Introduction
Lab Information and Credentials
Prerequisites
Understanding Packer & Vagrant
Basic Vagrant Usage
Continuous Integration
Deployment
MacOS: Virtualbox & VMware
Windows: Virtualbox & VMware
Linux: Virtualbox & VMware
AWS
Azure
ESXi
HyperV
Proxmox
LibVirt
Troubleshooting & Known Issues
Usage
Atomic Red Team
AutorunsToWinEventLog
BadBlood
Exchange Server
Fleet
Microsoft ATA [DEPRECATED]
Mimikatz
osquery
PurpleSharp
Splunk
Suricata
Sysmon
Velociraptor
Windows Event Forwarding
Zeek
Customization
AWS: Building your own AMIs
Adding an Exchange Server to DetectionLab
Building Your Own Packer Boxes
Deploying DetectionLab in a Different AWS Region
Installing the Boss of the SOC (BOTS) Datasets
Use BadBlood to Add Random Users and Groups to Active Directory
Feature Requests
More
DetectionLab Twitter
DetectionLab Github
DetectionLab Slack
Built with
from
Grav
and
Hugo
DetectionLab
> Usage
Atomic Red Team
AutorunsToWinEventLog
BadBlood
Exchange
Fleet
Mimikatz
osquery
PurpleSharp
Splunk
Suricata
Velociraptor
Windows Event Forwarding
Zeek
Usage
Atomic Red Team
AutorunsToWinEventLog
BadBlood
Exchange
Fleet
Mimikatz
osquery
PurpleSharp
Splunk
Suricata
Velociraptor
Windows Event Forwarding
Zeek