linux usage

Question

linux usage

helloworld104 opened this issue 2 years ago · comments

helloworld104 commented 2 years ago

how do i use qu1cksc0pe to analyze linux binaries dynamically?

helloworld104 commented 2 years ago

thank you

Mehmet Ali KERİMOĞLU · Answer 1 · Mon Oct 10 2022 20:57:54 GMT+0800 (China Standard Time)

You can use --watch argument.
For example: python3 qu1cksc0pe.py --file linux_binary --watch

helloworld104 · Answer 2 · Tue Oct 11 2022 11:37:44 GMT+0800 (China Standard Time)

what about the emulator part? do i need to link a linux vm?

Mehmet Ali KERİMOĞLU · Answer 3 · Tue Oct 11 2022 14:45:02 GMT+0800 (China Standard Time)

No you dont need a VM. Emulator is Qiling based so when you execute the --watch argument Qu1cksc0pe downloads the rootfs for target binary and tries to execute that binary in downloaded rootfs

helloworld104 · Answer 4 · Wed Oct 12 2022 09:04:45 GMT+0800 (China Standard Time)

hi, i just tried to execute the watch command but i currently face this error...

how do i get around it?

Mehmet Ali KERİMOĞLU · Answer 5 · Wed Oct 12 2022 14:46:38 GMT+0800 (China Standard Time)

Hmm i think that error related to Qiling. Sometimes I encounter this errors to. I will look for it