Improve Firmadyne (https://github.com/firmadyne/firmadyne) and make it simpler to extract, emulate firmware for analysis.
- Get firmware samples to analyze. Add firmware to
samplesfolder - Edit the
docker-compose.ymlto include the desired "Manufacturer name" (can be anything) and path to samples.
a.commandsection has "foo", "1.bin" ; this is the "Manufacturers Name" and file name.
b.volumessection has path to firmware samples and mapping to local images. - Copy the relevant sections multiple times (given x samples).
a. copy section fromemulator-1until next entry.
b. manually increment the desired ip address. make build and make startdocker exec CONTAINERID bashtmux lstmux a -t "ImageID X"Where X is the database id generated by firmadyne.
a. This tmux session is the console session to the firmware sample.- To view the web interface on your host machine, follow these steps. Check the URL in the container logs. Look at line 6 in the file
./nginx-config/{EMULATED_CONTAINER_NAME}/default. If the URLs are different:
a. Update the IP address at line 6 in./nginx-config/{EMULATED_CONTAINER_NAME}/defaultwith the IP address from the container logs.
b. Restart Nginx by running the commandservice nginx restartfrom inside the container.
If the URLs are the same:
c. Go tohttp://localhost:<PORT>to see the web page of the firmware.
(Note: Replace<PORT>with the specific port number from the respective container's Docker Compose configuration.)
-
main branch is ubuntu 18.04 / dev branch is ubuntu 20.04 base images.
-
If you did not get a tmux session; a failure occurred during the seven firmadyne steps. We keep a
samples-outfolder to collect and debug emulation efforts.
bin-extractor-output
bin-getArch-output
bin-inferNetwork-output
bin-makeImage-output
o Charles Boyd
o DJ Forbes