search

phdphuc / mac-a-mal-cuckoo

The current repository contains all the scripts needed to complement kernel-mode mac-a-mal malicious activity hooking on macOS to Cuckoo sandbox.
MIT License
46 stars 11 forks source link

Is there any documentation? #1

Closed seantree closed 6 years ago

seantree commented 6 years ago

Hello, I am using your repository but getting some errors, I just want to know is there any documentation available for this? So, that I can try to build by following the correct documentation. . Waiting for your positive reply. . Thanks & Regards Seantree

phdphuc commented 6 years ago

Hi @seantree,

We are working on this at the moment. You also can take a look at cuckoo-osx-analyzer for environment setup. If there's anything I can help, feel free to poke me because I don't know why I haven't heard any notifications from Github on new issues.

Regards, Pham.

siftuser commented 3 years ago

@phdphuc As suggested by you, tried following this guide to setup mac-analysis. But seeing following error on step 3.

cuckoo@cuckoo-VirtualBox:~$ bash ./cuckoo-osx-analyzer/scripts/bootstrap_host.sh

VBoxManage: error: Details: code NS_ERROR_INVALID_ARG (0x80070057), component HostWrap, interface IHost, callee nsISupports
VBoxManage: error: Context: "FindHostNetworkInterfaceByName(Bstr(pszName).raw(), hif.asOutParam())" at line 231 of file VBoxManageHostonly.cpp
I can't setup traffic forwarding for your OS, sorry :(

Manually added host-only adapter vboxnet0 network & ran the bootstrap_host script again cuckoo@cuckoo-VirtualBox:~$ bash ./cuckoo-osx-analyzer/scripts/bootstrap_host.sh I can't setup traffic forwarding for your OS, sorry :(