Installation Guide
Solution works with Linux, docker, and docker-compose.
For auditbeat, you must have Kernel in the version 5.
On Linux, you must have in the "/etc/sysctl.conf" the line:
vm.max_map_count=262144
You must have:
- 16 Go Ram
- 75 Go DD
- 8 cpu
- 1 network for monitoring
You must have:
- 32 Go Ram
- More than 75 Go DD
- 8 cpu
- 1 network for monitoring
git clone https://github.com/V1D1AN/S1EM.git
cd S1EM
After, run the command:
bash 01_deploy.sh
On Linux, add this entry in your /etc/hosts file to access to this solution.
# vi /etc/hosts
XXX.XXX.XXX.XXX s1em.cyber.local
On Windows, add this entry in your hosts file to access to this solution.
# notepad C:\Windows\System32\drivers\etc\hosts
XXX.XXX.XXX.XXX s1em.cyber.local
