Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/mikehorn-git/mal

Malware Automatic Lab (MAL).
https://github.com/mikehorn-git/mal

blackarch flarevm malware-analysis packer remnux vagrant virtualbox

Last synced: 10 days ago
JSON representation

Malware Automatic Lab (MAL).

Awesome Lists containing this project

README 

        
![image](https://github.com/user-attachments/assets/159fea57-de0d-41b0-ba91-2075b770f24d)



# Available OS

* [Blackarch](https://www.blackarch.org/index.html)

* [FlareVM](https://github.com/mandiant/flare-vm)

* [REMnux](https://docs.remnux.org/)



# Requirements

* Packer

* Ssh

* Vagrant

* Virtualbox



# Virtualbox

## Build Blackarch

```bash

git clone https://github.com/MikeHorn-git/MAL.git

cd MAL/packer

packer init blackarch.pkr.hcl

packer build blackarch.pkr.hcl

```



## Build FlareVM

Place your Windows iso in iso/ directory. Default name is Windows_11.iso

```bash

git clone https://github.com/MikeHorn-git/MAL.git

cd MAL/packer

packer init flarevm.pkr.hcl

packer build flarevm.pkr.hcl

```

Stop the VM manually, after the FlareVM script is ended.

Default shutdown_timeout is 2h.



## Build REMnux

```bash

git clone https://github.com/MikeHorn-git/MAL.git

cd MAL/packer

packer init remnux.pkr.hcl

packer build remnux.pkr.hcl

```

When the VM is up :

```bash

sudo systemctl start ssh

```

Default ssh_timeout is 5m.



# Custom FlareVM

* Modify config/config.xml

* MAL used the [default](https://github.com/mandiant/flare-vm/blob/main/config.xml) one



# Credits

* [Baune8D](https://github.com/Baune8D/packer-windows-desktop/tree/main)

* [Logo](https://www.terranovasecurity.com/fr/solutions/sensibilisation-cybersecurite/quest-ce-quun-logiciel-malveillant)



# To-Do

- [x] Blackarch Support

- [ ] Nix Integration

- [ ] Proxmox Support

- [ ] Qemu Support