mandiant · Ana06 · Sep 29, 2023 · Sep 27, 2023 · Sep 27, 2023
diff --git a/Images/flarevm-background.png b/Images/flarevm-background.png
diff --git a/flarevm.png → Images/flarevm-logo-old.png b/flarevm.png → Images/flarevm-logo-old.png
diff --git a/Images/flarevm-logo.png b/Images/flarevm-logo.png
diff --git a/README.md b/README.md
@@ -1,44 +1,4 @@
-```
-                                                              .;,                  
-                                                            .;oo'                  
-                                                          .,ldo,                   
-                                                         ,lddo;                    
-                                                       'cdddo;                     
-                                                     .codddd:.                     
-                                                   .:odddodc.                      
-                                                 .;oddddddl.                       
-                                               .,ldddddddl'                        
-                                             .,lddddddddo,                         
-                     .;cccccccc;.          .'cdoddddddddolccccccc:.                
-                      ,odddddodd:.       .coododddddddddddddddddo;                 
-                       ,odddddddd:.    .:odddddddddddddddddddddd:.                 
-                        ;odddddddo;  .;oddddddddddddddddddddddd:.                  
-                         ;odddddddo; .,::::::::::::codddddddddc.                   
-                         .:ddddddddo,              'lddddddddc.                    
-                         .cdddddddddo'            .lddddddddl.                     
-                        .ckxdddddddddl.          .cdddddddddl.                     
-                       .:xkkxdddddddodl.        .:dddddddddxkl.                    
-                       :xkkkkxdddddddddc.      .:dddddddddxxkkl.                   
-                      ;xkkkkkxxdddddddddc.     ;dddddddddxkkkkkc.                  
-                     ;xkkkkkkkxllddddddddc.   ;oddddddddxxkkkkxxc.                 
-                    ,dkkkkkkkxc..ldddddddd:..,odddddddoldkkkkkkkx:.                
-                   ,dkxkkkkkkl.  'ldddddddoolodddddddo,.;xkkkkkkkx:                
-                  'dkkkkxkkkl.    'ododdddddddddddddo;   :xkkkkkxkx;               
-                 'dkkkkkkkko.      ,odddddddddddoddo;     :xkkkkkkkx;              
-                .okkkkkkxkd'        ,oddddddddddodd:.     .ckkkkkkkkx,             
-               .okkkkkkkkd,          ;oddddddddddd:.       .lkkkxkkxkd,            
-              .lkkkxkkkkx;            ;oddddddddd:.         .lkkxkkkkkd'           
-             .lkkkkkkkkx;              ;odddddddc.           .okkkkkkkkd'          
-            .lkkkkkkkkx:               .:odddodc.             .okkkkkkxko.         
-           .ckkkkkkkkkc.                .:ddddc.               'dkxxxxxxko.        
-           .;c::cc:c:,.                  .:llc.                 'loooooooo;        
-           ________________________________________________________________        
-                                       Developed by                                
-                                   [email protected]                            
-                                  FLARE Team at Mandiant                           
-           ________________________________________________________________        
-```
-
+![FLARE-VM Logo](Images/flarevm-logo.png)
 # FLARE VM
 Welcome to FLARE VM - a collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering environment on a virtual machine (VM). FLARE VM was designed to solve the problem of reverse engineering tool curation and relies on two main technologies: [Chocolatey](https://chocolatey.org) and [Boxstarter](https://boxstarter.org). Chocolatey is a Windows-based Nuget package management system, where a "package" is essentially a ZIP file containing PowerShell installation scripts that download and configure a specific tool. Boxstarter leverages Chocolatey packages to automate the installation of software and create repeatable, scripted Windows environments.
 

diff --git a/config.xml b/config.xml
@@ -19,9 +19,14 @@
         <package name="cygwin.vm"/>
         <package name="de4dot-cex.vm"/>
         <package name="dependencywalker.vm"/>
+        <package name="dex2jar.vm"/>
+        <package name="didier-stevens-suite.vm"/>
         <package name="die.vm"/>
         <package name="dll-to-exe.vm"/>
+        <package name="dnfile.vm"/>
+        <package name="dnlib.vm"/>
         <package name="dnspyex.vm"/>
+        <package name="dotdumper.vm"/>
         <package name="explorersuite.vm"/>
         <package name="fakenet-ng.vm"/>
         <package name="floss.vm"/>
@@ -30,10 +35,14 @@
         <package name="hashmyfiles.vm"/>
         <package name="hollowshunter.vm"/>
         <package name="hxd.vm"/>
+        <package name="ida.plugin.capa.vm"/>
         <package name="idafree.vm"/>
         <package name="idr.vm"/>
+        <package name="ifpstools.vm"/>
+        <package name="ilspy.vm"/>
         <package name="innoextract.vm"/>
         <package name="innounp.vm"/>
+        <package name="isd.vm"/>
         <package name="libraries.python3.vm"/>
         <package name="malware-jail.vm"/>
         <package name="map.vm"/>
@@ -45,6 +54,7 @@
         <package name="peid.vm"/>
         <package name="pesieve.vm"/>
         <package name="pestudio.vm"/>
+        <package name="pma-labs.vm"/>
         <package name="processdump.vm"/>
         <package name="regshot.vm"/>
         <package name="rundotnetdll.vm"/>
@@ -54,6 +64,7 @@
         <package name="uniextract2.vm"/>
         <package name="upx.vm"/>
         <package name="vcbuildtools.vm"/>
+        <package name="vcredist-all"/>
         <package name="windbg.vm"/>
         <package name="wireshark.vm"/>
         <package name="x64dbg.ollydumpex.vm"/>

diff --git a/install.ps1 b/install.ps1
@@ -879,7 +879,7 @@ VM-Get-Host-Info
 # Download FLARE VM background
 $backgroundImage = "${Env:VM_COMMON_DIR}\background.png"
 if (-not (Test-Path $backgroundImage)) {
-    (New-Object net.webclient).DownloadFile('https://raw.githubusercontent.com/mandiant/flare-vm/main/flarevm.png', $backgroundImage)
+    (New-Object net.webclient).DownloadFile('https://raw.githubusercontent.com/mandiant/flare-vm/main/Images/flarevm-background.png', $backgroundImage)
 }
 
 if (-not $noWait.IsPresent) {