Skip to content

Instantly share code, notes, and snippets.

View cyhook's full-sized avatar
🎯
Focusing

Shiyayo cyhook

🎯
Focusing
View GitHub Profile
@cyhook
cyhook / openvas-automate.sh
Created August 22, 2017 08:03 — forked from mgeeky/openvas-automate.sh
OpenVAS automation script.
#!/bin/bash
#
# OpenVAS automation script.
# Mariusz B. / mgeeky, '17
# v0.1
#
trap ctrl_c INT
# --- CONFIGURATION ---
# Bro-IDS Logstash parser
# Parts of this taken from http://www.appliednsm.com/wp-content/uploads/logstash-SObro22-parse.conf_.txt
#Logs being parsed:
#app_stats.log
#conn.log
#dns.log
#dpd.log
#files.log
#http.log
@cyhook
cyhook / gist:f9ed660c7ac50e8e0ca353c6e6cf19b5
Last active September 28, 2017 12:31 — forked from alokjani/gist:d9eda34a1b5ab70a50e8
Howto - Ubuntu 14.04 with Request Tracker and RT for Incident Response

Ubuntu 14.04 Request Tracker RT rt-4.2.14 RT for Incident Response RTIR 4.0.0

Request Tracker Installation

export http_proxy="http://10.x.x.x:3128"
export https_proxy="http://10.x.x.x.x:3128"

Request Tracker Installation on Ubuntu 14.04 with Assets and REST API module

export http_proxy="http://10.x.x.x:3128"
export https_proxy="http://10.x.x.x.x:3128"

Setup the database

GLPI SETUP FUSION INVENTORY PLUGIN

apt -y install dmidecode hwdata ucf hdparm
apt -y install perl libuniversal-require-perl libwww-perl libparse-edid-perl
apt -y install libproc-daemon-perl  libproc-pid-file-perl libfile-which-perl
apt -y install libxml-treepp-perl libyaml-perl libnet-cups-perl libnet-ip-perl
apt -y install libdigest-sha-perl libsocket-getaddrinfo-perl
apt -y install nmap libnet-snmp-perl libcrypt-des-perl libnet-nbname-perl

1. Failed to create Monitoring events errors

[2017-10-03T20:21:09,732][ERROR][logstash.inputs.metrics ] Failed to create monitoring event {:message=>"For path: events", :error=>"LogStash::Instrument::MetricStortricNotFound"}

Add the following line to /etc/elasticsearch/elasticsearch.yml and restart elasticsearch

nano /etc/elasticsearch/elasticsearch.yml 
paste: action.auto_create_index: .security,.security-6,.monitoring*,.watches,.triggered_watches,.watcher-history*
ctrl x --> y --> Enter
service elasticsearch restart

STEP 1: Add a static IP Address

Log into the server add configure the static IP address username: user password: P@$$w0rd123

nano /etc/network/interfaces
iface eth0 inet dhcp              #Replace with: iface eth0 inet static

   address 10.253.0.50
   netmask 255.255.255.0
@cyhook
cyhook / tutorial.md
Last active November 17, 2017 20:13