Add files via upload

setup/so-analyst

@@ -15,6 +15,11 @@
 #    You should have received a copy of the GNU General Public License
 #    along with this program.  If not, see <http://www.gnu.org/licenses/>.
 
+if [ "$(id -u)" -ne 0 ]; then
+	echo "This script must be run using sudo!"
+	exit 1
+fi
+
 # Install misc utils
 yum -y install wget curl unzip epel-release;
 
@@ -26,7 +31,7 @@ ln -sf /lib/systemd/system/graphical.target /etc/systemd/system/default.target;
 
 # Install Mono - prereq for NetworkMiner
 rpmkeys --import "http://pool.sks-keyservers.net/pks/lookup?op=get&search=0x3fa7e0328081bff6a14da29aa6a19b38d3d831ef";
-su -c 'curl https://download.mono-project.com/repo/centos7-stable.repo | tee /etc/yum.repos.d/mono-centos7-stable.repo';
+curl https://download.mono-project.com/repo/centos7-stable.repo | tee /etc/yum.repos.d/mono-centos7-stable.repo;
 yum -y install mono-devel;
 
 # Install NetworkMiner
@@ -34,10 +39,15 @@ yum -y install libcanberra-gtk2;
 wget https://www.netresec.com/?download=NetworkMiner -O /tmp/nm.zip;
 unzip /tmp/nm.zip -d /opt/;
 cd /opt/NetworkMiner*;
-sudo chmod +x NetworkMiner.exe;
+chmod +x NetworkMiner.exe;
-sudo chmod -R go+w AssembledFiles/;
+chmod -R go+w AssembledFiles/;
-sudo chmod -R go+w Captures/;
+chmod -R go+w Captures/;
 rm /tmp/nm.zip;
+cat << EOF >> /bin/networkminer
+#!/bin/bash
+/bin/mono /opt/NetworkMiner_2-5/NetworkMiner.exe \$@ --noupdatecheck
+EOF
+chmod +x /bin/networkminer
 
 # Install Wireshark for Gnome
 yum -y install wireshark-gnome; 
@@ -73,12 +83,10 @@ yum -y install tcpxtract;
 yum -y install whois;
 
 # Install foremost
-sudo yum -y install https://forensics.cert.org/centos/cert/7/x86_64//foremost-1.5.7-13.1.el7.x86_64.rpm;
+yum -y install https://forensics.cert.org/centos/cert/7/x86_64//foremost-1.5.7-13.1.el7.x86_64.rpm;
 
-# Install Google Chrome
+# Install chromium
-wget https://dl.google.com/linux/direct/google-chrome-stable_current_x86_64.rpm;
+yum -y install chromium;
-yum -y localinstall google-chrome-stable_current_x86_64.rpm;
-rm google-chrome-stable_current_x86_64.rpm;
 
 # Install tcpstat
 yum -y install https://github.com/Security-Onion-Solutions/securityonion-docker-rpm/releases/download/securityonion-tcpstat-1.5.0/securityonion-tcpstat-1.5.0.rpm;
@@ -88,7 +96,7 @@ yum -y install https://github.com/Security-Onion-Solutions/securityonion-docker-
 
 # Install sslsplit
 yum -y install libevent;
-yum -y install https://github.com/Security-Onion-Solutions/securityonion-docker-rpm/releases/download/securityonion-sslsplit-0.5.5/securityonion-sslsplit-0.5.5.rpm;
+yum -y install sslsplit;
 
 # Install Bit-Twist
 yum -y install https://github.com/Security-Onion-Solutions/securityonion-docker-rpm/releases/download/securityonion-bittwist-2.0.0/securityonion-bittwist-2.0.0.rpm;
@@ -99,4 +107,9 @@ yum -y install https://github.com/Security-Onion-Solutions/securityonion-docker-
 
 cp ../files/analyst/README /;
 
+echo
+echo "Analyst workstation has been installed!"
+echo "Press ENTER to reboot or Ctrl-C to cancel."
+read pause
+
 reboot;