Skip to content

Latest commit

 

History

History
59 lines (42 loc) · 2.77 KB

help.md

File metadata and controls

59 lines (42 loc) · 2.77 KB

Setup for a different host/user:

host change the dispatcher/hosts file to contain the IP of the working node (s?) ie the one that will run the samples in the cuckoo environment based on ansible playbook

In our case we are connecting to a headless VirtualBox image. To start a VirtualBox image in this manner, run VBoxManage startvm /path/to/vmdir --type headless

If after the vm is started you would like to view the guest information (guest additions required) such as IP address for connecting over ssh, run VBoxManage guestproperty enumerate /path/to/vmdir. If guest additions are not available, you might grep for IP in the vmname.vbox XML file inside vmdir.

user be sure to change ansible_user in dispatcher/hosts as well as cuckoo_user in

Progress for Ubuntu20.04 metal host (user: michael)

Differences from ubuntu 16

  • comment out python-pip and virtualenv
  • m2crypto 0.35 required to work with pyopenssl
  • comment out libvirt in kvm
  • group libvirtd does not exist --> sudo addgroup libvirtd and sudo adduser <cuckoo_user> libvirtd
  • change kvm vmcloak branch from wip/kvm_virsh to dev/kvm
  • change vmcloak branch from master to wip/vbox

VM Backend, config, ok, changed, skipped, ignored, exection time (approx, s):

  • virtualbox, win7x86_conf4, 42, 12, 27, 1
  • vmware, win7x86_conf4, 42, 15, 27, 1
  • kvm, win7x86_conf4, 47, 22, 22, 1
  • qemu, win7x86_conf4, 34, 9, 35, 1
  • esx, win7x86_conf4, 34, 9, 35, 1
  • xenserver, win7x86_conf4, 34, 9, 35, 1
  • vsphere, win7x86_conf4, 34, 9, 35, 1
  • avd, win7x86_conf4, 34, 9, 35, 1

Progress for Ubuntu16.04 VirtualBox host (user: ubuntu)

VM Backend, config, ok, changed, skipped, ignored, exection time (approx, s):

  • [] virtualbox, win7x86_conf4, 42, 12, 27, 1
  • [] vmware, win7x86_conf4, 42, 15, 27, 1
  • [] kvm, win7x86_conf4, 47, 22, 22, 1
  • [] qemu, win7x86_conf4, 34, 9, 35, 1
  • [] esx, win7x86_conf4, 34, 9, 35, 1
  • [] xenserver, win7x86_conf4, 34, 9, 35, 1
  • [] vsphere, win7x86_conf4, 34, 9, 35, 1
  • [] avd, win7x86_conf4, 34, 9, 35, 1

updates

  • dispatcher/samples/sampler.py: select from a number specified number of
  • dispatcher/runner.py: automate ansible-playbook call with specified configuration, number of samples, etc
  • util/get_reports.py: given dir bool or md5sum, and store bool, show or save a json file of the sample behavior, if it exists. store the file in fetched_reports

random/known issues

(ubuntu 20 metal)

  • failed to update apt cache unknown reason: https://githubhot.com/repo/pythops/jetson-nano-image/issues/31
    • apt update appears to modify /etc/resolv.conf nameserver value (? trying to repro- changed nameserver to 8.8.8.8 appears to resolve)
  • vmware bundle checksum did not match 3212ed00463784ca8c67b5acd2c8d1cd, was 81e3cc66e5ce815457ae94ad52093ab3

(ubuntu 16 vbox host)