[TOOLS]
DESCRIPTION:INetSim
SETTINGS: 1. Edit the conf file # sudo vi /etc/inetsim/inetsim.conf 2. Uncomment "start_service dns" to enable the DNS usage by default you will see [http,https,smtp.smtps,pop3,pop3s,ftp,ftps] - all are needed. 3. Uncomment "service_bind_address", set the IP to: 0.0.0.0 4. Uncomment "dns_default_ip", set the IP to: 10.10.10.3 [REMnux IP]FlareVM
SETTINGS: 1. Download the .iso from here windows 10 - Download !! 2. Create the Windows VM (tested with Windows Pro for WorkStations) 3. Disable the windows defender feature *all possible features, some of them... 3.1. Disable real time protection 3.2. Disable cloud-delivered protection 3.3. Disable automatic sample submission 3.4. Add the C:\ directory to the exclusion list 4. Take a snapshot of your VM 5. Start your VM, open powershell as "administrator" 6. Set execution policy as unrestricted [Set-ExecutionPolicy Unrestricted], select "A" to select "All"... 7. Download the powershell script install.ps1 # wget https://github.com/fireeye/flare-vm/raw/master/install.ps1 -UseBasicParsing -outFile C:\Users\FlareVM\Desktop\install.ps1 Flags: -UseBasicParsing = use basic parsing -outFile = downloading the file to a specific location 8. install the script # ./install.ps1
©® - 2023/2024.