Closed HachimanSec closed 3 years ago
Apparently the problem is not only limited to syspin, folder lib-bad contains various other tools as well.
Searching chocolatey.log for other failed packages, such as adexplorer or dnspy.flare, doesnt return any findings.
Apparently multiple sources are invalid.
The installation scripts even finishes, yet it appears many tools are not installable. For example Bloodhound or Foca are still missing.
Anyone any idea?#
Edit: apparently this breaks it for others as well, see issue https://github.com/fireeye/commando-vm/issues/189
唉,我也遇到了這個問題。不僅如此,如果你使用full.json作爲repo去下載軟件的話,你會發現滿屏都是”下載失敗“。問題出在軟件源所指向的URL上。倘若要改的話,太麻煩(個人覺得沒時間在此瞎折騰)……而且如果自己去下載對應的軟件,安裝程序根本無法識別,它仍然會重新下載,然後報錯。只能火眼實驗室更新一下他們的軟件源了。(爲啥顯示出來的不是簡體中文……[\捂臉];英文水平不高,只能用中文,翻譯一下吧)
感谢您的留言。 我遇到了同样的问题。 确实似乎与要下载的软件的校验和有关。 显然他们在脚本中引用的版本不再可用。 似乎没有简单可行的解决方案。 太糟糕了,我非常感谢Commando-VM。
PS:我不会说中文,所以我希望翻译能工作。
Thank you for your message. I encountered the same problems. It really seems to be a problem with the checksum of the software to be downloaded. Apparently the versions they reference in the script is no longer available. It seems there is no easy, feasible fix for that. Too bad, I really appreciated Commando-VM.
Yeah it looks like some of the packages will need to be updated. All of the packages ending in .fireeye
or .flare
are maintained by us, and we can have them updated. Other packages that do not end that way (syspin
for example) are maintained by others and we will need to wait until they update those packages.
Thanks for the update @day1player!
Just for my understanding, is it intended behaviour that an error with these packages results in a subsequent failure to install the other packages? For example bloodhound or Foca is also not installed. I assume this is a follow up issue?
@HachimanSec some packages that have specific dependencies will fail if the dependency is unable to be installed, but I think BloodHound and Foca should not be affected by dependencies and they could be other issues. If you want to feel free to create new issues or post some screenshots here and I can create the new issues
Thanks @day1player. Strange thing is, I see no further errors as to why it stops the installation of further packages such as BH and Foca.
All I see is the errors of syspin, etc. and then it simply stops. I try to dig into it a bit more and if I have enough info I will open a new bug. I just dont want to spam you guys with bugs that have no content ;)
Yeah it looks like some of the packages will need to be updated. All of the packages ending in
.fireeye
or.flare
are maintained by us, and we can have them updated. Other packages that do not end that way (syspin
for example) are maintained by others and we will need to wait until they update those packages.
Is there any ETA?
if you want all packages that fail for some reason can be reinstalled you can as well edit urls or their checksums in file C:\ProgramData\chocolatey\lib\windbg.flare\tools\chocolateyInstall.ps1
which can easily be changed you then need to pack and install it using chocolatey:
cpack C:\ProgramData\chocolatey\lib-bad\windbg.flare\windbg.flare.nuspec
cinst C:\ProgramData\chocolatey\lib-bad\windbg.flare\windbg.flare.nuspec
keep in mind that this is a workaround and most of those that fail can be fixed within 10 minutes by flare team or anyone doing a proper PR.
Maybe it will work in some ways. But we need a completely and permanently solution, or every time, you need to edit their URLs and checksums ,after their software have being updated. I think FireEye should learn from Offensive Security, depending on several officially resources,which can reliable and stable storage the packages.
@WYMzg we rely on other official repos where we can, dnSpy is not officially supported as a chocolatey package by anyone but us 👍
fixed with june update #262
Describe the bug and expected behavior Try to install on Windows 1909. After some time installation stops. Manual reboot enforced, after manual reboot installation CLI opens again but fails verifying the syspin checksum. Attempt to install it manually fails with a similar error.
Anyone any idea what this could be?
Version
Log output