LID DS Recording Framework: Documentation and Installation

LID-DS Recording Framework: Documentation and Installation:

Prerequesites:

• Sysdig (https://sysdig.com/opensource)
• Docker (https://www.docker.com)
• Install python >= 3.7.5
  • sudo apt install python3.7

Installation:

Run install script

sudo ./install.sh

⚠️ Note: if Secure Boot is enabled on your system, sysdig might not be added to trusted software yet. Reinstalling it from packages comes with an automated handler for that. See: official sysdig installation docs

Install python requirements

python3.7 -m pip install -r requirements.txt
python3.7 -m pip install -e .

Build images (per scenario)

sudo ./build_images.sh

Start recording:

argv: 1=warmuptime 2=recordingtime 3=isexploit 4=fullchain example:

sudo $(which python3.7) main.py 5 30 0 0

starts recording with:

• 5sec warmup time
• 30sec recording time
• 0 not using exploit
• 0 not using "realistic" attacker mode

Extra

some useful command for docker:

sudo docker stop $(sudo docker ps -aq)
sudo docker stop $(sudo docker ps -a -q) && sudo docker rm $(sudo docker ps -a -q)
sudo docker network prune