Skip to content

How to Install

Jump to bottom
shusei tomonaga edited this page Aug 16, 2021 · 2 revisions

1. Install packages
2. Download Volatility
3. Install MalConfScan

Install packages

If you do not have Yara, please check this page and install it.
Volatility only supports Python2. If you do not have Python2, please install it.

Download Volatility

  1. Download the Volatility source code.

  2. Extract the Volatility source code from the zip or tar.gz file.

$ wget http://downloads.volatilityfoundation.org/releases/2.6/volatility-2.6.zip
$ unzip volatility-2.6.zip

or cloning from Github.

$ git clone https://github.com/volatilityfoundation/volatility.git

Install MalConfScan

  1. Clone MalConfScan Github repository
$ git clone https://github.com/JPCERTCC/MalConfScan.git
  1. Install Python requirements
$ pip install -r MalConfScan/requirements.txt
  1. Copy MalConfScan to Volatility Plug-in folder
$ cd MalConfScan
$ cp -R malconfscan.py utils yara [Extract Volatility Folder]/volatility/plugins/malware

For Volatility on Linux, please refer to the Volatility wiki.

Manual

  1. Home
  2. How to Install
  3. How to Use
  4. with Cuckoo Sandbox

マニュアル(日本語)

  1. ホーム
  2. インストール
  3. 使用方法
  4. Cuckooサンドボックスで使う
Clone this wiki locally