trinitor/DetectionLab
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
581 Commits 1 Branch 0 Tags
a033ea2b602782cab1f1723a4ad89431469e2b9e
Commit Graph

581 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Selora
9f23c7bde2 Fixup: windows2016.json old syntax for CPU and RAM allocation for QEMU fixup 2020-01-15 17:38:58 +00:00
Selora
80f6696034 Fixup: windows2016.json missing user variable 2020-01-15 17:37:24 +00:00
Selora
72ecc00688 Fixup: windows10.json syntax error 2020-01-15 17:33:38 +00:00
Selora
2a6cb92f51 Libvirt provider 
Adding Packer Qemu builder:
* Packer/answer_files/*_virtio: Install the virtio drivers from the ISO (NOT provided)
* windows_*.json needs some manual tweaks to match the virtio drivers ISO path

Adding Vagrant-libvirt provider:
* Uses the QEMU qcow2 images provided by packer to build the DetectionLab
* Vagrantfile needs manual tweaking to match libvirt's host configuration (backing store, network interfaces, etc)

README:
* Added separate README with instructions for libvirt
 2020-01-15 17:28:54 +00:00
Chris Long
4d13f53866 Forcing DNS Server settings on DC for Terraform 
Addresses https://github.com/clong/DetectionLab/issues/370
 2020-01-06 22:36:32 -08:00
Chris Long
85563d7742 Fix issue #362 
https://github.com/clong/DetectionLab/issues/362
 2019-12-21 01:17:32 -08:00
Chris Long
2206c0b944 Merge pull request #365 from clong/invoke_atomictest 
Include Invoke-AtomicRedTeam in Powershell
 2019-12-20 23:50:51 -08:00
Chris Long
5e720ef398 Merge branch 'master' into invoke_atomictest 2019-12-20 23:50:37 -08:00
Chris Long
b5c73ce647 Include Invoke-AtomicTest in Powershell 2019-12-20 23:46:35 -08:00
Chris Long
6d90874599 Fix fleet URL 2019-12-20 22:02:08 -08:00
Chris Long
828447b508 Merge pull request #364 from clong/ubuntu_upgrade 
Logger bump to Ubuntu 18.04 & Migrate to Zeek
 2019-12-20 18:04:16 -08:00
Chris Long
ffbca14bd0 Adding mirrors back 2019-12-20 18:03:48 -08:00
Chris Long
ba7004b283 Merge branch 'master' into ubuntu_upgrade 2019-12-20 15:51:01 -08:00
Chris Long
7e17727cbb Logger bump to Ubuntu 18.04 & Migrate to Zeek 2019-12-20 15:48:13 -08:00
Chris Long
e4bb3c9a43 Update 20-detectionlab 2019-12-18 13:43:21 -08:00
Chris Long
beecfbf2e2 Add overview image back 2019-12-04 21:40:20 -08:00
Chris Long
26895efd42 Merge pull request #354 from clong/remove_splunk_forwarder 
Modify Splunk Forwarding, MOTD, Sysmon
 2019-12-04 21:38:29 -08:00
Chris Long
0393d627ad Convert ADSI:Exists to Get-ADOrganizationalUnit 2019-12-04 18:49:28 -08:00
Chris Long
4a8485c28e Disable IPv6 on Windows adapters 2019-12-04 13:45:43 -08:00
Chris Long
f64ff20aaf Disabling default windows inputs. Adding powershell command for event channel perms 2019-12-04 11:27:35 -08:00
Chris Long
249ce2ec76 Updating channel permissions for Microsoft-Windows-Sysmon 2019-12-03 22:18:20 -08:00
Chris Long
6cb8b1b53d Merge branch 'remove_splunk_forwarder' of https://github.com/clong/detectionlab into remove_splunk_forwarder 2019-12-03 19:57:11 -08:00
Chris Long
ef0c1842cd Merge branch 'master' into remove_splunk_forwarder 2019-12-03 19:54:53 -08:00
Chris Long
f3fa80299f Adding rearm to each Windows host 2019-12-03 19:53:59 -08:00
Chris Long
f7fc93cfb6 Rearm WEF AMI when it's being brought online 2019-12-03 19:46:58 -08:00
Chris Long
a36c90b057 Merge branch 'master' into remove_splunk_forwarder 2019-12-03 00:44:58 -08:00
Chris Long
ee9a1f87fd Removing Splunk forwarder from Windows hosts 2019-12-03 00:42:02 -08:00
Chris Long
79dfed3622 Add files via upload 2019-11-27 01:00:45 -08:00
Chris Long
b5070e593e Updating guest tools 2019-11-19 23:43:06 -08:00
Chris Long
5bcef5e47d Adding new Terraform output for Guacamole 2019-11-19 22:24:23 -08:00
Chris Long
5584f792a3 Merge pull request #351 from clong/guacamole 
Adding Guacamole for multi-machine management
 2019-11-19 21:03:10 -08:00
Chris Long
876e72c822 Merge branch 'master' into guacamole 2019-11-19 21:02:47 -08:00
Chris Long
905eaca9fa Adding Guacamole for multi-machine management 2019-11-19 21:01:19 -08:00
Chris Long
8b96fd110c Update README.md 2019-11-18 21:29:08 -08:00
Chris Long
3db4b4e3c5 Update README.md 2019-11-12 19:50:12 -08:00
Chris Long
9ed0fc884f Merge pull request #344 from clong/redo_dc_auditing 
Multiple fixes for auditing, wireshark
 2019-11-11 23:15:37 -08:00
Chris Long
3140fa5668 Merge branch 'master' into redo_dc_auditing 2019-11-11 23:15:21 -08:00
Chris Long
92af8912aa Revert changes to .gitignore 2019-11-11 23:12:45 -08:00
Chris Long
17e42182ef Adding updated manifests 2019-11-11 23:11:36 -08:00
Chris Long
9f392c76cc Re-create DC Auditing GPO. Update ThreatHunting Splunk App. 2019-11-11 23:01:57 -08:00
Chris Long
17d250f349 Force delete server if the build times out 
Fixes https://github.com/clong/DetectionLab/issues/324
 2019-11-08 11:27:22 -08:00
Chris Long
fc3ffb6761 Update README.md 
Remove GoFundMe, add GitHub sponsor Button
 2019-11-07 23:48:09 -08:00
Chris Long
2b608addb0 Fixing issue #341 
Add TLS1.2 support
 2019-11-07 23:44:03 -08:00
Chris Long
208f1b233d Merge pull request #340 from clong/update_bootstrap 
Updating bootstrap.sh
 2019-11-06 22:21:29 -08:00
Chris Long
0bd64eb04b Updating bootstrap.sh 2019-11-06 22:13:19 -08:00
Chris Long
466b54e385 Installing yq via apt-get 
Fixing the yq issue by using the apt repository
 2019-11-04 22:43:25 -08:00
Chris Long
b0b124243b Updating yq installation check 2019-11-01 08:43:21 -07:00
Chris Long
a9d743ef49 Addressing issue #329 
Thanks to @protodroidbot for the fix!
 2019-10-31 21:33:14 -07:00
Chris Long
69f797a020 Create FUNDING.yml 2019-10-30 00:54:35 -07:00
Chris Long
3c34ded609 Case insensitive version check 
Resolves https://github.com/clong/DetectionLab/issues/326
 2019-10-08 12:00:26 -07:00