WEBVTT

00:00:01.040 --> 00:00:04.160
Now we're in the main repository for this tutorial.

00:00:04.840 --> 00:00:07.750
I'm going to scroll down here a little bit so we can see what's available.

00:00:10.840 --> 00:00:11.360
First off,

00:00:11.360 --> 00:00:14.750
we see some main setup instructions and a GitHub

00:00:14.750 --> 00:00:16.930
Actions Setup Instructions section.

00:00:16.940 --> 00:00:18.760
I'll come back to this in a few moments.

00:00:22.040 --> 00:00:24.050
Obviously, we've got to give a special thanks.

00:00:24.540 --> 00:00:24.980
Also,

00:00:24.980 --> 00:00:27.810
within this course I'm going to be referencing some other

00:00:27.810 --> 00:00:31.710
resources. Some of these you might see in various slides or I

00:00:31.710 --> 00:00:33.580
might just talk about them verbally.

00:00:33.590 --> 00:00:37.580
You can always reference any of the links needed within this READ ME.

00:00:37.580 --> 00:00:38.850
Okay, let's go back to the top.

00:00:39.340 --> 00:00:41.030
So the main setup instructions.

00:00:41.030 --> 00:00:44.830
In this course, we're going to be leveraging Kali Linux.

00:00:44.830 --> 00:00:47.100
This should be an environment that is somewhat

00:00:47.100 --> 00:00:49.580
familiar to security professionals.

00:00:49.590 --> 00:00:52.480
Specifically, we're going to leverage Kali 2020.1.0.

00:00:52.480 --> 00:00:57.750
As far as getting your environment instantiated, you have two options.

00:00:57.750 --> 00:01:02.020
The first option, VM with everything installed, is the preferred method.

00:01:02.020 --> 00:01:06.480
That's because everything has already been baked into the virtual machine.

00:01:06.480 --> 00:01:09.350
Option #2 is to install everything yourself.

00:01:09.350 --> 00:01:10.760
This definitely is doable,

00:01:10.760 --> 00:01:14.040
and we're actually going to be leveraging option #2 so we

00:01:14.040 --> 00:01:16.690
can walk through the install script.

00:01:16.690 --> 00:01:21.270
One other item I wanted to note is the GitHub Actions setup instructions.

00:01:21.270 --> 00:01:23.690
This is a little bit of an advanced area,

00:01:23.690 --> 00:01:26.490
and this tutorial is meant to be very concise.

00:01:26.490 --> 00:01:30.010
So instead of me spending half of the tutorial showing you how to set it up,

00:01:30.010 --> 00:01:32.780
you can also just follow these directions here.

00:01:32.780 --> 00:01:33.600
Okay, great.

00:01:33.600 --> 00:01:35.260
Let's check out the install script.

00:01:35.260 --> 00:01:36.760
Before we check out the install script,

00:01:36.760 --> 00:01:43.660
we need to clone the tutorials repo and cd into the repos directory.

00:01:44.540 --> 00:01:45.820
Okay, nice.

00:01:45.820 --> 00:01:51.190
Let's now check out the install script.

00:01:51.190 --> 00:01:55.360
Okay, lets scroll down a little bit to get into the meat of the install script.

00:01:55.360 --> 00:01:58.330
First, we deduce the current distro's name.

00:01:58.330 --> 00:01:59.740
Then we get into the good stuff,

00:01:59.740 --> 00:02:04.350
and we install Trivy and miscellaneous dependencies needed for Trivy.

00:02:04.350 --> 00:02:07.610
My hope is that you can leverage this for inspiration.

00:02:07.740 --> 00:02:08.009
However,

00:02:08.009 --> 00:02:12.030
let's just say you aren't on a Debian‑based Linux distro, go to the Trivy

00:02:12.030 --> 00:02:14.600
link and check out various installation instructions.

00:02:14.600 --> 00:02:17.740
You can also find this in the course notes.

00:02:17.740 --> 00:02:20.690
We also see container‑diff being installed.

00:02:20.690 --> 00:02:24.820
We're going to be leveraging container‑diff to inspect container images that

00:02:24.820 --> 00:02:29.080
have been tampered with. More on this a little bit later.

00:02:29.090 --> 00:02:31.840
Okay, we install Docker if it's needed, and that's

00:02:31.840 --> 00:02:34.710
about it. And we get out of the script.

00:02:34.710 --> 00:02:41.260
All right, let's run the installer. Bingo, installation finished.