Skip to content

Installation Guide

Jump to bottom
V1D1AN edited this page Jul 21, 2023 · 24 revisions

Prerequisites

Solution works with Linux
⚠️ You must have on your system "docker" with "docker compose v2", and "jq"
For Docker Compose v2, you must go on "https://docs.docker.com/compose/"
For auditbeat, you must have Kernel in the version 5.

On Linux, you must have in the "/etc/sysctl.conf" the line:

vm.max_map_count=262144

Physical

You must have:

  • 64 Go Ram
  • More than 100 Go of HDD in SSD ( Very Important for SSD )
  • 8 cpu
  • 1 network for management
  • 1 network for monitoring

Installation

log in to your system as « root »

git clone https://github.com/V1D1AN/S1EM.git
cd S1EM

After, run the command:

bash 00_create_instance.sh

Clean installation

log in to your system as « root »

cd S1EM
bash 99_cleanup_all.sh

Hosts file

On Linux, add this entry in your /etc/hosts file to access to this solution ( change s1em.cyber.local with the hostname entered during installation ).

# vi /etc/hosts
XXX.XXX.XXX.XXX    s1em.cyber.local

On Windows, add this entry in your hosts file to access to this solution ( change s1em.cyber.local with the hostname entered during installation ).

# notepad C:\Windows\System32\drivers\etc\hosts
XXX.XXX.XXX.XXX    s1em.cyber.local

s1em

Clone this wiki locally