{"id":179,"date":"2019-11-10T14:22:49","date_gmt":"2019-11-10T14:22:49","guid":{"rendered":"http:\/\/snehpatel.com\/?p=179"},"modified":"2019-11-10T14:22:49","modified_gmt":"2019-11-10T14:22:49","slug":"install-mozdef-on-ubuntu","status":"publish","type":"post","link":"https:\/\/snehpatel.com\/index.php\/2019\/11\/10\/install-mozdef-on-ubuntu\/","title":{"rendered":"Install MozDef on ubuntu"},"content":{"rendered":"\n\t\t\t\t\n<p>Opensource siem has its own place in the SOC world. Even commercial siem uses Opensource components like elasticsearch, kibana, and logstash. Some of the popular opensource SIEM include OSSIM, The ELK stack, OSSEC, Wazuh, Apache Metron and MozDef by Mozilla. The reason behind writing this post is to help with the installation process of MozDef. Let&#8217;s get started. <\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>First, install docker and other important components for the build<\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>sudo apt-get -y install docker docker.io gcc make build-essential git<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\"><li>Get the docker-compose latest version. The old version installed through default repository will not work<\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>sudo curl -L \"https:\/\/github.com\/docker\/compose\/releases\/download\/1.24.1\/docker-compose-Linux-x86_64\" -o \/usr\/local\/bin\/docker-compose<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\"><li>Now make it executable<\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>sudo chmod +x \/usr\/local\/bin\/docker-compose<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\"><li>Let&#8217;s pull the MozDef git repo now<\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>git clone https:\/\/github.com\/mozilla\/MozDef.git<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\"><li>Remember to start docker service <\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>sudo systemctl enable docker\nsudo systemctl start docker<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\"><li>Extra note: If you want to tweak with some settings for change of ip address and other stuff. Check out {Mozdef}\/docker\/compose\/docker-compose.yml<\/li><\/ul>\n\n\n\n<ul class=\"wp-block-list\"><li>Let&#8217;s change the directory to MozDef and start with our build. Note: Maintain your excitement because it will take some time to make build <\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>cd MozDef\nmake build<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\"><li>Now let&#8217;s run the build be made<\/li><\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>make run<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\"><li>Now just go to <a href=\"http:\/\/localhost\">http:\/\/localhost<\/a> for the main interface<\/li><\/ul>\n\n\n\n<ul class=\"wp-block-list\"><li>Official MozDef documentation &#8211; <a href=\"https:\/\/mozdef.readthedocs.io\/en\/latest\/index.html\">Link<\/a><\/li><li>For more help email me at x786@protonmail.ch<\/li><\/ul>\n\n\n\n<p><\/p>\n\t\t","protected":false},"excerpt":{"rendered":"<p>Opensource siem has its own place in the SOC world. Even commercial siem uses Opensource components like elasticsearch, kibana, and logstash. Some of the popular opensource SIEM include OSSIM, The ELK stack, OSSEC, Wazuh, Apache Metron and MozDef by Mozilla. The reason behind writing this post is to help with the installation process of MozDef. &#8230; <a title=\"Install MozDef on ubuntu\" class=\"read-more\" href=\"https:\/\/snehpatel.com\/index.php\/2019\/11\/10\/install-mozdef-on-ubuntu\/\" aria-label=\"Read more about Install MozDef on ubuntu\">Read more<\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[17,3,5,6,8,9],"tags":[41],"class_list":["post-179","post","type-post","status-publish","format-standard","hentry","category-linux","category-logging","category-mozdef","category-opensource","category-siem","category-systme","tag-mozdef"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.4 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Install MozDef on ubuntu - Sneh Patel<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/snehpatel.com\/index.php\/2019\/11\/10\/install-mozdef-on-ubuntu\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Install MozDef on ubuntu - Sneh Patel\" \/>\n<meta property=\"og:description\" content=\"Opensource siem has its own place in the SOC world. Even commercial siem uses Opensource components like elasticsearch, kibana, and logstash. Some of the popular opensource SIEM include OSSIM, The ELK stack, OSSEC, Wazuh, Apache Metron and MozDef by Mozilla. The reason behind writing this post is to help with the installation process of MozDef. ... Read more\" \/>\n<meta property=\"og:url\" content=\"https:\/\/snehpatel.com\/index.php\/2019\/11\/10\/install-mozdef-on-ubuntu\/\" \/>\n<meta property=\"og:site_name\" content=\"Sneh Patel\" \/>\n<meta property=\"article:published_time\" content=\"2019-11-10T14:22:49+00:00\" \/>\n<meta name=\"author\" content=\"Sneh Patel\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Sneh Patel\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"1 minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/snehpatel.com\\\/index.php\\\/2019\\\/11\\\/10\\\/install-mozdef-on-ubuntu\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/snehpatel.com\\\/index.php\\\/2019\\\/11\\\/10\\\/install-mozdef-on-ubuntu\\\/\"},\"author\":{\"name\":\"Sneh Patel\",\"@id\":\"https:\\\/\\\/snehpatel.com\\\/#\\\/schema\\\/person\\\/a39105bc63f7e11a0e07b12a4c3dda73\"},\"headline\":\"Install MozDef on ubuntu\",\"datePublished\":\"2019-11-10T14:22:49+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/snehpatel.com\\\/index.php\\\/2019\\\/11\\\/10\\\/install-mozdef-on-ubuntu\\\/\"},\"wordCount\":183,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/snehpatel.com\\\/#\\\/schema\\\/person\\\/a39105bc63f7e11a0e07b12a4c3dda73\"},\"keywords\":[\"Mozdef\"],\"articleSection\":[\"Linux\",\"Logging\",\"MozDef\",\"opensource\",\"SIEM\",\"System\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/snehpatel.com\\\/index.php\\\/2019\\\/11\\\/10\\\/install-mozdef-on-ubuntu\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/snehpatel.com\\\/index.php\\\/2019\\\/11\\\/10\\\/install-mozdef-on-ubuntu\\\/\",\"url\":\"https:\\\/\\\/snehpatel.com\\\/index.php\\\/2019\\\/11\\\/10\\\/install-mozdef-on-ubuntu\\\/\",\"name\":\"Install MozDef on ubuntu - Sneh Patel\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/snehpatel.com\\\/#website\"},\"datePublished\":\"2019-11-10T14:22:49+00:00\",\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/snehpatel.com\\\/index.php\\\/2019\\\/11\\\/10\\\/install-mozdef-on-ubuntu\\\/\"]}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/snehpatel.com\\\/#website\",\"url\":\"https:\\\/\\\/snehpatel.com\\\/\",\"name\":\"Sneh Patel\",\"description\":\"Cyber Security Blog\",\"publisher\":{\"@id\":\"https:\\\/\\\/snehpatel.com\\\/#\\\/schema\\\/person\\\/a39105bc63f7e11a0e07b12a4c3dda73\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/snehpatel.com\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":[\"Person\",\"Organization\"],\"@id\":\"https:\\\/\\\/snehpatel.com\\\/#\\\/schema\\\/person\\\/a39105bc63f7e11a0e07b12a4c3dda73\",\"name\":\"Sneh Patel\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/i0.wp.com\\\/snehpatel.com\\\/wp-content\\\/uploads\\\/2020\\\/09\\\/cropped-Slide4-1.jpg?fit=672%2C222&ssl=1\",\"url\":\"https:\\\/\\\/i0.wp.com\\\/snehpatel.com\\\/wp-content\\\/uploads\\\/2020\\\/09\\\/cropped-Slide4-1.jpg?fit=672%2C222&ssl=1\",\"contentUrl\":\"https:\\\/\\\/i0.wp.com\\\/snehpatel.com\\\/wp-content\\\/uploads\\\/2020\\\/09\\\/cropped-Slide4-1.jpg?fit=672%2C222&ssl=1\",\"width\":672,\"height\":222,\"caption\":\"Sneh Patel\"},\"logo\":{\"@id\":\"https:\\\/\\\/i0.wp.com\\\/snehpatel.com\\\/wp-content\\\/uploads\\\/2020\\\/09\\\/cropped-Slide4-1.jpg?fit=672%2C222&ssl=1\"},\"sameAs\":[\"http:\\\/\\\/snehpatel.com\"]}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Install MozDef on ubuntu - Sneh Patel","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/snehpatel.com\/index.php\/2019\/11\/10\/install-mozdef-on-ubuntu\/","og_locale":"en_US","og_type":"article","og_title":"Install MozDef on ubuntu - Sneh Patel","og_description":"Opensource siem has its own place in the SOC world. Even commercial siem uses Opensource components like elasticsearch, kibana, and logstash. Some of the popular opensource SIEM include OSSIM, The ELK stack, OSSEC, Wazuh, Apache Metron and MozDef by Mozilla. The reason behind writing this post is to help with the installation process of MozDef. ... Read more","og_url":"https:\/\/snehpatel.com\/index.php\/2019\/11\/10\/install-mozdef-on-ubuntu\/","og_site_name":"Sneh Patel","article_published_time":"2019-11-10T14:22:49+00:00","author":"Sneh Patel","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Sneh Patel","Est. reading time":"1 minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/snehpatel.com\/index.php\/2019\/11\/10\/install-mozdef-on-ubuntu\/#article","isPartOf":{"@id":"https:\/\/snehpatel.com\/index.php\/2019\/11\/10\/install-mozdef-on-ubuntu\/"},"author":{"name":"Sneh Patel","@id":"https:\/\/snehpatel.com\/#\/schema\/person\/a39105bc63f7e11a0e07b12a4c3dda73"},"headline":"Install MozDef on ubuntu","datePublished":"2019-11-10T14:22:49+00:00","mainEntityOfPage":{"@id":"https:\/\/snehpatel.com\/index.php\/2019\/11\/10\/install-mozdef-on-ubuntu\/"},"wordCount":183,"commentCount":0,"publisher":{"@id":"https:\/\/snehpatel.com\/#\/schema\/person\/a39105bc63f7e11a0e07b12a4c3dda73"},"keywords":["Mozdef"],"articleSection":["Linux","Logging","MozDef","opensource","SIEM","System"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/snehpatel.com\/index.php\/2019\/11\/10\/install-mozdef-on-ubuntu\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/snehpatel.com\/index.php\/2019\/11\/10\/install-mozdef-on-ubuntu\/","url":"https:\/\/snehpatel.com\/index.php\/2019\/11\/10\/install-mozdef-on-ubuntu\/","name":"Install MozDef on ubuntu - Sneh Patel","isPartOf":{"@id":"https:\/\/snehpatel.com\/#website"},"datePublished":"2019-11-10T14:22:49+00:00","inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/snehpatel.com\/index.php\/2019\/11\/10\/install-mozdef-on-ubuntu\/"]}]},{"@type":"WebSite","@id":"https:\/\/snehpatel.com\/#website","url":"https:\/\/snehpatel.com\/","name":"Sneh Patel","description":"Cyber Security Blog","publisher":{"@id":"https:\/\/snehpatel.com\/#\/schema\/person\/a39105bc63f7e11a0e07b12a4c3dda73"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/snehpatel.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":["Person","Organization"],"@id":"https:\/\/snehpatel.com\/#\/schema\/person\/a39105bc63f7e11a0e07b12a4c3dda73","name":"Sneh Patel","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/i0.wp.com\/snehpatel.com\/wp-content\/uploads\/2020\/09\/cropped-Slide4-1.jpg?fit=672%2C222&ssl=1","url":"https:\/\/i0.wp.com\/snehpatel.com\/wp-content\/uploads\/2020\/09\/cropped-Slide4-1.jpg?fit=672%2C222&ssl=1","contentUrl":"https:\/\/i0.wp.com\/snehpatel.com\/wp-content\/uploads\/2020\/09\/cropped-Slide4-1.jpg?fit=672%2C222&ssl=1","width":672,"height":222,"caption":"Sneh Patel"},"logo":{"@id":"https:\/\/i0.wp.com\/snehpatel.com\/wp-content\/uploads\/2020\/09\/cropped-Slide4-1.jpg?fit=672%2C222&ssl=1"},"sameAs":["http:\/\/snehpatel.com"]}]}},"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/snehpatel.com\/index.php\/wp-json\/wp\/v2\/posts\/179","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/snehpatel.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/snehpatel.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/snehpatel.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/snehpatel.com\/index.php\/wp-json\/wp\/v2\/comments?post=179"}],"version-history":[{"count":0,"href":"https:\/\/snehpatel.com\/index.php\/wp-json\/wp\/v2\/posts\/179\/revisions"}],"wp:attachment":[{"href":"https:\/\/snehpatel.com\/index.php\/wp-json\/wp\/v2\/media?parent=179"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/snehpatel.com\/index.php\/wp-json\/wp\/v2\/categories?post=179"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/snehpatel.com\/index.php\/wp-json\/wp\/v2\/tags?post=179"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}