Proxmox Issue #104
Comments
|
ah i have a secret :D everything that i don't use, probably doesn't work, as I use kvm, but that should be easy to fix, hm beer.io works here i have fixed config problem in proxmon, but i don't have it to test, there a lot of community modules that we not using and we can't ensure 100% but with bug fixing we are more than happy to solve it can you test now ? |
|
thank you for the beer ;) |
|
Hey, ERROR :-( on the CAPE host: ufw is currently disabled. Cuckoo.py -d does not give any output: Did I miss something? |
|
You're welcome :) |
|
just a simple file upload no?, that is not related to proxmon, maybe you had run something as root? and that can break permissions |
|
You're on right on spot! Still learing :) |
|
|
|
Hi, 2020-03-13 09:39:03,071 [lib.cuckoo.core.scheduler] INFO: Using "proxmox" machine manager with max_analysis_count=0, max_machines_count=10, and max_vmstartup_count=5 During handling of the above exception, another exception occurred: Traceback (most recent call last): Is this something on my side? |
|
I'm also getting log mails as root concerning smtp_sinkhole.sh and socksproxies.sh: And Subject: Cron root@Cape /opt/CAPEv2/socksproxies.sh Is this something I should worry about? |
|
about crons nop, i will need make that optional, that is from my setup, the smtp sinkhole can be due to missing exec permission about proxymon i suspect you have it installed incorrectly, how did you install it? pip install or pip3 install? about |
|
Hehe, thank you for your continuous and efficient support!! 2020-03-13 12:50:34,391 [lib.cuckoo.core.scheduler] INFO: Task #4: acquired machine cuckoo1 (label=win10MW, platform=windows) |
|
cool, let me see why this happens |
|
I also did the : and now mail to root is saying: |
|
proxmon should be fixed, can you check it? |
|
Will do now, I keep reinstalling from a fresh install, is there a quicker way? |
|
no, |
|
The proxmon issue seems fixed. But the agent.py on the Analysis machine is getting me errors.
But when I submit the file, I get the following: snapshot = OnlineTour2) |
|
Agent.py = 0.11; copied into notepad and saved as .py. |
|
well if curl returned you this line then agent is running fine, try this to see the problem in terminal https://github.com/kevoreilly/CAPEv2/wiki/Tips'n'Tricks#how-to-debug-analyzer-and-any-script-that-executes-inside-of-the-virtual-machine |
|
The ps command is not functioning: Kill is complaining: and cuckoo.py is stiill functionnig. Shoud I just kill -1 the PID of cuckoo.py? |
|
i have pointed you to |
|
oh sorry. So I copied https://github.com/kevoreilly/CAPEv2/blob/master/analyzer/windows/analyzer.py And is : "DISABLE human interaction emulation " = "Disable automated interaction" or am I missing something? Thanks for your patience |
|
that doesn't work in that way make favor to yourself and check how to use systemd ;) |
|
Thanks for the tip, I learned a bit how systemd works and found the cape.service. :) I then started CAPE_DBG=1 python3 cuckoo.py -d . Here are the first results: Cape host Debug agent: Just to be sure I created a new Win10 analysis machine and checked with python 3.8.0. Am I still missing something? |
|
I dont see any log from when you run analyzer.py by hand
El lun., 16 mar. 2020 13:16, phunki32 <[email protected]> escribió:
… Thanks for the tip, I learned a bit how systemd works and found the
cape.service. :)
I then started CAPE_DBG=1 python3 cuckoo.py -d . Here are the first
results:
Windows 10
[image: Win10_debug_1]
<https://user-images.githubusercontent.com/61844903/76757518-037da300-6788-11ea-942e-6b6c236c8434.png>
Cape host
[image: Cape_debug_1]
<https://user-images.githubusercontent.com/61844903/76757536-08daed80-6788-11ea-927b-9d09a234cc67.png>
Debug agent:
[image: Win10_debug_agent_1]
<https://user-images.githubusercontent.com/61844903/76757543-0aa4b100-6788-11ea-9601-54c49e38dfe0.png>
Just to be sure I created a new Win10 analysis machine and checked with
python 3.8.0.
An issue that keeps popping up is the:
2020-03-16 12:12:11,902 [root] DEBUG: Task #19
<#19> had connection reset for
<Context for b'LOG'>
Am I still missing something?
—
You are receiving this because you commented.
Reply to this email directly, view it on GitHub
<#104 (comment)>,
or unsubscribe
<https://github.com/notifications/unsubscribe-auth/AAOFH35Z44HUCCVA4UBZQBTRHYKBFANCNFSM4LFX5VAA>
.
|
|
In the first pic I start cmd as admin, then went to the tmp folder and gave command python analyzer.py . What am I missing? " |
|
hm it not make any sense that it try to set date and exits like nothing can you post output of this |
|
commit 607decb (HEAD -> master, origin/master, origin/HEAD) |
|
hm, then i don't have clue what is wrong, as it works just fine here, and that isn't anymore proxmon issue, that is something inside of the vm, you will need to debug that by yourself, adding debug lines, using pdb, anything that is comfortable for you, could be something in win10 that cut exec, idk, too many things to check |
|
Just redid a try: Analysis Machine: |
|
I understand I'll do my best to try to understand what's going on. Before I go back to it what is the: |
|
yes analyzer.py shouldn't exit the problem is inside of the vm, ensure check security, firewall, all that things, but it nothing on your host, so focus on inside of the vm |
|
Will do! Thank you very much for your patience, support and help! |
|
you are welcome, let us know what it was, maybe that will help to others, leaving issue opened at the moment |
|
well im closing this as the issue already isn't proxmon related, i hope you solved it |
Hi,
I'm moving forward and am trying to use proxmox.
At first run I was missing pip3 proxmoxer. Installed good.
Before and after I'm getting the following error:
2020-03-11 14:50:31,169 [root] DEBUG: Importing modules...
2020-03-11 14:50:31,184 [volatility.framework.interfaces.layers] DEBUG: Imported python-magic, autodetecting compressed files based on content
2020-03-11 14:50:31,739 [lib.cuckoo.core.plugins] WARNING: Unable to import plugin "modules.machinery.proxmox": cannot import name 'config'
WARNING lib.cuckoo.core.plugins: Unable to import plugin "modules.machinery.proxmox": cannot import name 'config'
2020-03-11 14:50:31,739 [root] DEBUG: Imported "auxiliary" modules:
2020-03-11 14:50:31,739 [root] DEBUG: `-- Sniffer
Did I miss something or is it a lib.cuckoo.core.plugins issue?
Thanks alot and beer.io is down :(
The text was updated successfully, but these errors were encountered: