For students using Windows, please make sure you have installed WSL with your favorite Linux distro first.
All students taking my workshop should install the following tools:
For students wishing to participate in the labs to exploit code, you should also install docker:
Consider making a script and dropping it in /usr/local/bin/jd-cli:
#!/bin/sh
java -jar "/opt/jd/jd-cli.jar" $@
Don't forget to make it executable (chmod 755 /usr/local/bin/jd-cli
).
Consider linking ilspycmd in /usr/local/bin/ilspycmd:
ln -s /opt/ILSpy/ICSharpCode.ILSpyCmd/bin/Debug/net6.0/publish/ilspycmd /usr/local/bin/ilspycmd
cd /opt
git clone https://github.com/wireghoul/graudit
# Change to ~/.zshrc if on macOS and using zsh
echo 'PATH="$HOME/graudit:${PATH:+:${PATH}}"; export PATH;' >> ~/.bashrc
# Add this in your .bashrc or .zshrc
export GRDIR=/opt/graudit/signatures
On a Mac, use brew install semgrep
.
On Linux or Windows, use python3 -m pip install semgrep
Once installed, get your CLI app token from your free account on semgrep and login to the CLI with the following cmd:
SEMGREP_APP_TOKEN=<token> semgrep login
To complete the final labs, you will need to have docker and docker-compose installed.
Then you can launch the environment with the following:
git clone https://github.com/snoopysecurity/dvws-node.git
cd dvws-node
docker-compose up