Skip to content

redteam-project/cyber-test-lab

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

98 Commits
ctl-results @ 3a5bef6
ctl-results @ 3a5bef6
 
 
cybertestlab
cybertestlab
 
 
docker
docker
 
 
.gitignore
.gitignore
 
 
.gitmodules
.gitmodules
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
afCc_pdf.py
afCc_pdf.py
 
 
cleanup.sh
cleanup.sh
 
 
compare.py
compare.py
 
 
demo_scan.py
demo_scan.py
 
 
fedora.py
fedora.py
 
 
plot_centos.py
plot_centos.py
 
 
plot_fedora.py
plot_fedora.py
 
 
plot_rhel.py
plot_rhel.py
 
 
prep_fedora_host.yml
prep_fedora_host.yml
 
 
rhel.py
rhel.py
 
 
score.py
score.py
 
 
scoring.yml
scoring.yml
 
 

Repository files navigation

cyber-test-lab

Note that as of May 2022 this project is no longer active.

Cyber Test Lab offers quantitative static and dynamic risk analysis of binaries

This project is in beta. It can still be hard to get working. Contact [email protected] for help.

If you're looking for a place to contribute, we need help with documentation! For development contributions, read on.

Warning - this is broken

We're still in the process of migrating this tool from the old project, but we're actively working on fixing it. Check back soon for updates.

How to run CTL

The CTL code can be executed from within a docker container, making cross-platform development much easier. These instructions assume PyCharm is your development environment, but others will work fine too.

First, set up PyCharm and Docker on your system.

Next, configure PyCharm's Docker plugin. Here's a tutorial.

Now it's time to build your CTL container.

git clone https://github.com/redteam-project/cyber-test-lab
cd cyber-test-lab/docker
docker built -t fctl .

Then you can configure your remote interpreter in PyCharm.

You've got one step left before you can run the CTL, which is downloading some packages. Since docker containers are ephemeral, you want to mount a local directory into the fctl container before syncing any repos.

On Docker 17.06 or later:

docker run --rm -ti \
  --mount type=bind,source="~/fctl/fedora27",target=/repo \
  fctl \
  timeout 600 reposync -p /repo

On earlier versions:

docker run --rm -ti -v /home/jason/fctl/fedora27:/repo fctl \
  timeout 600 reposync -p /repo

Note that if you're using Fedora, RHEL, or a variant, you'll need to add a :z to the bind mount for SELinux relabeling. I.E., -v /home/jason/fctl/fedora27:/repo:z.

Now you should have some rpms with binaries to analyze. Note that we're using timeout to sync for 10 minutes to limit disk usage. Remove timeout 600 if you want the whole shebang.

The last step is to create a new run/debug configuration. But there are two tricky parts:

  1. Be sure to pick the remote docker interpreter under "Python Interpreter"
  2. Mount the repo using Docker Container Image Settings > Volume Bindings. Be sure to use the same mapping as above, i.e., /home/jason/fctl/fedora27 to /repo.

About

Quantitate binary risk assessment

Resources

Readme

License

GPL-2.0 license
Activity
Custom properties

Stars

16 stars

Watchers

4 watching

Forks

6 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages