Compiling grey-cuckoo on Guest VM (OSX 10.13)

phdphuc / mac-a-mal-cuckoo

The current repository contains all the scripts needed to complement kernel-mode mac-a-mal malicious activity hooking on macOS to Cuckoo sandbox.

MIT License

47 stars 11 forks source link

Compiling grey-cuckoo on Guest VM (OSX 10.13) #4

Closed PwnU closed 6 years ago

PwnU commented 6 years ago

Grey-cuckoo builds but no executable is created. Without it every time I kextload mac-a-mal.kext the VM reboots.

Any help ?

phdphuc commented 6 years ago

There are a kext and a MachO binary would be compiled as output. Please notice mac-a-mal.kext was tested successfully on macOS <= 10.12. I will try on 10.13 soon and let you know. Btw, it would be great if you create this separate ticket on mac-a-mal.