AlienVault Cybersecurity OSSIM

Versions this guide are based on:

Note: This how to is developed for EVE-PRO version. Before you start deploy images to EVE community, please follow steps to upload template and icon in your EVE.

EVE Image Name Downloaded Filename Version vCPUs vRAM Interfaces Console
alienvault-ossim-5.8.5 AlienVault_OSSIM_64bits.iso 5.8.5 4 6144 2 vnc and https://ip
Instructions
Other versions should also be supported following bellow’s procedure.Steps below are based on OSSIM-5.8.5 deployment.

Download ISO From Cybersecurity

If you have not template and image icon for this image, download templateĀ alienvault.yml here and icon alienvault.png download here

Upload template to EVE Location: /opt/unetlab/html/templates/intel

Upload icon to EVE Location: /opt/unetlab/html/images/icons

1. Deployment of OSSIM image

Step 1. SSH to EVE and login as root, from cli and create temporary working directory on the EVE’s root and create folder for new Sophos XG:

mkdir /opt/unetlab/addons/qemu/alienvault-ossim-5.8.5

Step 2. Upload the downloaded AlienVault_OSSIM_64bits.iso image to the /opt/unetlab/addons/qemu/alienvault-ossim-5.8.5 usingĀ  FileZilla or WinSCP.

Step 3. Go to image location, rename uploaded image to cdrom.iso and create image HDD 50Gb:

cd /opt/unetlab/addons/alienvault-ossim-5.8.5

mv AlienVault_OSSIM_64bits.iso cdrom.iso

/opt/qemu/bin/qemu-img create -f qcow2 hda.qcow2 50G


root@eve-ng:/opt/unetlab/addons/qemu/alienvault-ossim-5.8.5# ls -l
total 745672
-rw-r--r-- 1 root root 763363328 May 10 2021 cdrom.iso
-rw-r--r-- 1 root root 197632 May 10 2021 hda.qcow2
root@eve-ng:/opt/unetlab/addons/qemu/alienvault-ossim-5.8.5# 

cd 
Step 4. Create new lab, add AlienVault OSSIM node to topology, and start node
Step 5. Follow install process on the VNC cli
Step 6. Access to OSSIM wia HTTPS IP.