settings for azure provisioning
 2020-06-13 21:47:59 -07:00
Chris Long
69320e2b16 Update install-botsv3.sh 
Add Splunk restart after app installation
 2020-06-08 17:57:37 -07:00
Chris Long
14e47a9650 Remove ' from ansible comment 
Ansible barfs with an `ERROR! failed at splitting arguments, either an unbalanced jinja2 block or quotes` message when comments contain apostrophes
 2020-06-02 00:04:18 -07:00
Chris Long
ccd9dd3ba8 Merge pull request #457 from clong/exi_osquery_fixes 
ESXi and Osquery Fixes
 2020-06-01 22:55:38 -07:00
Chris Long
74dda07942 Update ESXi bootstrap too 2020-06-01 22:53:36 -07:00
Chris Long
7dc7e6916c ESXi RAM Bump, osquery fixes 2020-06-01 22:51:14 -07:00
Chris Long
1980665355 Merge pull request #456 from clong/osquery_status_filter 
Filter noisy osquery status info messages from Splunk
 2020-06-01 21:48:23 -07:00
Chris Long
2823f140d2 Update props.conf 2020-06-01 21:47:32 -07:00
Chris Long
c55b3d6def Update transforms.conf 2020-06-01 21:46:22 -07:00
Chris Long
da366bcce6 Update install-microsoft-ata.ps1 2020-06-01 01:58:53 -07:00
Chris Long
5877ebaf82 BadBlood and Hunting for Beacons acknowledgements 2020-06-01 01:43:58 -07:00
Chris Long
9ddc914c95 Add BadBlood download to install-redteam.ps1 2020-06-01 01:40:54 -07:00
Chris Long
10f260bf73 Update logger_dashboard.xml 2020-06-01 01:21:22 -07:00
Chris Long
dcd69ea6cf Merge pull request #451 from clong/expiration_ps1 
Add Powershell script to resolve expiration issues
 2020-05-19 00:29:07 -07:00
Chris Long
6312f4740b Add Powershell script to resolve expiration issues 2020-05-19 00:26:19 -07:00
Chris Long
d686a50f81 Adding availability_zone to terraform.tfvars.example 
us-west-1a doesn't support t2 or t3 medium instances anymore
 2020-05-11 20:05:01 -07:00
Chris Long
79a2a03b5c Fixing retry logic in install-microsoft-ata.ps1 
Fixes issue #444
 2020-05-11 16:59:50 -07:00
Chris Long
ca515405a5 Update install-redteam.ps1 2020-05-10 12:51:32 -07:00
Chris Long
bb134623b6 Merge pull request #443 from clong/ens5_terraform_adapter 
Update Terraform Network Adapter to ens5 and use t3 instances
 2020-05-09 16:32:51 -07:00
Chris Long
02b12fdb46 Merge branch 'master' into ens5_terraform_adapter 2020-05-09 16:32:43 -07:00
Chris Long
78ff2086b5 16.04 -> 18.04 2020-05-09 16:31:52 -07:00
Chris Long
692265b7c0 Update Terraform Network Adapter to ens5 and use t3 instances where possible 2020-05-09 16:30:11 -07:00
Chris Long
5398841cfe Update bootstrap.sh 2020-05-09 13:38:57 -07:00
Chris Long
50f56a90ee VMware Vagrant Utility 1.0.7 -> 1.0.9 2020-05-09 12:48:02 -07:00
Chris Long
745a4cd81b Merge pull request #441 from clong/vagrant_2_2_9 
Vagrant 2.2.7 -> 2.2.9
 2020-05-09 12:43:53 -07:00
Chris Long
6f27cdb281 Vagrant 2.2.7 -> 2.2.9 2020-05-09 12:43:08 -07:00
Chris Long
2659539afa Update install-redteam.ps1 2020-05-09 12:41:52 -07:00
Chris Long
c8d6cf433d Update install-redteam.ps1 2020-05-07 20:55:10 -07:00
Chris Long
1b64af6e0b Fixing path 2020-05-07 14:18:20 -07:00
Chris Long
614f3148e3 More Defender removal code 2020-05-07 14:07:21 -07:00
Chris Long
7c2006b704 Merge pull request #437 from clong/update_gpo_ena 
Update DC Auditing GPO and Add Packer Script for ENA
 2020-05-03 21:37:54 -07:00
Chris Long
23e8e288f9 Merge branch 'master' into update_gpo_ena 2020-05-03 17:13:59 -07:00
Chris Long
aeecd1b756 Update DC Auditing GPO and Add Packer Script for ENA 2020-05-03 17:12:05 -07:00
Chris Long
9e9120f02b Implementing blacklist on wef_inputs.conf 
Resolving Issue #436
 2020-05-03 17:08:22 -07:00
Chris Long
f0a7b1481f Typo 2020-05-02 22:21:24 -07:00
Chris Long
b314066e06 Fixing Splunk regex 2020-05-02 22:20:48 -07:00
Chris Long
c8514a49a4 Merge pull request #434 from olafhartong/patch-1 
Added missing subscription forward rule
 2020-05-02 12:17:39 -07:00
Olaf Hartong
7476ff94df Added missing subscription forward rule 2020-04-30 21:53:05 +02:00
Chris Long
6de7ffa8d5 Reverting last update to install-redteam.ps1 2020-04-25 23:03:03 -07:00
Chris Long
3f12ac524a Update install-redteam.ps1 2020-04-25 12:20:25 -07:00
Chris Long
7ba7b6904b Merge pull request #431 from clong/update_readme_esxi 
Update README.md and ESXi logger code
 2020-04-23 19:38:06 -07:00
Chris Long
1cb90374f6 Merge branch 'master' into update_readme_esxi 2020-04-23 19:37:58 -07:00
Chris Long
71206dc243 Update README.md and ESXi logger code 2020-04-23 19:35:26 -07:00
Chris Long
9f14610928 Update README.md 2020-04-18 23:23:36 -07:00
Chris Long
203d7a4638 Fixing eth1 ip detection logic 
Interfaces can have multiple IP addresses, causing this step to fail in Virtualbox
 2020-04-18 22:53:35 -07:00
Chris Long
78130b2b78 Merge pull request #427 from clong/nullqueue2 
Add some Splunk nullQueues for noisy events
 2020-04-18 16:00:50 -07:00
Chris Long
d1d0566773 Add some Splunk nullQueues for noisy events 2020-04-18 15:59:54 -07:00