FAT 搭建的坑
1 先按照官方步驟進行,完成后進行如下步驟
2 修改
- move /firmadyne into /firmware-analysis-toolkit
- navigate to the Firmadyne folder and execute "sudo ./download.sh" (seems like I missed this step when setting up Firmadyne)
- move fat.py and reset.py into Firmadyne folder
- modify the firmadyne_path (in fat.py) and FIRMWARE_DIR (in firmadyne.config) to the current path of Firmadyne.
mipsel-linux-gcc 編譯大端程序
mipsel-linux-gcc demo.c -EB -c -static -o demo1
mipsel-linux-ld demo1 -EB -o demo
若是編譯成共享庫的話,兩步都要加上 -shared 參數
qemu system 環境搭建,網絡配置
1 下載
2 配置網絡
sudo tunctl -t tap0
sudo ifconfig tap0 10.0.0.1/24
3 進入虛擬機配置網絡
sudo qemu-system-mips -M malta -kernel vmlinux-3.2.0-4-4kc-malta -hda debian_wheezy_mips_standard.qcow2 -append "root=/dev/sda1 console=tty0" -netdev tap,id=tapnet,ifname=tap0,script=no -device rtl8139,netdev=tapnet -nographic
ifconfig eth0 10.0.0.2/24 up
4 進入虛擬機后
mount -o bind /dev ./squashfs-root/dev/
mount -t proc /proc/ ./squashfs-root/proc/
chroot squashfs-root sh
然后分析程序,手動啟動程序
qemu system 網絡配置虛擬機通外網
1
sudo tunctl -t br0
sudo ifconfig br0 10.0.0.1/24
sudo brctl addbr virbr0
sudo brctl addif virbr0 ens33
sudo brctl addif virbr0 br0
2 在/etc/network/interfaces 加入
auto virbr0
iface virbr0 inet dhcp
bridge_ports eth0
3 啟動虛擬機
sudo qemu-system-mips -M malta -kernel vmlinux-3.2.0-4-4kc-malta -hda debian_wheezy_mips_standard.qcow2 -append "root=/dev/sda1 console=tty0" -netdev tap,id=tapnet,ifname=br0,script=no -device rtl8139,netdev=tapnet -nographic