cs_training_git

1st Part

Setup your local directory

mkdir github && cd github

Clone Repository

git clone https://github.com/jzandona/cs_training_git && cd cs_training_git

Try pull

git pull

View top 10 lines of file

head rules/crowdstrike_rules/crowdstrike_dns_request.yml

Update Rule ID and Description

vim rules/crowdstrike_rules/crowdstrike_dns_request.yml

or

open -a TextEdit rules/crowdstrike_rules/crowdstrike_dns_request.yml

2nd part

Check Connection

panther_analysis_tool check-connection --api-host https://api.papaya-junior.runpanther.net/public/graphql --api-token ADD_TOKEN

Upload Detection

panther_analysis_tool upload --api-host https://api.papaya-junior.runpanther.net/public/graphql --api-token ADD_TOKEN

Troubleshooting

panther_analysis_tool not found

If error says command not found: panther_analysis_tool

Try using: export PATH="/Users/$LOGNAME/Library/Python/3.9/bin:$PATH"

Upgrading panther_analysis_tool

pip install --upgrade panther_analysis_tool

Vim

i - insert before the cursor

escape - exit insert mode

:wq - save and quit

If you dont have arrow keys h - move cursor left

j - move cursor down

k - move cursor up

l - move cursor right

Vim Cheatsheet

3rd Part (Take Home Challenge)

Push a change to this repository.

Hint: Requires Github Account

1. You will need to create a branch and make your changes within the branch

2. Publish the branch to the this repo

3. Create a Pull Request on the branch to merge into main