Download Operational Truth™ - Fleet Security EAA Module

Operational Truth™ is a downloadable software platform for continuous compliance. The Fleet Security module (powered by Fleetfolio) must be installed on a local workstation or server environment. The software is not web-based and requires local installation to operate. To install Fleetfolio EAA, users must first set up the required software dependencies and then download and install the primary Fleetfolio EAA application package by following the provided installation instructions.

Overview

The Fleet Security EAA module is a comprehensive endpoint detection and response platform powered by Fleetfolio. It delivers real-time threat analysis, vulnerability scanning, and malware detection with integrated tools for continuous monitoring and threat intelligence. Deploy to your infrastructure for complete data privacy and control.

System Requirements

Operating System: Kali Linux (recommended), macOS 10.15+, Ubuntu 20.04+, Windows 10+ (via WSL)
Runtime Requirements: Deno 2.x+, Go 1.16+, Node.js 16+
Virtualization (Optional): VirtualBox 6.0+ for VM deployment

Installation commands

Workspace Setup

Choose your preferred method to get the Fleet Security EAA module running on your machine.

Option A: Windows WSL (Kali Linux)

To spin up Kali Linux via Windows Subsystem for Linux, run the following command in PowerShell:

wsl --install -d kali-linux

Option B: Virtual Machine (VirtualBox)

Follow these steps to set up a dedicated virtual environment.

Prerequisites

VirtualBox: Download VirtualBox
Visual C++ Dependencies: If you are using Windows as the host machine, you may encounter an error. Download Visual C++ Redistributable Runtimes All-in-One and run install_all.bat.
Kali Linux VM Image: Download Kali Linux VM (VirtualBox, ~3.3 GB, .7z file).
Compression Tool: WinRAR or 7-Zip.

Download Kali Linux

Select Virtual Machine and then VirtualBox. The file will be in .7z format.

Install VirtualBox

Open the installer and follow the default prompts.

Extract and Import

Extract the .7z file.
Inside, find the .vdi file (orange icon) and a .vbox file (blue icon).
Double-click the .vbox file to automatically import the VM into VirtualBox.

Configure the VM

Base Memory: Set to 4096 MB (recommended).
Processor Cores: Set to 2–3 (recommended).
Start the virtual machine.

Username: kali
Password: kali

Switch to Root User

Open the terminal and type:

sudo su

Update the System

sudo apt update && sudo apt upgrade -y && sudo apt full-upgrade -y

Fixing Update Errors: If updates fail, run these fix commands:

# Force HTTPS
sudo sed -i 's|http://http.kali.org|https://http.kali.org|' /etc/apt/sources.list
# Fix missing
sudo apt-get clean && sudo apt-get update --fix-missing
# Re-run
sudo apt update && sudo apt upgrade -y && sudo apt full-upgrade -y

Prerequisite Dependencies

Follow these steps in order to install the required development tools.

Homebrew
Go Language
Deno
Surveilr
Spry

Homebrew

Homebrew installs the stuff you need that Apple (or your Linux system) didn't.

Run this command inside a non-root user terminal.

/bin/bash -c "$(curl -fsSL https://raw.githubusercontent.com/Homebrew/install/HEAD/install.sh)" && \
echo >> /home/kali/.zshrc && \
echo 'eval "$(/home/linuxbrew/.linuxbrew/bin/brew shellenv)"' >> /home/kali/.zshrc && \
eval "$(/home/linuxbrew/.linuxbrew/bin/brew shellenv)" && \
sudo apt-get install -y build-essential && brew install gcc

Go Language

Install the Go programming language compiler:

sudo apt install golang-go -y

Deno

Deno is a modern runtime for JS and TS.

brew install deno

Surveilr

Surveilr is a downloadable single binary that securely runs on Windows, Linux, and MacOS in your infrastructure. Your data is always private and can only be shared if you allow it.

Download and install the surveillance engine:

wget https://github.com/surveilr/packages/releases/download/3.19.0/surveilr_3.19.0_x86_64-unknown-linux-gnu.tar.gz && \
tar -xvf surveilr_3.19.0_x86_64-unknown-linux-gnu.tar.gz && \
mv surveilr /usr/local/bin

Always check for the latest version on the Surveilr Releases Page.

Spry

Spry is a lightweight TypeScript library that treats Markdown as a programmable medium — every fence, section, and directive in your .md file can express behavior, not just formatting. Instead of building new DSLs or YAML pipelines, you describe intent in plain Markdown and let Spry materialize it as code, data, or execution.

Install Spry via Homebrew:

brew install programmablemd/packages/spry

If you face any issues while upgrading Spry, run:

brew uninstall spry
brew untap programmablemd/homebrew-packages
brew install programmablemd/packages/spry

Fix: Accessing Homebrew as Root

If brew is not found after switching to sudo su, run:

sudo su && echo 'eval "$(/home/linuxbrew/.linuxbrew/bin/brew shellenv)"' >> /root/.zshrc && eval "$(/home/linuxbrew/.linuxbrew/bin/brew shellenv)"

Paste it again after switching to the root user

Prerequisite API Keys & Tokens

Store your keys in a .env file for security. These credentials are required for advanced compliance and threat detection features.

WPScan

WPScan CLI tool uses the WordPress Vulnerability Database API to retrieve WordPress vulnerability data in real time.

Visit WPScan Registration.
Generate your API key.
Add to .env:
```
OPSFOLIO_EAA_WP_TOKEN=your_key_here
```

VirusTotal

VirusTotal Analyse suspicious files, domains, IPs and URLs to detect malware and other breaches, automatically share them with the security community.

Visit VirusTotal Signup.
Copy your API key from the dashboard.

Add to .env:

OPSFOLIO_EAA_VIRUSTOTAL_API_KEY=your_key_here

How is this guide?