Thanks Ruben

Thanks for the feedback

Thanks for the feedback Vinyl.

Hello Bader, thank you for taking the time to watch my video. Please can you share the error you are getting and il see how to guide you. Thank you.

Hello Gentjan, Thank you for taking your time to watch our video. Deploy DetectionLab to your local machine with the following prerequisites - Windows, Linux, and MacOS are all supported - 55GB+ of free disk space (Hard drive) - 16GB+ of RAM is highly recommended, If you have less than 16GB, your laptop/PC would struggle running all VM's at the same time. Please let me know if you have more questions and please subscribe.

Hello Tobby, Sorry for the late response. The error you're seeing is because your logger was not properly installed. The logger consists of Splunk Enterprise, Fleet osquery Manager, Zeek, Suricata, Guacamole and Velociraptor server. If vagrant script failed to run properly, you would get errors. Il recommend destroying your logger using the command "vagrant destroy -f logger; vagrant up logger" OR "vagrant destroy -f logger, restart your host machine and run the command "vagrant up logger" again to reinstall your logger VM. Another option is to try the following troubleshooting steps in this link "detectionlab.network/deployment/troubleshooting/". Hopefully that helps with the issue you are facing.

Hi @Aznkhmyboy. Thanks for watching my video. The github for this project is no longer maintained and has not been updated since January 2022, so there are prone to be errors. Some of them could be resolved manually. Could you share the screenshot of the error you got to Bteeinfosec@gmail.com. i can check it and see if it's something i can give you a workaround. Thanks.

Hello Pedro, Thanks for watching my video. Please like and subscribe. Regarding your question, Your Logger most likely did not install correctly. Il recommend destroying it using the vagrant destroy command (Check the end of the video on how to destroy VM's) and rerun the vagrant up logger again. This would save you from manually troubleshooting each application installed on your Ubuntu Logger machine. Hope this helps.

Hello Cesar A. thanks for taking your time to watch my video. I haven't tried installing it on Azure, but il try and make a video on it.

Thanks for the feedback Coolang. Please can you explain what you mean by building the lab locally? Do you mean on a Virtual machines or Hardware. This was built on an on prem VMware Work Station.

@@bteeinfosec Hi Btee, I wonder if we can build the lab locally and automatically using some tools like Ansible

Thanks so much Dan for your awesome feedback. In regards to the error you got, I believe you got this after running the ".\post_build_checks.ps1" script correct? Check if you can access velociraptor using the link " 192.168.56.105:9999" as a first step in troubleshooting. If you can't reach it, there was most likely a problem during the vagrant installation of logger. Other software and services, such as Splunk and Microsoft ATA, should be tested. If they're all up and running and you require Velociraptor in your lab, you'll have to manually reinstall it on your logger or destroy the logger VM using the vagrant destroy -f logger and rerun your vagrant up logger command again. If you do not require Velociraptor in your Lab, other software should work properly without it. Let me know if you have further questions.

Hello Wunder, Sorry for the late response. Thank you for watching my video. Please can you post the error you are facing on the comment section, so I can see how to help. Thanks.

Thanks for the feedback Kamel

Hello Jason. Thanks for watching my video. I have installed and destroyed it multiple times and it still works for me. Sometimes you may need to do some manual troubleshooting though.

Hello Femi, Thank you for watching my video. I reviewed the error you included to your comment. Although I did not try to install it on virtual box, but only on VMware, based on my research, there appears to be a compatibility issue with your vagrant and virtualbox. Try this few steps.. - Try updating your virtual box and try it again - If possible, try uninstalling your virtualbox and reinstalling it again, then try the "vagrant up" command. - There maybe multiple versions of virtualbox installed on your machine, try checking the versions running on you VM. - Not sure what operating system your virtualbox is installed on but you can check this link I added below, multiple people faced the same problems on multiple operating systems with virtual box using the "vagrant up" command and they also added what resolved the problem "github.com/hashicorp/vagrant/issues/8687" Let me know if this helps. Thank you.