assemblyline icon indicating copy to clipboard operation
assemblyline copied to clipboard

Published 20 hours ago verified publisher icon CybercentreCanada

VMRay Service

Open cccs-rs opened this issue 1 year ago • 5 comments

Is your feature request related to a problem? Please describe. Has been requested over the years but there is no official service because of the license requirements & lack of API documentation: VMRay integration (google.com)

Describe the solution you'd like Community-written service to leverage VMRay analysis

cccs-rs avatar Mar 20 '23 17:03 cccs-rs

We've started work on this and should be able to upload something after testing and including the standard dynamic heuristics.

eljeffeg avatar Mar 20 '23 21:03 eljeffeg

@eljeffeg - we're also interested in integrating with VMRay? Any luck on this service?

ed4wg avatar Jun 23 '23 20:06 ed4wg

Yes, but we're dealing with issues with VMRay itself. The dynamic piece isn't working as the win11 vms are failing to start. Once we get that all figured out, we'll continue working on the AL service.

eljeffeg avatar Jun 24 '23 00:06 eljeffeg

@eljeffeg any update on your side? We also have a VMRay instance and would like to see a service developed. Before we start from scratch, maybe we can join forces?

mback2k avatar Feb 12 '24 15:02 mback2k

@ed4wg @mback2k We haven't been able to finish it as we've been busy with other things, but here is what we have thus far, which should at least pull back results and such. Happy to join forces and get it done. https://github.com/fbicyber/assemblyline-service-vmray

Note: we don't actually have a container on dockerhub, so you'll have to build your own.

eljeffeg avatar Feb 12 '24 16:02 eljeffeg