Update installer to organize packages by categories

[sara-rn]

Update installer so that after the initial form to set up the environmental variables a new window displays all the packages grouped by category.

• The packages from config.xml need to be selected by default.
• The option to select all the packages from a specific category, for example if the category is a checkbox, doesn't work well as the checkboxes need to be generated dynamically. Currently each category is displayed in a label.

Closes #578
Closes #546
Closes #432

[Ana06]

@sara-rn the installer here is broken because #671 broke the installer. Please rebase after #675 is merged so that the code works.

The fist UI window (install customization) is missing a next button, so I couldn't test the categories page:

Please address this issue so that I can review the new window as well.

Remember adding labels to PRs (in this case enhacement is appropriate) and to add the issue the PR closes to the PR description (this PR should address #578).

[sara-rn]

@Ana06 there is no need to use Find-Package, therefore the installation of nuget or download categories.txt is not necessary. At the end of the feed from https://www.myget.org/F/vm-packages/Packages there is a <link rel="next" with the URL for the next packages.
The packages are selected and the Continue button adds the selected items to the config.xml

[Ana06]

@sara-rn I was not able to review the installer UI as the installer does not run correctly:

Get-Packages-Categories : The term 'Get-Packages-Categories' is not recognized as the name of a cmdlet, function,
script file, or operable program. Check the spelling of the name, or if a path was included, verify that the path is
correct and try again.
At C:\Users\flare\Desktop\install.ps1:491 char:27
+     $packagesByCategory = Get-Packages-Categories
+                           ~~~~~~~~~~~~~~~~~~~~~~~
    + CategoryInfo          : ObjectNotFound: (Get-Packages-Categories:String) [], ParentContainsErrorRecordException
    + FullyQualifiedErrorId : CommandNotFoundException

I think is because you have placed the code of Get-Packages-Categories after the use of the function (it needs to be defined before). Please ensure the code works as it otherwise make it the review difficult.

I also recommend you to add some screenshots when making UI changes.

[sara-rn]

@sara-rn I was not able to review the installer UI as the installer does not run correctly:

Get-Packages-Categories : The term 'Get-Packages-Categories' is not recognized as the name of a cmdlet, function,
script file, or operable program. Check the spelling of the name, or if a path was included, verify that the path is
correct and try again.
At C:\Users\flare\Desktop\install.ps1:491 char:27
+     $packagesByCategory = Get-Packages-Categories
+                           ~~~~~~~~~~~~~~~~~~~~~~~
    + CategoryInfo          : ObjectNotFound: (Get-Packages-Categories:String) [], ParentContainsErrorRecordException
    + FullyQualifiedErrorId : CommandNotFoundException

I think is because you have placed the code of Get-Packages-Categories after the use of the function (it needs to be defined before). Please ensure the code works as it otherwise make it the review difficult.

I also recommend you to add some screenshots when making UI changes.

I executed it without any issues, but when I switched to a different snapshot with Powershell version 5.1 I had the same error

[sara-rn]

[jstrosch]

Going through the PR now - really nice work! I think this will make customization very smooth. I didn't notice any issues and the installation appears to have kicked off without any problems. Just a few thoughts/observations:

• The package selection screen says "continue", when I clicked it I was expecting a confirmation or summary page, instead it jumped right into the installation. Maybe the button could say something along the lines of "Install" or there is one more page before installing. I wasn't quite ready to start the installation - there could have been text that warned me, but I missed it if so.
• I'm sure this is non-trivial, but would be helpful to see package size/total install size if possible - could be a summary page after selecting packages even :)
• I could see this going one step further and offering a "profile" that pre-selects packages. Say I want an Android profile, it would pre-select all of the common Android tools (in their appropriate categories) and ignore the rest - of course, the package selection screen could provide customization but would allow for users to get a pre-selected baseline easier. Other profiles could be Windows Malware, Office Malware, etc. Just thinking out loud a bit :) These profiles could serve the non-GUI install, as well as reduce clicks during GUI install.

Again, just some thoughts and no issues to report - can't wait to see this PR go live!

[Ana06]

Thanks for taking a look @jstrosch, great feedback!

The package selection screen says "continue", when I clicked it I was expecting a confirmation or summary page, instead it jumped right into the installation. Maybe the button could say something along the lines of "Install" or there is one more page before installing. I wasn't quite ready to start the installation - there could have been text that warned me, but I missed it if so.

I agree, Install instead of Continue in the second UI would be clearer 👍 @sara-rn can you please address this in this PR?

I'm sure this is non-trivial, but would be helpful to see package size/total install size if possible - could be a summary page after selecting packages even :)

This is a good idea, but I think it is not possible (or at least difficult) to implement. Our packages normally don't contain the tool, just a download link to use to install it. What is useful is to know the installed tool size, but there is no way to know without installing the tool. One thing that we could easily do is to add this information in the description for packages like visualstudio.vm and pdbresym.vm, that we know increase the size of the VM significantly (reason why they are not in the default configuration). For example: Requires Substantial Disk Space of Requires X Gb of Disk Space. We can create an issue for this.

I could see this going one step further and offering a "profile" that pre-selects packages. Say I want an Android profile, it would pre-select all of the common Android tools (in their appropriate categories) and ignore the rest - of course, the package selection screen could provide customization but would allow for users to get a pre-selected baseline easier. Other profiles could be Windows Malware, Office Malware, etc. Just thinking out loud a bit :) These profiles could serve the non-GUI install, as well as reduce clicks during GUI install.

This is more or less already possible providing a configuration file. We could store more than one configuration file in this repository and display them in the UI (for example in the first UI). The issue with this is that we have to maintain all the configuration files adding new tools to several of them (and we already forget to add tools now and we have only one config 😓). At the moment we have just one configuration file that contains what FLARE think is required to do malware analysis efficiently without an important size increase (mostly what FLARE uses internally). This is related to #668.

[MalwareMechanic]

Mostly nitpicks here, PR overall looks great 😃

Please check that the "Cancel" buttons are working as intended. I ran the script from an elevated PowerShell console and when I cancelled the GUI disappeared, but I was stuck at the PowerShell console. I didn't see any exit messages and ctrl+c didn't work to exit it. However, when I debugged it in PowerShell ISE it seemed to work fine and also print the exit message. 🤷

[sara-rn]

Mostly nitpicks here, PR overall looks great 😃

Please check that the "Cancel" buttons are working as intended. I ran the script from an elevated PowerShell console and when I cancelled the GUI disappeared, but I was stuck at the PowerShell console. I didn't see any exit messages and ctrl+c didn't work to exit it. However, when I debugged it in PowerShell ISE it seemed to work fine and also print the exit message. 🤷

@MalwareMechanic I cannot reproduce the scenario you mention, both cancel buttons are expected to exit and print the message. I am not sure how to address this.

[sara-rn]

Thanks @Ana06 @MalwareMechanic and @jstrosch for the feedback, much appreciated! I have addressed the proposed changes. I believe the overall look and feel can be improved such as the usage of icons or the background.png that we don't use. @jstrosch I like your idea regarding the usage of profiles, this is what commando-vm has, but I agree with Ana we would need to maintain it, no issues if everyone finds it useful. An idea for another PR would be to save the selected packages into a custom config for example so next time you can provide it as a command-line. Just some random thoughts. Thanks again all!!

[sara-rn]

@sara-rn thanks for adding documentation, I find the code much easy to read now! 💐 I really like how this how turned out, it is going to make it much easier for our users to packages to install! 💘

[nitpick] I think reducing the first window a bit more in size (to have the same size on the right and the left sides and to keep the buttons part consistent with the next window, which is more narrow) would look better.

Also, what about adding a Back button in the second window? This could be addressed in a different PR too.

I reduced the height of the first Window, not sure if I should also move the Install and Cancel buttons to the right in the second Window or its already fine.

[Ana06]

I get an expection when pressing the button:

[Ana06]

@MalwareMechanic

Please check that the "Cancel" buttons are working as intended. I ran the script from an elevated PowerShell console and when I cancelled the GUI disappeared, but I was stuck at the PowerShell console. I didn't see any exit messages and ctrl+c didn't work to exit it. However, when I debugged it in PowerShell ISE it seemed to work fine and also print the exit message

I think the exit message not being rendered is caused by #541 (confusing but unrelated to the changes here).

I can't reproduce the stuck after exist on the PowerShell console, but the way to exit hasn't been changed in this PR. So if there is an issue, I think it is not caused by these changes. @MalwareMechanic can you double-check that this happens consistently and open an issue if so? Then we can investigate the issue after this has been merged.

[Ana06]

@sara-rn

I reduced the height of the first Window, not sure if I should also move the Install and Cancel buttons to the right in the second Window or its already fine.

I think it is better to keep the windows as consistent and similar as possible.

[Ana06]

@sara-rn I have tested again and everything looks as expected. This is a great improvement, thanks for all the work! 🚀

[nitpick] I think it would be nice to add a Back button in the second window (to go back to the first one).

Changes addressed! Thanks for the review