Commando - VM 安装指南
Commando - VM 安装指南
https://github.com/mandiant/commando-vm
Pre-Install Procedures
You MUST disable Windows Defender for a smooth install.
You MUST disable Windows Defender for a smooth install. The best way to accomplish this is through Group Policy
在1909及更高版本的Windows中,添加了防篡改保护必须禁用篡改保护,否则将忽略组策略设置
- 打开 Windows 安全中心 (系统搜索栏输入 Windows Security)
- 点击病毒和威胁保护 > 病毒和威胁防护设置 > 管理设置
- 关闭 篡改防护(无需更改任何其他设置(“实时保护”等))
重点:更改组策略设置之前,必须禁用篡改保护。
永久禁用实时保护
- 打开本地组策略编辑器(系统搜索栏输入 gpedit )
- Computer Configuration > Administrative Templates > Windows Components > Microsoft Defender Antivirus > Real-time Protection
- 计算机配置 > 管理模板 > Windows 组件 > Microsoft Defender 防病毒 > 实时保护
- 打开 “关闭实时保护” 选型 ,选择 “已启用”,点击 “应用” 确定。
- 重启系统
执行以下操作前,必须重启
永久禁用微软防病毒
- 打开本地组策略编辑器(系统搜索栏输入 gpedit )
- 计算机配置 > 管理模板 > Windows 组件 > Microsoft Defender 防病毒
- 打开 “关闭 Microsoft Defender 防病毒” 选型 ,选择 “已启用”,点击 “应用” 确定。
- 重启系统
Standard install
- Create and configure a new Windows Virtual Machine
Ensure VM is updated completely. You may have to check for updates, reboot, and check again until no more remain
- Take a snapshot of your machine!
- Download and copy
install.ps1on your newly configured machine. - Open PowerShell as an Administrator
- Unblock the install file by running
Unblock-File .\install.ps1 - Enable script execution by running
Set-ExecutionPolicy Unrestricted -f - Finally, execute the installer script as follows:
.\install.ps1- You can also pass your password as an argument:
.\install.ps1 -password <password>
The script will set up the Boxstarter environment and proceed to download and install the Commando VM environment. You will be prompted for the administrator password in order to automate host restarts during installation. If you do not have a password set, hitting enter when prompted will also work.