CyberCloud
March 21, 2019 ยท View on GitHub
Semantic Version: 0.9.0
A compilation of open-source technologies which create a virtual security toolbox for red/blue team members. This project is aimed to provide an open-source training ground for individuals, communities, & organizations.
Expertise is needed for protecting medium and large enterprise environments. An effective Cyber Security Strategy requires one to take a Defense in Depth approach, using many more offensive and defensive strategies.
This project provides a virtual arsenal of security tools for researches, practitioners, and students. It's best to practice examine and exploit your assets in a safe environment.
**SIEM Console: ** OSSIM
**Infrastructure Sensors: ** OS-SEC
**Vulnerability Scanner: ** OpenVas, Oswasp ZAP
**ISO27001 Compliance Reporting: ** AlienVault UVM
**Vulnerable App Options: ** Damn Vulnerable Web App, OSWAP Bricks, ++more
**PenTesting Framework: ** Kali, Metasploit
Release Notes
A section which contains all of the techncial nitty-gritty details that most people don't read yet complain when it is not present.
Installation Instructions:
1. Clone the repo
2. Type Vagrant Up
3. Apply puppet provisioning
4. Log into SIEM console
a. Configure IP && Subnet
Option: 0 => 0 => 0 => 1
IP: 192.168.0.12
Subnet: 255.255.255.0
Option: 0 (setup management interface)
Eth2 Checkbox: Checked
b. Apply All changes
c. Log into Siem @ http://192.168.0.12
- default user/pass: admin/1CvL67XCTj5j48vnd7Wg
5. Activate Application Deployment Manifest
Technology Dependencies:
V0.9 - Prototype Complete.
1. Vagrant & Plug-ins (DevOps Automation)
a. openstack (1.1.2)
b. puppet (3.7.4)
c. vagrant-bindfs (0.4.0)
d. vagrant-login (1.0.1, system)
e. vagrant-openstack-plugin (0.11.1)
f. vagrant-share (1.1.3, system)
1a. Vagrantbox.es:
a. chef/centos-6.6
b. ubuntu/trusty64
2. Puppet (System BluePrints )
3. AlienVault UVM w/ Plug-ins:
a. Cisco ASA
b. Cisco PIX
c. Cisco WLC
d. Citrix NetScaler
e. CyberGuard SG565
f. F5 FirePass
g. Fortinet FortiGate
h. Sonic Wall
i. OS-SEC Monitoring
j. Syslog
4. OS-SEC agents (Network & Infrastructure Sensors)
5. DVWA (Extremely Vulnerable Environment)
v1.0 - (Work in Progress): Issues to Resolve:
1. Fully Automated & manual configurations fully documented
2. Fix SSH timeout issue w/ vagrant ossim.box
3. Kali appliance (PenTesting Framework)
4. Metasploitable (Extremely Vulnerable Environment)
V2.0 - Prototype Under Development
1. OpenStack
2. Cassandra
3. Graphite
4. JVM Monitoring using JMXTrans
5. YAML Implementation
v3.0 - Production Proto-type
1. Dedicated BigData Infrastructure
2. Dedicated Computing Infrastructure.
References:
1. Vagrant Cassandra Project @github: bcantoni/vagrant-cassandra
2. Parallel Provisioning: http://joemiller.me/2012/04/26/speeding-up-vagrant-with-parallel-provisioning/