Public Repository

Last pushed: 2 years ago
Short Description
Malcom - Malware Communication Analyzer
Full Description

This is a Docker image for Malcom. The automated docker build can be found here https://registry.hub.docker.com/u/tomchop/malcom-automatic

Details here: https://github.com/tomchop/malcom

Docker Pull Command
Owner
tomchop

Comments (1)
cjmateos
2 years ago

When I try to create the container I get multiple errors:

docker run -P –name malcom tomchop/malcom

Starting database mongodb …done. Starting redis-server: redis-server. TERM environment variable not set. ===== Malcom 1.3a - Malware Communications Analyzer =====
Detected interfaces: eth0: 172.17.0.3 WARNING: Failed to execute tcpdump. Check it is installed and in the PATH WARNING: No route found for IPv6 destination :: (no default route?) [-] Could not load GeoIP library - [Errno 2] No such file or directory: '/opt/malcom/Malcom/model/../auxiliary/geoIP/GeoIP2-City.mmdb'[!] yara-python was not found on system. Please install yara if you want to use your rules. [+] Starting sniffer… [+] Successfully loaded sniffer directory: /opt/malcom/Malcom/sniffer [+] Starting TLS proxy on port 9000 Traceback (most recent call last): File “./malcom.py”, line 79, in <module> setup.snifferengine = netsniffer.SnifferEngine(setup, yara_rules=yararules) File “/opt/malcom/Malcom/networking/netsniffer.py”, line 56, in __init self.model = Model() File “/opt/malcom/Malcom/model/model.py”, line 39, in init self.connection = MongoClient() File “/usr/local/lib/python2.7/dist-packages/pymongo/mongoclient.py”, line 377, in __init raise ConnectionFailure(str(e)) pymongo.errors.ConnectionFailure: [Errno 111] Connection refused