search

mitre / sandcat

A CALDERA plugin
https://caldera.mitre.org/
Apache License 2.0
60 stars 36 forks source link

Support for Darwin on arm64 #422

Open petermat opened 1 year ago

petermat commented 1 year ago

Current build for Darwin runs only on Intel based systems. ARM arch like MacBook M1 is failing.

...
$ ./splunkd -server $server -v
zsh: bad CPU type in executable: ./splunkd

Executable is Intel only:

file splunkd
splunkd: Mach-O 64-bit executable x86_64

Desired state:

$ file splunkd 
splunkd: Mach-O universal binary with 2 architectures: [x86_64:Mach-O 64-bit executable x86_64
- Mach-O 64-bit executable x86_64] [arm64]
splunkd (for architecture x86_64):  Mach-O 64-bit executable x86_64
splunkd (for architecture arm64):   Mach-O 64-bit executable arm64
petermat commented 1 year ago

Pull request created https://github.com/mitre/sandcat/pull/423

clenk commented 10 months ago

We are working on a more robust fix that includes the work from the above pull request. Also wanted to mention a possible temporary workaround in the meantime might be to use Rosetta.