1. Home
  2. Docs
  3. Learning Center
  4. Quick Start

Quick Start

The quickest way to see GUARDARA finding some real-life bugs and vulnerabilities is by following the instructions on this page. Alternatively, you can watch the demo video below.

Deployment

Let’s start by deploying GUARDARA. You will need the following:

  • A system with at least 4 GB RAM, with a modern CPU with at least 4 cores dedicated to GUARDARA
  • A supported operating system (see HERE)
  • The GUARDARA installer script and the license file both in the same directory

Please note, the installer script automatically updates the system and installs dependencies, such as Docker. If you are not comfortable with this, you may want to consider deploying GUARDARA in a virtual machine.

Finally, you can deploy GUARDARA by executing the command below.

sudo ./install.sh -i

Once GUARDARA is installed and all the services are up and running visit https://${GUARDARA_IP_ADDRESS}:8443 to perform the initial configuration. Make sure the license file is at hand as you will need to upload it during the setup process to activate GUARDARA.

Check out the relevant section of the Administrator’s Guide HERE should you need help during setup.

Alternatively, you can follow the below videos that guide you through the deployment process of both the Manager and an external Engine.

Manager Deployment

Engine Deployment

Demo Deployment

We have created some Docker containers, each with a vulnerable service. We also included a tool to set up the test related configurations automatically. This section will guide you through how to get the targets set up and the related test configurations imported in just a few minutes.

First, Create an API key with job:writetemplate:writeinventory:read and inventory:write scopes assigned by following the relevant section of the API Documentation API Documentation.

You can download the demos appropriate for the version of your GUARDARA deployment from the Releases page. The deployment instruction for each demo can be found in their respective README.md files.

Run Tests

At this point GUARDARA should be ready and fully configured to test the demo targets set up earlier. Follow the instructions below to start finding vulnerabilities:

  1. Log into GUARDARA. If you do not have an external Engine configured, follow the instructions here to deploy one.
  2. Visit the Projects page, you should see the saved project configurations for the demo(s) imported. If you had to configure an external Engine at step #1, edit your project(s) to make sure the project is assigned to the newly configured Engine.
  3. Go ahead and start the test(s) by clicking on the “Play” button in the project menu.
  4. Having started the test(s), it is time to have a look at how our vulnerability hunting is progressing by visiting the Tests page where you can inspect the run-time status of each active test. Make sure to check out the detailed test status page as well by clicking on the Show Details (eye) icon of the tests.
  5. Click on the red “# Findings” button on the top of the detailed test status page once a vulnerability is found to see the built-in report.
  6. Explore the built-in report and inspect the vulnerability details.

 

Was this article helpful to you? Yes 1 No 1