VSphere version
Not sure how this issue process works (new-ish to Git). I was interested in deploying this SOC in my environment (VMware), so I wrote some instructions. Other than the hypervisor-specific steps, most of the tasks can be done on any platform. I was unable to get Beats working on OPNsense, and I used more current versions of some of the software. But all other components were successfully deployed. I even included sections for SOC Analyst workstations and remote network sensors. Working on adding SSO and case management to the deployment.
If this post is inappropriate, I understand if it's removed. Just wanting to contribute to the community, that's all.