Comments (3)
No, the kernel should work just fine, I have several servers running Xen
4.6 with 14.04 dom0. The EFI warning you can ignore if your system is set
to legacy boot. I found that to be easier to deal with generally.
On Feb 2, 2016 5:51 AM, "Preetixen" [email protected] wrote:
Hi,
I am installing DRAKVUF but afer running make -j4 install xen
Error: EFI_VENDOR not set comes I tried to fix the issue but i could not
resolved itAlso, I searched Xen 46 compatibility with UBUNTU 1404 I found that ubuntu
1404 has no repository for installing xen 46 However, it has repository for
xen 44Is this related with the compatibility issue with ubuntu 1404 kernel?
—
Reply to this email directly or view it on GitHub
#56.
from drakvuf.
Hi, I reolved the EFI partitioning issue. However, full installation is under progress. some more error comming.
Th main reason for setting up DRAKVUF is to extract the behavior of different user function calls and kernel function calls as well.
- I have read DRAKVUF provides the trapping of kernel function calls and hence easy to detect rootkits. Is it possible to trap the user level function calls also.
- I have to gather system call traces of different malware and monitored user programs running in virtual machine using DRAKVUF. How to do it?
from drakvuf.
- Not at the moment, right now the only supported monitoring is of the Windows kernel's internals. I have plans to add support for user-space monitoring as well but it may be a while before that is added.
- I'm not sure I understand the question. You compile DRAKVUF and start it on a VM where you have the malware running. You can start the execution of the malware sample if you provide the
-i
and-e
options. Type drakvuf --help to see all available options.
I'm closing this issue as the topic seem to have diverged from what it was originally about. Feel free to open another issue if you have more questions.
from drakvuf.
Related Issues (20)
- vmi-win-guid name out print is NULL
- Virtualization problem
- interception specify process
- Format code with clang-format and clang-tidy HOT 1
- apimon doesn't work after 9/1's commit HOT 3
- Plugin etwmon startup failed! HOT 2
- Unable to control mouse in Win7 when drakvuf is running HOT 1
- [LIBHOOK] makes the xen virtual machine hang HOT 8
- How to automated batch analysis HOT 1
- trace powershell behavior with apimon
- drakvuf meson and ninja-injector linking build errors HOT 4
- How to exit a running drakvuf HOT 1
- How to obtain the value of a handle
- Injector sometimes hangs while injecting commands into explorer HOT 3
- avx instruction not support HOT 3
- Most of the Nargs=0 in the output of plugin-syscalls HOT 2
- Fresh installation unstable, entire system crashes intermittently and xenstored/xencommons not working consistently HOT 7
- Incompatiability With ProxMox VM HOT 1
- No SYSRET printed in linux VM HOT 1
- Consider returning syscall arguments inside a dictionary referenced by an "Arguments" key (similar to apimon plugin) HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from drakvuf.