forked from csirtgadgets/bearded-avenger
-
Notifications
You must be signed in to change notification settings - Fork 0
Ubuntu14LTS
Wes edited this page Jun 4, 2016
·
17 revisions
$ tar -zxvf cif-3.X.X.tar.gz
$ cd cif-3.X.X
$ sudo bash deployment/easybutton.sh
$ sudo su - cif
$ csirtg-smrt -d --test -r /etc/cif/rules/default/csirtg.yml
$ cif --itype ipv4
$ tar -zxvf cif-3.X.X.tar.gz
$ cd cif-3.X.X
$ vagrant up && vagrant ssh
$ workon cif && cd /vagrant
$ mkdir -p log && cp hacking/develop.conf hacking/local.conf
$ cif-store -d --token-create-admin cif.yml
$ cif-store -d --token-create-hunter cif-hunter.yml
$ cif-store -d --token-create-smrt csirtg-smrt.yml
$ supervisord -c hacking/local.conf
$ workon cif && cif -d -p # new window
$ csirtg-smrt --config csirtg-smrt.yml -r rules/default/csirtg.yml -d --test
$ cif --itype ipv4
- install
ansibleandawsvia pip
$ pip install awscli awsebcli ansible>=2.0
- make sure
~/.aws/credentialsis configured properly with adefaultprofile
[default]
region = 'us-east-1'
aws_access_key_id = XXXXXXXX
aws_secret_access_key = XXXXXXXX
- copy
deployment/ubuntu14/aws.yml.exampletodeployment/ubuntu14/aws.ymland fill in the variables with your VPC information
$ tar -zxvf cif-3.X.X.tar.gz
$ cd cif-3.X.X
$ cp deployment/ubuntu14/aws.yml.example deployment/ubuntu14/aws.yml
- execute ansible, takes ~10m to complete..
$ cd deployment/ubuntu14
$ ansible-playbook aws.yml -vv