├── .gitignore ├── README.md ├── Vagrantfile ├── fabfile.py ├── resources ├── elasticsearch │ ├── elasticsearch-client.yml │ ├── elasticsearch.yml │ └── supervisor-elasticsearch.conf ├── hadoop │ ├── core-site.xml │ ├── hdfs-site.xml │ ├── mapred-site.xml │ ├── supervisor-datanode.conf │ ├── supervisor-namenode.conf │ ├── supervisor-resourcemanager.conf │ └── yarn-site.xml ├── hbase │ ├── hbase-site.xml │ ├── supervisor-master.conf │ └── supervisor-regionserver.conf ├── hive │ ├── hive-site.xml │ ├── hive-user.sql │ └── supervisor-hive-metastore.conf ├── kafka │ ├── server.properties │ └── supervisor-kafka.conf ├── opensoc │ ├── config │ │ ├── etc │ │ │ ├── env │ │ │ │ ├── environment_common.conf │ │ │ │ ├── es_connection.conf │ │ │ │ ├── hdfs_connection.conf │ │ │ │ └── mysql_connection.conf │ │ │ └── whitelists │ │ │ │ └── known_hosts.conf │ │ └── topologies │ │ │ ├── bro │ │ │ ├── alerts.xml │ │ │ ├── features_enabled.conf │ │ │ ├── metrics.conf │ │ │ ├── topology.conf │ │ │ └── topology_identifier.conf │ │ │ ├── environment_identifier.conf │ │ │ ├── pcap │ │ │ ├── features_enabled.conf │ │ │ ├── metrics.conf │ │ │ ├── topology.conf │ │ │ └── topology_identifier.conf │ │ │ └── sourcefire │ │ │ ├── alerts.xml │ │ │ ├── features_enabled.conf │ │ │ ├── metrics.conf │ │ │ ├── topology.conf │ │ │ └── topology_identifier.conf │ ├── geo.sql │ ├── hbase-site.xml │ └── hbase_ip_whitelist.rb ├── storm │ ├── supervisor-nimbus-ui.conf │ └── supervisor-worker.conf ├── supervisord.conf ├── upstart-supervisor.conf └── zookeeper │ ├── log4j.properties │ └── supervisor-zookeeper.conf └── scripts ├── closest-mirror.py ├── common.sh ├── init-hadoop.sh ├── setup-elasticsearch.sh ├── setup-geo-enrichment.sh ├── setup-hadoop.sh ├── setup-hbase.sh ├── setup-hive.sh ├── setup-java.sh ├── setup-kafka.sh ├── setup-os.sh ├── setup-storm.sh └── setup-zookeeper.sh /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/.gitignore -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/README.md -------------------------------------------------------------------------------- /Vagrantfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/Vagrantfile -------------------------------------------------------------------------------- /fabfile.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/fabfile.py -------------------------------------------------------------------------------- /resources/elasticsearch/elasticsearch-client.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/elasticsearch/elasticsearch-client.yml -------------------------------------------------------------------------------- /resources/elasticsearch/elasticsearch.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/elasticsearch/elasticsearch.yml -------------------------------------------------------------------------------- /resources/elasticsearch/supervisor-elasticsearch.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/elasticsearch/supervisor-elasticsearch.conf -------------------------------------------------------------------------------- /resources/hadoop/core-site.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/hadoop/core-site.xml -------------------------------------------------------------------------------- /resources/hadoop/hdfs-site.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/hadoop/hdfs-site.xml -------------------------------------------------------------------------------- /resources/hadoop/mapred-site.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/hadoop/mapred-site.xml -------------------------------------------------------------------------------- /resources/hadoop/supervisor-datanode.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/hadoop/supervisor-datanode.conf -------------------------------------------------------------------------------- /resources/hadoop/supervisor-namenode.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/hadoop/supervisor-namenode.conf -------------------------------------------------------------------------------- /resources/hadoop/supervisor-resourcemanager.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/hadoop/supervisor-resourcemanager.conf -------------------------------------------------------------------------------- /resources/hadoop/yarn-site.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/hadoop/yarn-site.xml -------------------------------------------------------------------------------- /resources/hbase/hbase-site.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/hbase/hbase-site.xml -------------------------------------------------------------------------------- /resources/hbase/supervisor-master.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/hbase/supervisor-master.conf -------------------------------------------------------------------------------- /resources/hbase/supervisor-regionserver.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/hbase/supervisor-regionserver.conf -------------------------------------------------------------------------------- /resources/hive/hive-site.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/hive/hive-site.xml -------------------------------------------------------------------------------- /resources/hive/hive-user.sql: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/hive/hive-user.sql -------------------------------------------------------------------------------- /resources/hive/supervisor-hive-metastore.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/hive/supervisor-hive-metastore.conf -------------------------------------------------------------------------------- /resources/kafka/server.properties: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/kafka/server.properties -------------------------------------------------------------------------------- /resources/kafka/supervisor-kafka.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/kafka/supervisor-kafka.conf -------------------------------------------------------------------------------- /resources/opensoc/config/etc/env/environment_common.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/opensoc/config/etc/env/environment_common.conf -------------------------------------------------------------------------------- /resources/opensoc/config/etc/env/es_connection.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/opensoc/config/etc/env/es_connection.conf -------------------------------------------------------------------------------- /resources/opensoc/config/etc/env/hdfs_connection.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/opensoc/config/etc/env/hdfs_connection.conf -------------------------------------------------------------------------------- /resources/opensoc/config/etc/env/mysql_connection.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/opensoc/config/etc/env/mysql_connection.conf -------------------------------------------------------------------------------- /resources/opensoc/config/etc/whitelists/known_hosts.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/opensoc/config/etc/whitelists/known_hosts.conf -------------------------------------------------------------------------------- /resources/opensoc/config/topologies/bro/alerts.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/opensoc/config/topologies/bro/alerts.xml -------------------------------------------------------------------------------- /resources/opensoc/config/topologies/bro/features_enabled.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/opensoc/config/topologies/bro/features_enabled.conf -------------------------------------------------------------------------------- /resources/opensoc/config/topologies/bro/metrics.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/opensoc/config/topologies/bro/metrics.conf -------------------------------------------------------------------------------- /resources/opensoc/config/topologies/bro/topology.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/opensoc/config/topologies/bro/topology.conf -------------------------------------------------------------------------------- /resources/opensoc/config/topologies/bro/topology_identifier.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/opensoc/config/topologies/bro/topology_identifier.conf -------------------------------------------------------------------------------- /resources/opensoc/config/topologies/environment_identifier.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/opensoc/config/topologies/environment_identifier.conf -------------------------------------------------------------------------------- /resources/opensoc/config/topologies/pcap/features_enabled.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/opensoc/config/topologies/pcap/features_enabled.conf -------------------------------------------------------------------------------- /resources/opensoc/config/topologies/pcap/metrics.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/opensoc/config/topologies/pcap/metrics.conf -------------------------------------------------------------------------------- /resources/opensoc/config/topologies/pcap/topology.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/opensoc/config/topologies/pcap/topology.conf -------------------------------------------------------------------------------- /resources/opensoc/config/topologies/pcap/topology_identifier.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/opensoc/config/topologies/pcap/topology_identifier.conf -------------------------------------------------------------------------------- /resources/opensoc/config/topologies/sourcefire/alerts.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/opensoc/config/topologies/sourcefire/alerts.xml -------------------------------------------------------------------------------- /resources/opensoc/config/topologies/sourcefire/features_enabled.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/opensoc/config/topologies/sourcefire/features_enabled.conf -------------------------------------------------------------------------------- /resources/opensoc/config/topologies/sourcefire/metrics.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/opensoc/config/topologies/sourcefire/metrics.conf -------------------------------------------------------------------------------- /resources/opensoc/config/topologies/sourcefire/topology.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/opensoc/config/topologies/sourcefire/topology.conf -------------------------------------------------------------------------------- /resources/opensoc/config/topologies/sourcefire/topology_identifier.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/opensoc/config/topologies/sourcefire/topology_identifier.conf -------------------------------------------------------------------------------- /resources/opensoc/geo.sql: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/opensoc/geo.sql -------------------------------------------------------------------------------- /resources/opensoc/hbase-site.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/opensoc/hbase-site.xml -------------------------------------------------------------------------------- /resources/opensoc/hbase_ip_whitelist.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/opensoc/hbase_ip_whitelist.rb -------------------------------------------------------------------------------- /resources/storm/supervisor-nimbus-ui.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/storm/supervisor-nimbus-ui.conf -------------------------------------------------------------------------------- /resources/storm/supervisor-worker.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/storm/supervisor-worker.conf -------------------------------------------------------------------------------- /resources/supervisord.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/supervisord.conf -------------------------------------------------------------------------------- /resources/upstart-supervisor.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/upstart-supervisor.conf -------------------------------------------------------------------------------- /resources/zookeeper/log4j.properties: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/zookeeper/log4j.properties -------------------------------------------------------------------------------- /resources/zookeeper/supervisor-zookeeper.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/resources/zookeeper/supervisor-zookeeper.conf -------------------------------------------------------------------------------- /scripts/closest-mirror.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/scripts/closest-mirror.py -------------------------------------------------------------------------------- /scripts/common.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/scripts/common.sh -------------------------------------------------------------------------------- /scripts/init-hadoop.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/scripts/init-hadoop.sh -------------------------------------------------------------------------------- /scripts/setup-elasticsearch.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/scripts/setup-elasticsearch.sh -------------------------------------------------------------------------------- /scripts/setup-geo-enrichment.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/scripts/setup-geo-enrichment.sh -------------------------------------------------------------------------------- /scripts/setup-hadoop.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/scripts/setup-hadoop.sh -------------------------------------------------------------------------------- /scripts/setup-hbase.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/scripts/setup-hbase.sh -------------------------------------------------------------------------------- /scripts/setup-hive.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/scripts/setup-hive.sh -------------------------------------------------------------------------------- /scripts/setup-java.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/scripts/setup-java.sh -------------------------------------------------------------------------------- /scripts/setup-kafka.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/scripts/setup-kafka.sh -------------------------------------------------------------------------------- /scripts/setup-os.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/scripts/setup-os.sh -------------------------------------------------------------------------------- /scripts/setup-storm.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/scripts/setup-storm.sh -------------------------------------------------------------------------------- /scripts/setup-zookeeper.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/OpenSOC/opensoc-vagrant/HEAD/scripts/setup-zookeeper.sh --------------------------------------------------------------------------------