2022-07-13 07:35:21 +02:00
|
|
|
#!/usr/bin/bash
|
2022-07-07 19:59:14 +02:00
|
|
|
#
|
2023-02-13 17:19:00 +01:00
|
|
|
# This file is part of the Pandora-box distribution
|
2022-07-07 19:59:14 +02:00
|
|
|
# Copyright (c) 2022 Didier Barzin.
|
|
|
|
|
#
|
|
|
|
|
# This program is free software: you can redistribute it and/or modify
|
|
|
|
|
# it under the terms of the GNU General Public License as published by
|
|
|
|
|
# the Free Software Foundation, version 3.
|
|
|
|
|
#
|
|
|
|
|
# This program is distributed in the hope that it will be useful, but
|
|
|
|
|
# WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
|
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
|
|
|
# General Public License for more details.
|
|
|
|
|
#
|
|
|
|
|
# You should have received a copy of the GNU General Public License
|
|
|
|
|
# along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
|
|
|
#
|
|
|
|
|
|
|
|
|
|
set -e # stop on error
|
|
|
|
|
set -x # echo on
|
2022-07-06 17:55:07 +02:00
|
|
|
|
2023-02-13 22:10:34 +01:00
|
|
|
#================================
|
|
|
|
|
# Install script for Pandora-Box
|
|
|
|
|
#================================
|
|
|
|
|
|
|
|
|
|
cd /home/$SUDO_USER
|
|
|
|
|
|
|
|
|
|
# remove need restart
|
|
|
|
|
apt remove -y needrestart
|
|
|
|
|
|
|
|
|
|
#---------------------
|
|
|
|
|
# Python
|
|
|
|
|
#---------------------
|
|
|
|
|
apt update && apt upgrade -y
|
|
|
|
|
apt install -y python-is-python3 python3-pip
|
|
|
|
|
apt install -y libssl-dev
|
|
|
|
|
|
|
|
|
|
#---------------------
|
|
|
|
|
# Peotry
|
|
|
|
|
#---------------------
|
2023-03-27 12:51:09 +02:00
|
|
|
su - $SUDO_USER -c "curl -sSL https://install.python-poetry.org | python3 -"
|
|
|
|
|
su - $SUDO_USER -c "poetry --version"
|
2023-02-13 22:10:34 +01:00
|
|
|
|
|
|
|
|
#---------------------
|
|
|
|
|
# REDIS
|
|
|
|
|
#---------------------
|
|
|
|
|
apt install -y build-essential tcl
|
|
|
|
|
|
2023-04-27 13:33:38 +02:00
|
|
|
if [ -d "redis" ];
|
|
|
|
|
then
|
|
|
|
|
cd redis
|
|
|
|
|
else
|
2023-04-27 13:35:58 +02:00
|
|
|
git clone https://github.com/redis/redis.git
|
2023-04-27 13:33:38 +02:00
|
|
|
cd redis
|
2023-04-27 13:35:58 +02:00
|
|
|
git checkout 6.2
|
2023-04-27 13:33:38 +02:00
|
|
|
fi
|
2023-02-13 22:10:34 +01:00
|
|
|
make
|
|
|
|
|
# Optionally, you can run the tests:
|
|
|
|
|
# make test
|
|
|
|
|
cd ..
|
|
|
|
|
|
|
|
|
|
chown -R $SUDO_USER redis
|
|
|
|
|
|
|
|
|
|
#---------------------
|
|
|
|
|
# Kvrocks
|
|
|
|
|
#---------------------
|
|
|
|
|
apt-get update
|
|
|
|
|
apt install -y gcc g++ make libsnappy-dev autoconf automake libtool googletest libgtest-dev
|
|
|
|
|
|
2023-04-27 13:33:38 +02:00
|
|
|
if [ -d "kvrocks" ];
|
|
|
|
|
then
|
|
|
|
|
cd kvrocks
|
|
|
|
|
else
|
2023-04-27 13:35:58 +02:00
|
|
|
git clone --recursive https://github.com/apache/incubator-kvrocks.git kvrocks
|
2023-04-27 13:33:38 +02:00
|
|
|
cd kvrocks
|
2023-04-27 13:35:58 +02:00
|
|
|
git checkout 2.0
|
2023-04-27 13:33:38 +02:00
|
|
|
fi
|
2023-02-13 22:10:34 +01:00
|
|
|
make -j4
|
|
|
|
|
# Optionally, you can run the tests:
|
|
|
|
|
# make test
|
|
|
|
|
cd ..
|
|
|
|
|
|
|
|
|
|
chown -R $SUDO_USER kvrocks
|
|
|
|
|
|
|
|
|
|
#---------------------
|
|
|
|
|
# Pandora
|
|
|
|
|
#---------------------
|
2023-04-27 13:40:40 +02:00
|
|
|
if [! -d "kvrocks" ];
|
|
|
|
|
then
|
|
|
|
|
su - $SUDO_USER -c "git clone https://github.com/pandora-analysis/pandora.git"
|
|
|
|
|
fi
|
2023-02-13 22:10:34 +01:00
|
|
|
|
2023-03-05 15:01:44 +01:00
|
|
|
# fix broken packages
|
|
|
|
|
apt-get install --fix-broken -y
|
|
|
|
|
|
2023-02-13 22:10:34 +01:00
|
|
|
# install packages
|
|
|
|
|
apt install -y python3-dev # for compiling things
|
|
|
|
|
apt install -y libpango-1.0-0 libharfbuzz0b libpangoft2-1.0-0 # For HTML -> PDF
|
|
|
|
|
apt install -y libreoffice-base-nogui libreoffice-calc-nogui libreoffice-draw-nogui libreoffice-impress-nogui libreoffice-math-nogui libreoffice-writer-nogui # For Office -> PDF
|
|
|
|
|
apt install -y exiftool # for extracting exif information
|
|
|
|
|
apt install -y unrar # for extracting rar files
|
|
|
|
|
apt install -y libxml2-dev libxslt1-dev antiword unrtf poppler-utils pstotext tesseract-ocr flac ffmpeg lame libmad0 libsox-fmt-mp3 sox libjpeg-dev swig # for textract
|
2023-03-05 12:27:10 +01:00
|
|
|
apt install -y rsyslog cron # log logging
|
2023-03-10 14:13:22 +01:00
|
|
|
apt install -y rsyslog cron # log logging
|
2023-02-13 22:10:34 +01:00
|
|
|
|
2023-03-05 15:01:44 +01:00
|
|
|
# autoremove old stuff
|
|
|
|
|
apt autoremove -y
|
|
|
|
|
|
2023-02-13 22:10:34 +01:00
|
|
|
# set .env
|
|
|
|
|
cd /home/$SUDO_USER/pandora
|
|
|
|
|
echo PANDORA_HOME="`pwd`" >> .env
|
|
|
|
|
chown $SUDO_USER .env
|
|
|
|
|
|
2023-03-27 12:51:09 +02:00
|
|
|
su - $SUDO_USER -c "cd ~/pandora; poetry install"
|
|
|
|
|
su - $SUDO_USER -c "cd ~/pandora; cp config/generic.json.sample config/generic.json"
|
2023-02-13 22:10:34 +01:00
|
|
|
|
2023-02-19 14:21:54 +00:00
|
|
|
# Copy default config file
|
2023-03-27 12:51:09 +02:00
|
|
|
su - $SUDO_USER -c "cp ~/pandora/config/logging.json.sample ~/pandora/config/logging.json"
|
2023-02-19 14:21:54 +00:00
|
|
|
|
2023-02-13 22:10:34 +01:00
|
|
|
# install yara-python
|
2023-03-27 12:51:09 +02:00
|
|
|
su - $SUDO_USER -c "pip install yara-python"
|
2023-02-13 22:10:34 +01:00
|
|
|
|
|
|
|
|
# ClamAV
|
|
|
|
|
apt-get install -y clamav-daemon
|
|
|
|
|
# In order for the module to work, you need the signatures.
|
|
|
|
|
# Running the command "freshclam" will do it but if the script is already running
|
|
|
|
|
# (it is started by the systemd service clamav-freshclam)
|
|
|
|
|
# You might want to run the commands below:
|
|
|
|
|
systemctl stop clamav-freshclam.service # Stop the service
|
|
|
|
|
freshclam # Run the signatures update
|
|
|
|
|
systemctl start clamav-freshclam.service # Start the service so we keep getting the updates
|
|
|
|
|
|
|
|
|
|
service clamav-daemon start
|
|
|
|
|
|
|
|
|
|
# Comodo
|
|
|
|
|
wget https://download.comodo.com/cis/download/installs/linux/cav-linux_x64.deb
|
|
|
|
|
dpkg --ignore-depends=libssl0.9.8 -i cav-linux_x64.deb
|
|
|
|
|
|
|
|
|
|
wget http://cdn.download.comodo.com/av/updates58/sigs/bases/bases.cav -O /opt/COMODO/scanners/bases.cav
|
|
|
|
|
|
|
|
|
|
# Configure workers
|
2023-03-27 12:51:09 +02:00
|
|
|
# su - $SUDO_USER -c 'cd pandora; for file in pandora/workers/*.sample; do cp -i ${file} ${file%%.sample}; done'
|
2023-02-19 14:21:54 +00:00
|
|
|
|
2023-02-13 22:10:34 +01:00
|
|
|
# Update Pandora
|
2023-03-27 12:51:09 +02:00
|
|
|
su - $SUDO_USER -c 'cd pandora; ../.local/bin/poetry run update --yes'
|
2023-02-13 22:10:34 +01:00
|
|
|
|
2023-03-04 22:53:46 +01:00
|
|
|
# Remove unused workers
|
2023-03-27 12:51:09 +02:00
|
|
|
su - $SUDO_USER -c "rm ~/pandora/pandora/workers/blocklists.*"
|
|
|
|
|
su - $SUDO_USER -c "rm ~/pandora/pandora/workers/hybridanalysis.*"
|
|
|
|
|
su - $SUDO_USER -c "rm ~/pandora/pandora/workers/joesandbox.*"
|
|
|
|
|
su - $SUDO_USER -c "rm ~/pandora/pandora/workers/lookyloo.*"
|
|
|
|
|
su - $SUDO_USER -c "rm ~/pandora/pandora/workers/malwarebazaar.*"
|
|
|
|
|
su - $SUDO_USER -c "rm ~/pandora/pandora/workers/mwdb.*"
|
|
|
|
|
su - $SUDO_USER -c "rm ~/pandora/pandora/workers/ole.*"
|
|
|
|
|
su - $SUDO_USER -c "rm ~/pandora/pandora/workers/preview.*"
|
|
|
|
|
su - $SUDO_USER -c "rm ~/pandora/pandora/workers/virustotal.*"
|
|
|
|
|
su - $SUDO_USER -c "rm ~/pandora/pandora/workers/xml*"
|
2023-03-04 22:53:46 +01:00
|
|
|
|
2023-03-05 11:50:24 +01:00
|
|
|
# Remove files from quarantine after 180 days
|
|
|
|
|
{ crontab -l -u $SUDO_USER; echo '0 * * * * find /var/quarantine/* -type f -mtime +180 -delete '; } | crontab -u $SUDO_USER -
|
|
|
|
|
{ crontab -l -u $SUDO_USER; echo '5 * * * * find /var/quarantine/* -type d -empty -mtime +180 -delete '; } | crontab -u $SUDO_USER -
|
|
|
|
|
|
2023-03-05 12:27:10 +01:00
|
|
|
# Remove old Pandora task files every hour
|
2023-03-05 11:50:24 +01:00
|
|
|
{ crontab -l -u $SUDO_USER; echo '30 * * * * find ~/pandora/tasks/* -type f -mtime +1 -delete '; } | crontab -u $SUDO_USER -
|
|
|
|
|
{ crontab -l -u $SUDO_USER; echo '35 * * * * find ~/pandora/tasks/* -type d -empty -mtime +1 -delete'; } | crontab -u $SUDO_USER -
|
|
|
|
|
|
2023-03-05 13:21:50 +01:00
|
|
|
# Poweroff at 20:00 (green energy)
|
2023-03-28 07:38:19 +02:00
|
|
|
{ crontab -l; echo '0 20 * * * /sbin/poweroff';} | crontab -
|
2023-03-05 13:21:50 +01:00
|
|
|
|
2022-06-28 22:49:48 +02:00
|
|
|
#---------------------
|
2022-07-04 17:29:59 +02:00
|
|
|
# Pandora-box
|
2022-06-28 22:49:48 +02:00
|
|
|
#---------------------
|
2023-02-15 11:25:39 +01:00
|
|
|
cd /home/$SUDO_USER/pandora-box
|
2022-06-28 22:49:48 +02:00
|
|
|
|
|
|
|
|
# Python libraries
|
2023-03-27 12:51:09 +02:00
|
|
|
su - $SUDO_USER -c "pip install pypandora psutil pyudev"
|
2022-06-28 22:49:48 +02:00
|
|
|
|
2023-02-15 15:09:37 +01:00
|
|
|
# create /media/box folder
|
2023-02-19 20:33:32 +01:00
|
|
|
if [ -d "/media/box" ];
|
|
|
|
|
then
|
|
|
|
|
echo "Create /media/box folder."
|
2023-03-10 14:13:22 +01:00
|
|
|
mkdir /media/box
|
2023-02-19 20:33:32 +01:00
|
|
|
else
|
|
|
|
|
echo "No /media/box folder needed."
|
2023-03-10 14:13:22 +01:00
|
|
|
fi
|
2023-02-15 15:09:37 +01:00
|
|
|
|
2022-06-28 22:49:48 +02:00
|
|
|
# Quarantine folder
|
2022-07-04 20:24:06 +02:00
|
|
|
mkdir -p /var/quarantine
|
2022-07-04 17:29:59 +02:00
|
|
|
chown $SUDO_USER /var/quarantine
|
2022-06-28 22:49:48 +02:00
|
|
|
|
2023-02-19 20:22:13 +01:00
|
|
|
# FIM, pmount, psmisc (for killall) and vim
|
2023-03-10 14:13:22 +01:00
|
|
|
apt --fix-broken install -y
|
2023-02-19 20:22:13 +01:00
|
|
|
apt install -y fim pmount psmisc vim
|
2022-06-28 22:49:48 +02:00
|
|
|
|
|
|
|
|
# Suppress all messages from the kernel (and its drivers) except panic messages from appearing on the console.
|
2022-07-04 17:29:59 +02:00
|
|
|
echo "kernel.printk = 3 4 1 3" | tee -a /etc/sysctl.conf
|
2022-07-05 20:14:07 +02:00
|
|
|
# Set Permanently ulimit -n / open files in ubuntu
|
|
|
|
|
echo "fs.file-max = 65535" | tee -a /etc/sysctl.conf
|
2022-06-28 22:49:48 +02:00
|
|
|
|
|
|
|
|
# allow write to /dev/fb0
|
2022-07-04 17:29:59 +02:00
|
|
|
usermod -a -G video $SUDO_USER
|
2022-06-28 22:49:48 +02:00
|
|
|
|
2022-06-30 10:32:30 +02:00
|
|
|
# allow read mouse input
|
2022-07-04 17:29:59 +02:00
|
|
|
usermod -a -G input $SUDO_USER
|
2022-06-30 10:32:30 +02:00
|
|
|
|
2022-07-12 16:31:57 +00:00
|
|
|
# allow read mouse input
|
|
|
|
|
usermod -a -G tty $SUDO_USER
|
|
|
|
|
|
2023-02-22 13:10:31 +01:00
|
|
|
# allow write to /var/log
|
|
|
|
|
usermod -a -G syslog $SUDO_USER
|
|
|
|
|
|
2023-02-22 15:55:18 +01:00
|
|
|
# logrotate
|
|
|
|
|
sudo apt install logrotate
|
|
|
|
|
echo "/var/log/pandora-box.log {" > /etc/logrotate.d/pandora-box
|
|
|
|
|
echo " rotate 12" >> /etc/logrotate.d/pandora-box
|
|
|
|
|
echo " monthly" >> /etc/logrotate.d/pandora-box
|
|
|
|
|
echo " compress" >> /etc/logrotate.d/pandora-box
|
2023-02-22 16:35:38 +01:00
|
|
|
echo " missingok" >> /etc/logrotate.d/pandora-box
|
2023-02-22 15:55:18 +01:00
|
|
|
echo " notifempty" >> /etc/logrotate.d/pandora-box
|
|
|
|
|
echo "}" >> /etc/logrotate.d/pandora-box
|
|
|
|
|
|
2023-03-05 13:49:50 +01:00
|
|
|
echo "/var/log/pandora_message.log {" > /etc/logrotate.d/pandora_message
|
|
|
|
|
echo " rotate 12" >> /etc/logrotate.d/pandora_message
|
|
|
|
|
echo " monthly" >> /etc/logrotate.d/pandora_message
|
|
|
|
|
echo " compress" >> /etc/logrotate.d/pandora_message
|
|
|
|
|
echo " missingok" >> /etc/logrotate.d/pandora_message
|
|
|
|
|
echo " notifempty" >> /etc/logrotate.d/pandora_message
|
|
|
|
|
echo "}" >> /etc/logrotate.d/pandora_message
|
|
|
|
|
|
|
|
|
|
echo "/var/log/pandora_error.log {" > /etc/logrotate.d/pandora_error
|
|
|
|
|
echo " rotate 12" >> /etc/logrotate.d/pandora_error
|
|
|
|
|
echo " monthly" >> /etc/logrotate.d/pandora_error
|
|
|
|
|
echo " compress" >> /etc/logrotate.d/pandora_error
|
|
|
|
|
echo " missingok" >> /etc/logrotate.d/pandora_error
|
|
|
|
|
echo " notifempty" >> /etc/logrotate.d/pandora_error
|
|
|
|
|
echo "}" >> /etc/logrotate.d/pandora_error
|
|
|
|
|
|
2022-07-06 17:55:07 +02:00
|
|
|
# Start Pandora at boot
|
2022-07-06 19:10:16 +02:00
|
|
|
cp pandora.service /etc/systemd/system/pandora.service
|
2022-07-06 18:41:41 +02:00
|
|
|
sed -i "s/_USER_/$SUDO_USER/g" /etc/systemd/system/pandora.service
|
|
|
|
|
systemctl daemon-reload
|
|
|
|
|
systemctl enable pandora
|
2022-06-28 22:49:48 +02:00
|
|
|
|
2022-08-02 22:40:36 +02:00
|
|
|
# Do not print messages on console
|
2023-03-05 16:54:41 +01:00
|
|
|
echo "mesg n" >> /home/$SUDO_USER/.bashrc
|
2022-08-02 22:40:36 +02:00
|
|
|
|
2022-07-06 18:01:45 +02:00
|
|
|
# Start Pandora-box on getty1 at boot
|
2022-07-04 20:24:06 +02:00
|
|
|
mkdir -p /etc/systemd/system/getty@tty1.service.d
|
|
|
|
|
echo "[Service]" > /etc/systemd/system/getty@tty1.service.d/override.conf
|
|
|
|
|
echo "ExecStart=" >> /etc/systemd/system/getty@tty1.service.d/override.conf
|
2023-02-19 15:03:50 +00:00
|
|
|
echo "ExecStart=-/sbin/agetty --autologin pandora --noclear %I $TERM" >> /etc/systemd/system/getty@tty1.service.d/override.conf
|
2023-03-27 12:51:09 +02:00
|
|
|
# echo "ExecStart=-su - pandora -c ./pandora-box/pandora-box.py" >> /etc/systemd/system/getty@tty1.service.d/override.conf
|
2023-02-19 15:03:50 +00:00
|
|
|
|
|
|
|
|
# Start pandora from bashrc
|
2023-03-05 16:54:41 +01:00
|
|
|
echo "export PATH=\"\$HOME/.local/bin:{\$PATH}\"" >> /home/$SUDO_USER/.bashrc
|
2023-03-08 15:59:39 +01:00
|
|
|
echo "exec pandora-box/pandora-box.py" >> /home/$SUDO_USER/.bashrc
|
2022-07-04 20:24:06 +02:00
|
|
|
|
2023-02-13 21:28:53 +01:00
|
|
|
# Copy ini file
|
2023-03-27 12:51:09 +02:00
|
|
|
su - $SUDO_USER -c "cp ~/pandora-box/pandora-box.ini.curses ~/pandora-box/pandora-box.ini"
|
2023-02-13 21:28:53 +01:00
|
|
|
|
|
|
|
|
# Reboot
|
2023-03-10 14:13:22 +01:00
|
|
|
echo "You may reboot the server."
|
