From 3d0d4b0e3620fce1f2edf07c5f826f27de6c302e Mon Sep 17 00:00:00 2001 From: root Date: Fri, 6 Oct 2017 09:53:25 -0700 Subject: [PATCH] Various --- remnux/packages/init.sls | 10 ++-------- remnux/packages/libolecf-utils.sls | 2 ++ remnux/packages/python-yara.sls | 2 -- remnux/python-packages/init.sls | 2 ++ remnux/python-packages/olefile.sls | 2 +- remnux/python-packages/oletools.sls | 7 +++++++ remnux/scripts/init.sls | 2 ++ remnux/scripts/oledump.sls | 29 +++++++++++++++++++++++++++++ 8 files changed, 45 insertions(+), 11 deletions(-) create mode 100644 remnux/packages/libolecf-utils.sls delete mode 100644 remnux/packages/python-yara.sls create mode 100644 remnux/python-packages/oletools.sls create mode 100644 remnux/scripts/oledump.sls diff --git a/remnux/packages/init.sls b/remnux/packages/init.sls index 092e255e..12f666b9 100644 --- a/remnux/packages/init.sls +++ b/remnux/packages/init.sls @@ -40,7 +40,6 @@ include: - remnux.packages.python-balbuzard - remnux.packages.python-capstone - remnux.packages.python-crypto - - remnux.packages.python-dev - remnux.packages.python-dnspython - remnux.packages.python-hachoir-core - remnux.packages.python-hachoir-metadata @@ -62,8 +61,6 @@ include: - remnux.packages.python-setuptools - remnux.packages.python-virtualenv - remnux.packages.python-volatility - - remnux.packages.python-yara - - remnux.packages.python - remnux.packages.qpdf - remnux.packages.radare2 - remnux.packages.rhino @@ -91,8 +88,8 @@ include: - remnux.packages.wxhexeditor - remnux.packages.xmlstarlet - remnux.packages.xpdf - - remnux.packages.xterm - remnux.packages.yara + - remnux.packages.libolecf-utils remnux-packages: test.nop: @@ -138,7 +135,6 @@ remnux-packages: - sls: remnux.packages.python-balbuzard - sls: remnux.packages.python-capstone - sls: remnux.packages.python-crypto - - sls: remnux.packages.python-dev - sls: remnux.packages.python-dnspython - sls: remnux.packages.python-gtk2 - sls: remnux.packages.python-gtksourceview2 @@ -163,8 +159,6 @@ remnux-packages: - sls: remnux.packages.python-setuptools - sls: remnux.packages.python-virtualenv - sls: remnux.packages.python-volatility - - sls: remnux.packages.python-yara - - sls: remnux.packages.python - sls: remnux.packages.qpdf - sls: remnux.packages.radare2 - sls: remnux.packages.rhino @@ -192,6 +186,6 @@ remnux-packages: - sls: remnux.packages.wxhexeditor - sls: remnux.packages.xmlstarlet - sls: remnux.packages.xpdf - - sls: remnux.packages.xterm - sls: remnux.packages.yara + - sls: remnux.packages.libolecf-utils diff --git a/remnux/packages/libolecf-utils.sls b/remnux/packages/libolecf-utils.sls new file mode 100644 index 00000000..dba9160e --- /dev/null +++ b/remnux/packages/libolecf-utils.sls @@ -0,0 +1,2 @@ +libolecf-utils: + pkg.installed diff --git a/remnux/packages/python-yara.sls b/remnux/packages/python-yara.sls deleted file mode 100644 index e0f50f8c..00000000 --- a/remnux/packages/python-yara.sls +++ /dev/null @@ -1,2 +0,0 @@ -python-yara: - pkg.installed \ No newline at end of file diff --git a/remnux/python-packages/init.sls b/remnux/python-packages/init.sls index 734a0538..a4097e8f 100644 --- a/remnux/python-packages/init.sls +++ b/remnux/python-packages/init.sls @@ -13,6 +13,7 @@ include: - remnux.python-packages.mitmproxy - remnux.python-packages.ndg-httpsclient - remnux.python-packages.olefile + - remnux.python-packages.oletools - remnux.python-packages.passivetotal - remnux.python-packages.peframe - remnux.python-packages.pydeep @@ -50,6 +51,7 @@ remnux-python-packages: - sls: remnux.python-packages.mitmproxy - sls: remnux.python-packages.ndg-httpsclient - sls: remnux.python-packages.olefile + - sls: remnux.python-packages.oletools - sls: remnux.python-packages.passivetotal - sls: remnux.python-packages.peframe - sls: remnux.python-packages.pydeep diff --git a/remnux/python-packages/olefile.sls b/remnux/python-packages/olefile.sls index 162b2f17..91b080f8 100644 --- a/remnux/python-packages/olefile.sls +++ b/remnux/python-packages/olefile.sls @@ -4,4 +4,4 @@ include: olefile: pip.installed: - require: - - pip: pip + - sls: remnux.packages.python-pip diff --git a/remnux/python-packages/oletools.sls b/remnux/python-packages/oletools.sls new file mode 100644 index 00000000..ebd385cc --- /dev/null +++ b/remnux/python-packages/oletools.sls @@ -0,0 +1,7 @@ +include: + - remnux.python-packages.pip + +oletools: + pip.installed: + - require: + - sls: remnux.packages.python-pip diff --git a/remnux/scripts/init.sls b/remnux/scripts/init.sls index e24f4eee..97576daf 100644 --- a/remnux/scripts/init.sls +++ b/remnux/scripts/init.sls @@ -2,6 +2,7 @@ include: - remnux.scripts.pdf-parser - remnux.scripts.pdfobjflow - remnux.scripts.pdfid + - remnux.scripts.oledump remnux-scripts: test.nop: @@ -9,3 +10,4 @@ remnux-scripts: - sls: remnux.scripts.pdf-parser - sls: remnux.scripts.pdfobjflow - sls: remnux.scripts.pdfid + - sls: remnux.scripts.oledump diff --git a/remnux/scripts/oledump.sls b/remnux/scripts/oledump.sls new file mode 100644 index 00000000..a31f9843 --- /dev/null +++ b/remnux/scripts/oledump.sls @@ -0,0 +1,29 @@ +include: + - remnux.packages.python-yara + - remnux.python-packages.olefile + +remnux-scripts-oledump-source: + file.managed: + - name: /usr/local/src/remnux/files/oledump_V0_0_28.zip + - source: http://didierstevens.com/files/software/oledump_V0_0_28.zip + - source_hash: sha256=58f44b68bc997c2a7f329978e13dc50e406ccccd2017c0375aa144712f029bfb + - makedirs: True + +remnux-scripts-oledump-archive: + archive.extracted: + - name: /usr/local/src/remnux/oledump-0.0.28 + - source: /usr/local/src/remnux/files/oledump_V0_0_28.zip + - enforce_toplevel: False + - watch: + - file: remnux-scripts-oledump-source + +remnux-scripts-oledump-binary: + file.managed: + - name: /usr/local/bin/oledump.py + - source: /usr/local/src/remnux/oledump-0.0.28/oledump.py + - mode: 755 + - require: + - sls: remnux.packages.python-yara + - sls: remnux.python-packages.olefile + - watch: + - archive: remnux-scripts-oledump-archive