Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- root@LAPTOP-HT4TGVCP C:\Users\root\git\detectionlab\DetectionLab>git pull
- remote: Enumerating objects: 212, done.
- remote: Counting objects: 100% (212/212), done.
- remote: Compressing objects: 100% (31/31), done.
- remote: Total 581 (delta 187), reused 191 (delta 181), pack-reused 369
- Receiving objects: 100% (581/581), 441.52 KiB | 6.13 MiB/s, done.
- Resolving deltas: 100% (367/367), completed with 64 local objects.
- From https://github.com/clong/DetectionLab
- 1ab3e4c..b98cd34 master -> origin/master
- * [new branch] apt-fast -> origin/apt-fast
- * [new branch] atomic_red_team -> origin/atomic_red_team
- * [new branch] bootstrap_update -> origin/bootstrap_update
- * [new branch] caldera2 -> origin/caldera2
- * [new branch] configure_ou -> origin/configure_ou
- * [new branch] deprecate_vmware_fusion -> origin/deprecate_vmware_fusion
- * [new branch] fix_caldera_terraform -> origin/fix_caldera_terraform
- * [new branch] fix_issues_apr -> origin/fix_issues_apr
- * [new branch] fix_wef_inputs -> origin/fix_wef_inputs
- * [new branch] ja3 -> origin/ja3
- * [new branch] march_update_1 -> origin/march_update_1
- * [new branch] remove_method_folder -> origin/remove_method_folder
- * [new branch] remove_tf_datasources -> origin/remove_tf_datasources
- * [new branch] shutup_10 -> origin/shutup_10
- * [new branch] terraform_docs -> origin/terraform_docs
- * [new branch] terraform_prebuilt_amis -> origin/terraform_prebuilt_amis
- * [new branch] tf_refresh -> origin/tf_refresh
- * [new branch] update_win10_march -> origin/update_win10_march
- * [new branch] vagrant_cloud -> origin/vagrant_cloud
- * [new branch] vagrantfile_prebuilt -> origin/vagrantfile_prebuilt
- error: Your local changes to the following files would be overwritten by merge:
- Vagrant/Vagrantfile
- Please commit your changes or stash them before you merge.
- Aborting
- Updating 1ab3e4c..b98cd34
- root@LAPTOP-HT4TGVCP C:\Users\root\git\detectionlab\DetectionLab>dir Vagrant
- Volume in drive C is Windows
- Volume Serial Number is DA96-749D
- Directory of C:\Users\root\git\detectionlab\DetectionLab\Vagrant
- 01/28/2019 11:54 AM <DIR> .
- 01/28/2019 11:54 AM <DIR> ..
- 01/27/2019 12:48 PM <DIR> .vagrant
- 01/27/2019 12:16 PM 16,404 bootstrap.sh
- 01/27/2019 12:16 PM <DIR> resources
- 01/27/2019 12:16 PM <DIR> scripts
- 01/29/2019 12:20 PM 11,854 Vagrantfile
- 01/28/2019 11:54 AM 10,866 Vagrantfile.orig
- 01/27/2019 01:40 PM 696,392 vagrant_up_dc.log
- 01/27/2019 01:19 PM 3,605,114 vagrant_up_logger.log
- 01/27/2019 02:38 PM 728,194 vagrant_up_wef.log
- 01/27/2019 02:59 PM 14,362 vagrant_up_win10.log
- 7 File(s) 5,083,186 bytes
- 5 Dir(s) 404,314,861,568 bytes free
- root@LAPTOP-HT4TGVCP C:\Users\root\git\detectionlab\DetectionLab>move Vagrant\Vagrantfile c:\Users\root\
- 1 file(s) moved.
- root@LAPTOP-HT4TGVCP C:\Users\root\git\detectionlab\DetectionLab>rename Vagrant\Vagrantfile.orig Vagrantfile
- root@LAPTOP-HT4TGVCP C:\Users\root\git\detectionlab\DetectionLab>dir Vagrant
- Volume in drive C is Windows
- Volume Serial Number is DA96-749D
- Directory of C:\Users\root\git\detectionlab\DetectionLab\Vagrant
- 05/17/2019 08:15 AM <DIR> .
- 05/17/2019 08:15 AM <DIR> ..
- 01/27/2019 12:48 PM <DIR> .vagrant
- 01/27/2019 12:16 PM 16,404 bootstrap.sh
- 01/27/2019 12:16 PM <DIR> resources
- 01/27/2019 12:16 PM <DIR> scripts
- 01/28/2019 11:54 AM 10,866 Vagrantfile
- 01/27/2019 01:40 PM 696,392 vagrant_up_dc.log
- 01/27/2019 01:19 PM 3,605,114 vagrant_up_logger.log
- 01/27/2019 02:38 PM 728,194 vagrant_up_wef.log
- 01/27/2019 02:59 PM 14,362 vagrant_up_win10.log
- 6 File(s) 5,071,332 bytes
- 5 Dir(s) 404,314,857,472 bytes free
- root@LAPTOP-HT4TGVCP C:\Users\root\git\detectionlab\DetectionLab>git pull
- Updating 1ab3e4c..b98cd34
- Fast-forward
- .github/issue_template.md | 16 ++
- .gitignore | 10 +
- Packer/floppy/PinTo10.exe | Bin
- Packer/floppy/WindowsPowershell.lnk | Bin
- Packer/scripts/MakeWindows10GreatAgain.ps1 | 0
- Packer/scripts/MakeWindows10GreatAgain.reg | 0
- Packer/scripts/compact.bat | 33 ++-
- Packer/scripts/rearm-windows.ps1 | 0
- Packer/scripts/sysprep.bat | 0
- Packer/scripts/vm-guest-tools.bat | 48 ++---
- README.md | 88 ++++----
- Terraform/Method1/terraform.tfvars | 17 --
- Terraform/Method1/vm_import/logger.json | 9 -
- Terraform/Pre-Built_AMIs.md | 25 +++
- Terraform/README.md | 32 +++
- Terraform/Terraform.md | 21 --
- Terraform/{Method1/Method1.md => VM_to_AMIs.md} | 24 +--
- Terraform/{Method1 => }/main.tf | 102 +++++-----
- Terraform/outputs.tf | 31 +++
- Terraform/terraform.tfvars.example | 7 +
- Terraform/variables.tf | 84 ++++++++
- Terraform/{Method1 => }/vm_import/dc.json | 0
- Terraform/{Method1 => }/vm_import/role-policy.json | 0
- .../{Method1 => }/vm_import/trust-policy.json | 0
- Terraform/{Method1 => }/vm_import/wef.json | 0
- Terraform/{Method1 => }/vm_import/win10.json | 0
- Vagrant/Vagrantfile | 63 ++----
- Vagrant/Vagrantfile_Minimum | 173 ++++++++++++++++
- Vagrant/Vagrantfile_Prebuilt | 120 +++++++++++
- Vagrant/bootstrap.sh | 224 ++++++++++++++-------
- Vagrant/resources/GPO/rdp_users/manifest.xml | 1 +
- .../Backup.xml | 20 ++
- .../microsoft/windows nt/SecEdit/GptTmpl.inf | Bin 0 -> 384 bytes
- .../bkupInfo.xml | 1 +
- .../gpreport.xml | Bin 0 -> 18348 bytes
- Vagrant/resources/caldera/caldera.service | 11 -
- Vagrant/resources/caldera/mongod.service | 12 --
- Vagrant/resources/splunk_forwarder/wef_inputs.conf | 27 +++
- .../splunk_server/asn-lookup-generator_012.tgz | Bin 102011 -> 0 bytes
- .../splunk_server/asn-lookup-generator_100.tgz | Bin 0 -> 102270 bytes
- Vagrant/resources/splunk_server/props.conf | 10 +-
- .../resources/splunk_server/threathunting_11.tgz | Bin 56718 -> 0 bytes
- .../resources/splunk_server/threathunting_12.tgz | Bin 0 -> 55432 bytes
- Vagrant/resources/splunk_server/transforms.conf | 2 +-
- Vagrant/resources/windows/MenuSettings.xml | 5 +
- Vagrant/resources/windows/TaskManager.reg | 156 ++++++++++++++
- Vagrant/resources/windows/background.bmp | Bin 0 -> 6706110 bytes
- Vagrant/resources/windows/shutup10.cfg | 128 ++++++++++++
- Vagrant/scripts/MakeWindows10GreatAgain.ps1 | 28 ++-
- Vagrant/scripts/bginfo.bgi | Bin 1440 -> 1588 bytes
- Vagrant/scripts/configure-AuditingPolicyGPOs.ps1 | 9 +-
- Vagrant/scripts/configure-ou.ps1 | 27 ++-
- Vagrant/scripts/configure-powershelllogging.ps1 | 12 +-
- .../scripts/configure-pslogstranscriptsshare.ps1 | 2 +-
- Vagrant/scripts/configure-rdp-user-gpo.ps1 | 29 +++
- Vagrant/scripts/configure-wef-gpo.ps1 | 17 +-
- Vagrant/scripts/create-domain.ps1 | 18 +-
- Vagrant/scripts/download_palantir_osquery.ps1 | 4 +-
- Vagrant/scripts/download_palantir_wef.ps1 | 4 +-
- Vagrant/scripts/fix-second-network.ps1 | 1 +
- Vagrant/scripts/install-autorunstowineventlog.ps1 | 2 +-
- Vagrant/scripts/install-bginfo.ps1 | 1 +
- Vagrant/scripts/install-caldera-agent.ps1 | 35 ----
- Vagrant/scripts/install-choco-extras.ps1 | 16 ++
- Vagrant/scripts/install-inputsconf.ps1 | 30 +--
- Vagrant/scripts/install-microsoft-ata.ps1 | 32 +--
- Vagrant/scripts/install-osquery.ps1 | 4 +-
- Vagrant/scripts/install-redteam.ps1 | 51 +++++
- Vagrant/scripts/install-splunkuf.ps1 | 4 +-
- Vagrant/scripts/install-sysinternals.ps1 | 19 +-
- Vagrant/scripts/install-utilities.ps1 | 82 ++------
- Vagrant/scripts/install-wefsubscriptions.ps1 | 27 +--
- Vagrant/scripts/install-windows_ta.ps1 | 8 +-
- Vagrant/scripts/join-domain.ps1 | 6 +-
- Vagrant/scripts/provision.ps1 | 20 +-
- build.ps1 | 206 +++++++------------
- build.sh | 107 +++-------
- ci/README.md | 6 +-
- ci/build_machine_bootstrap.sh | 34 +++-
- ci/circle_workflows/packer_and_vagrant_changes.sh | 18 +-
- ci/circle_workflows/packer_changes.sh | 28 +--
- ci/circle_workflows/vagrant_changes.sh | 49 +++--
- ci/manual_machine_bootstrap.sh | 53 +++++
- ci/manual_machine_bootstrap_vmware.sh | 63 ++++++
- img/DetectionLab.png | Bin 0 -> 106161 bytes
- 85 files changed, 1719 insertions(+), 833 deletions(-)
- mode change 100644 => 100755 Packer/floppy/PinTo10.exe
- mode change 100644 => 100755 Packer/floppy/WindowsPowershell.lnk
- mode change 100644 => 100755 Packer/scripts/MakeWindows10GreatAgain.ps1
- mode change 100644 => 100755 Packer/scripts/MakeWindows10GreatAgain.reg
- mode change 100644 => 100755 Packer/scripts/rearm-windows.ps1
- mode change 100644 => 100755 Packer/scripts/sysprep.bat
- delete mode 100644 Terraform/Method1/terraform.tfvars
- delete mode 100644 Terraform/Method1/vm_import/logger.json
- create mode 100644 Terraform/Pre-Built_AMIs.md
- create mode 100644 Terraform/README.md
- rename Terraform/{Method1 => }/main.tf (60%)
- create mode 100644 Terraform/outputs.tf
- create mode 100644 Terraform/terraform.tfvars.example
- create mode 100644 Terraform/variables.tf
- rename Terraform/{Method1 => }/vm_import/dc.json (100%)
- rename Terraform/{Method1 => }/vm_import/role-policy.json (100%)
- rename Terraform/{Method1 => }/vm_import/trust-policy.json (100%)
- rename Terraform/{Method1 => }/vm_import/role-policy.json (100%)
- rename Terraform/{Method1 => }/vm_import/trust-policy.json (100%)
- rename Terraform/{Method1 => }/vm_import/wef.json (100%)
- rename Terraform/{Method1 => }/vm_import/win10.json (100%)
- create mode 100644 Vagrant/Vagrantfile_Minimum
- create mode 100644 Vagrant/Vagrantfile_Prebuilt
- create mode 100644 Vagrant/resources/GPO/rdp_users/manifest.xml
- create mode 100644 Vagrant/resources/GPO/rdp_users/{87A41109-E0FA-4D74-BE50-9ED009D4BAAF}/Backup.xml
- create mode 100644 Vagrant/resources/GPO/rdp_users/{87A41109-E0FA-4D74-BE50-9ED009D4BAAF}/DomainSysvol/GPO/Machine/microsoft/windows nt/SecEdit/GptTmpl.in
- f
- create mode 100644 Vagrant/resources/GPO/rdp_users/{87A41109-E0FA-4D74-BE50-9ED009D4BAAF}/bkupInfo.xml
- create mode 100644 Vagrant/resources/GPO/rdp_users/{87A41109-E0FA-4D74-BE50-9ED009D4BAAF}/gpreport.xml
- delete mode 100644 Vagrant/resources/caldera/caldera.service
- delete mode 100644 Vagrant/resources/caldera/mongod.service
- delete mode 100644 Vagrant/resources/splunk_server/asn-lookup-generator_012.tgz
- create mode 100644 Vagrant/resources/splunk_server/asn-lookup-generator_100.tgz
- delete mode 100644 Vagrant/resources/splunk_server/threathunting_11.tgz
- create mode 100644 Vagrant/resources/splunk_server/threathunting_12.tgz
- create mode 100755 Vagrant/resources/windows/MenuSettings.xml
- create mode 100644 Vagrant/resources/windows/TaskManager.reg
- create mode 100644 Vagrant/resources/windows/background.bmp
- create mode 100755 Vagrant/resources/windows/shutup10.cfg
- create mode 100644 Vagrant/scripts/configure-rdp-user-gpo.ps1
- delete mode 100644 Vagrant/scripts/install-caldera-agent.ps1
- create mode 100644 Vagrant/scripts/install-choco-extras.ps1
- create mode 100644 Vagrant/scripts/install-redteam.ps1
- create mode 100644 ci/manual_machine_bootstrap.sh
- create mode 100644 ci/manual_machine_bootstrap_vmware.sh
- create mode 100644 img/DetectionLab.png
- root@LAPTOP-HT4TGVCP C:\Users\root\git\detectionlab\DetectionLab>vagrant up
- Bringing machine 'logger' up with 'virtualbox' provider...
- Bringing machine 'dc' up with 'virtualbox' provider...
- Bringing machine 'wef' up with 'virtualbox' provider...
- Bringing machine 'win10' up with 'virtualbox' provider...
- There are errors in the configuration of this machine. Please fix
- the following errors and try again:
- shell provisioner:
- * `path` for shell provisioner does not exist on the host system: C:/Users/root/bootstrap.sh
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement