Skip to content

Quickstart

John Kennedy edited this page Mar 16, 2021 · 15 revisions

The recommended way to try out ashirt-server is with the provided docker-compose.yml files. This development environment includes seed data to demonstrate application features.

You may also want to look at ashirt and aterm, the client applications.

πŸ˜ƒ 1. Setup

πŸ‘• Clone the repository

git clone https://github.com/theparanoids/ashirt-server.git
cd ashirt-server

πŸ±β€πŸ’» Run development environment

docker-compose up

βœ… Login

Navigate to http://localhost:8080 and login with email albus password albus

πŸ’Ό 2. View Operations

After login you will be presented with the operations view. Operations can be created by clicking the New Operation button. Operations can be edited by clicking the pencil icon in the top-right corner of an operation tile.

πŸ” 3. Browse and Search Evidence

Select an operation to enter timeline view. By default this view shows accumulated evidence in descending order by date. The Filter Timeline bar on top supports free-form queries. A query builder can be access by clicking the pencil icon on the right side of the Filter Timeline bar.

❗4. Review Aggregate Findings

Findings are created from evidence, and inherit all sources and tags. Findings can be created within timeline view by clicking Create Finding in the top-right corner.

πŸ“ˆ 5. Map Operation Velocity

Each operation has a gantt chart that can be accessed by clicking the magnifying glass icon on the operation tile, or within the timeline view.