Public | Automated Build

Last pushed: 2 years ago
Short Description
Short description is empty for this repo.
Full Description

a Docker experiment: Ubuntu trusty plus all of the libraries and base data files needed to run
a handy Python program from the excellent Malware Analyst Cookbook: pescanner.

With inspiration and forks from @lennyzeltser and REMnux .

Includes:

  • Ubuntu trusty base
  • apt in python-magic, yara, python-yara, pip, clamav (all in multiverse)
  • pip in pefile
  • manually install capabilities.yara, userdb.txt, and pescanner.py

Sources:

Refs:

Usage

To run this image after building or importing it use a command like this to scan a specific files, replacing
"~/workdir" with the path to your working directory on the underlying host:

sudo docker run -it -v ~/workdir:/home/nonroot/workdir adricnet/mac-pescanner /opt/pescanner.py [target file]

Before running the application, create ~/workdir on your host and make it world-accessible ("chmod a+xwr").

Docker Pull Command
Owner
adricnet
Source Repository

Comments (0)