-
-
Notifications
You must be signed in to change notification settings - Fork 61
/
analyzer-Dockerfile
executable file
·18 lines (18 loc) · 1.34 KB
/
analyzer-Dockerfile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
FROM ubuntu:20.04
ENV DEBIAN_FRONTEND noninteractive
RUN apt-get update && apt-get install -y python3 python3-pip curl libfuzzy-dev yara libmagic-dev libjansson-dev libssl-dev libffi-dev tesseract-ocr libtesseract-dev libssl-dev swig p7zip-full radare2 dmg2img snort
RUN pip3 install pyelftools macholib python-magic nltk Pillow jinja2 ssdeep pefile scapy r2pipe pytesseract M2Crypto requests tld tldextract bs4 psutil pymongo==3.12.1 pyOpenSSL oletools extract_msg elasticsearch redis gevent
RUN python3 -m nltk.downloader words punkt wordnet
RUN python3 -c 'import tldextract; tldextract.TLDExtract()'
RUN ln -s /usr/local/lib/python3.7/site-packages/usr/local/lib/libyara.so /usr/local/lib/libyara.so
RUN pip3 install --global-option="build" --global-option="--enable-cuckoo" --global-option="--enable-magic" yara-python
RUN chmod a+r /etc/snort/snort.conf
#RUN wget -O /tmp/community-rules.tar.gz https://www.snort.org/downloads/community/community-rules.tar.gz && \
# mkdir -p /etc/snort/rules && \
# tar zxvf /tmp/community-rules.tar.gz -C /etc/snort/rules --strip-components=1
ADD ./ /analyzer
RUN mv /analyzer/old-backup-yara-rules-github.zip /tmp/yara-rules.zip && \
mkdir -p /analyzer/yara/yara-rules-github && \
7z x /tmp/yara-rules.zip -o/analyzer/yara/ && \
rm /analyzer/yara/rules-master/index.yar && \
rm /analyzer/yara/rules-master/index_w_mobile.yar