Skip to content

Web application

Installation

sudo apt install ./intrudect-web-x.y.z.deb

Configuration

Configuration is in /opt/intrudect-web/config.json. The HOMEURL is used by agents to send alerts and request configuration changes. The LISTEN parameter specifies the IP address and port where the web application listens, and you should forward your reverse proxy traffic to this location. Since the web application itself does not have support for TLS, you must set up a reverse proxy, like Nginx or Caddy, in front of it in a production environment.

{
  "HOMEURL": "https://example.com",
  "LISTEN": "127.0.0.1:8080",
  "TIMEZONE": "Europe/Tallinn"
}

Start service

systemctl restart intrudect-web

Logfile

Web server writes additional info to /var/logs/intrudect-web.log

Inital user

Before launching the web application, an initial user and password must be created using the command-line utility.

cd /opt/intrudect-web
./intrudect-cli -cmd add -username <username> -password <passowrd>

Add agents

Point your browser to your Web application hostname and log in. Navigate to "Agents".

agents

Agent configuration

Refer to specif agent configuration in the menu. Example (not default) configuration is provided when adding new agent.

create agent

If there is error in the JSON, congiguration cannot be saved and line containing error is shown

create agent

After agent is added you can use "Download Config" to download agent configuration file. This file now contains agent login information to Web application. Save the config file in the server running this particular agent.

Config files are in the /opt/intrudect-<agentname>/etc/config.json

download config

Adding External Communication Platforms

The Web application can be integrated with external communication platforms such as Slack, Mattermost, and MS Teams. This allows users to receive real-time notifications based on their defined rules.

integrations