For students using Windows, please make sure you have installed WSL with your favorite Linux distro first.

All students taking my workshop should install the following tools:

• dotnet
• jd-cli
• ilspycmd (Get v8.2)
• highlight
• graudit
• semgrep

For students wishing to participate in the labs to exploit code, you should also install docker:

• Docker desktop
• docker-compose

Consider making a script and dropping it in /usr/local/bin/jd-cli:

#!/bin/sh

java -jar "/opt/jd/jd-cli.jar" $@

Don't forget to make it executable (chmod 755 /usr/local/bin/jd-cli).

Consider linking ilspycmd in /usr/local/bin/ilspycmd:

ln -s /opt/ILSpy/ICSharpCode.ILSpyCmd/bin/Debug/net6.0/publish/ilspycmd /usr/local/bin/ilspycmd

cd /opt
git clone https://github.com/wireghoul/graudit

# Change to ~/.zshrc if on macOS and using zsh
echo 'PATH="$HOME/graudit:${PATH:+:${PATH}}"; export PATH;' >> ~/.bashrc

# Add this in your .bashrc or .zshrc
export GRDIR=/opt/graudit/signatures

On a Mac, use brew install semgrep.

On Linux or Windows, use python3 -m pip install semgrep

Once installed, get your CLI app token from your free account on semgrep and login to the CLI with the following cmd: SEMGREP_APP_TOKEN=<token> semgrep login

To complete the final labs, you will need to have docker and docker-compose installed.

Then you can launch the environment with the following:

git clone https://github.com/snoopysecurity/dvws-node.git
cd dvws-node
docker-compose up