search

intelowlproject / IntelOwl

IntelOwl: manage your Threat Intelligence at scale
https://intelowlproject.github.io
GNU Affero General Public License v3.0
3.76k stars 426 forks source link

Thug analyzer not working #1615

Closed mlodic closed 3 days ago

mlodic commented 1 year ago 
intelowl_celery_worker_default    |   File "/opt/deploy/thug/venv/bin/thug", line 5, in <module>
intelowl_celery_worker_default    |     from thug.thug import main
intelowl_celery_worker_default    |   File "/opt/deploy/thug/venv/lib/python3.8/site-packages/thug/thug.py", line 24, in <module>
intelowl_celery_worker_default    |     from .ThugAPI import ThugAPI
intelowl_celery_worker_default    |   File "/opt/deploy/thug/venv/lib/python3.8/site-packages/thug/ThugAPI/__init__.py", line 1, in <module>
intelowl_celery_worker_default    |     from .ThugAPI import ThugAPI
intelowl_celery_worker_default    |   File "/opt/deploy/thug/venv/lib/python3.8/site-packages/thug/ThugAPI/ThugAPI.py", line 32, in <module>
intelowl_celery_worker_default    |     from thug.DOM.Window import Window
intelowl_celery_worker_default    |   File "/opt/deploy/thug/venv/lib/python3.8/site-packages/thug/DOM/Window.py", line 39, in <module>
intelowl_celery_worker_default    |     from thug.DOM.W3C import File
intelowl_celery_worker_default    |   File "/opt/deploy/thug/venv/lib/python3.8/site-packages/thug/DOM/W3C/File/__init__.py", line 4, in <module>
intelowl_celery_worker_default    |     from .Blob import Blob
intelowl_celery_worker_default    |   File "/opt/deploy/thug/venv/lib/python3.8/site-packages/thug/DOM/W3C/File/Blob.py", line 23, in <module>
intelowl_celery_worker_default    |     import STPyV8
intelowl_celery_worker_default    |   File "/opt/deploy/thug/venv/lib/python3.8/site-packages/STPyV8.py", line 10, in <module>
intelowl_celery_worker_default    |     import _STPyV8
intelowl_celery_worker_default    | ImportError: libboost_iostreams.so.1.71.0: cannot open shared object file: No such file or directory
intelowl_celery_worker_default    | , result file /opt/deploy/thug/153620a0/analysis/json/analysis.json does not exists.'
eshaan7 commented 1 year ago

From the logs, seems like this could be related to the flask-shell2http package that our docker based analyzers use.

mlodic commented 1 year ago

I think the main issue is just dependencies. Thug has always been a problem in that sense and there is lack of help in the documentation

mlodic commented 3 days ago

should be solved