Compiling xplico

[vvpalin]

Pretty nifty app but the build process is convoluted and seems to have assburgers .. so i figured if you took a gander at it and wanted to give it a spin this would get the ball rolling.

Just paste it in your console wait about 10min "ya it really has a 10min build time lol" and then pop your browser to BackTrack Linux and see what all the hoohaa is about.

Xplico - Internet Traffic Decoder. Network Forensic Analysis Tool (NFAT)

Code:

cd /tmp
mkdir xbuild
cd xbuild
wget http://softlayer.dl.sourceforge.net/project/xplico/Xplico%20versions/version%200.5.4/xplico-0.5.4.tgz
tar xvf xplico-0.5.4.tgz
rm xplico-0.5.4.tgz

wget http://geolite.maxmind.com/download/geoip/api/c/GeoIP-1.4.6.tar.gz 
tar zxvf GeoIP-1.4.6.tar.gz
cd GeoIP-1.4.6
./configure
make
cd ..
rm -f *.tar.gz

cd xplico*
wget http://geolite.maxmind.com/download/geoip/database/GeoLiteCity.dat.gz
gzip -d GeoLiteCity.dat.gz
rm -f *dat.gz
make

cd ..
wget http://mirror.cs.wisc.edu/pub/mirrors/ghost/GPL/ghostpdl/ghostpdl-8.70.tar.bz2
tar jxvf ghostpdl-8.70.tar.bz2
rm -f *.bz2
cd ghostpdl-8.70
make

cd ..
cp ghostpdl-8.70/main/obj/pcl6 xplico-0.5.*
rm -rf ghostpdl-8.70
cd xplico-0.5.*
make install
cd ..
rm -rf xbuild

cp /opt/xplico/cfg/apache_xi /etc/apache2/sites-enabled/xplico

echo '# xplico Host port
NameVirtualHost *:9876
Listen 9876' >> /etc/apache2/ports.conf

sed -i 's,post_max_size = 8M,post_max_size = 100M,' /etc/php5/apache2/php.ini
sed -i 's,upload_max_filesize = 2M,upload_max_filesize = 100M,' /etc/php5/apache2/php.ini

a2enmod rewrite

/etc/init.d/apache2 restart
/opt/xplico/script/sqlite_demo.sh

Anyways you should be good after that unless one of the links changes.

Cheers

[skinnypuppy]

Worked like a charm. And you weren't kidding about about the 10 min build time! More like 30 min on my machine. Thank you!

[purehate]

Yeah I am looking into a build for the repo but its a royal pain with all the dependencies.

[trellis]

I'll wait repo's

[creepykrawler]

Will wait as well. Cant wait!!

[aldorm]

Hi.
30min ??
And you need to do it each time you reboot with BT4??

Could be this can help you:
Noticias

[Archangel-Amael]

Hi.
30min ??
And you need to do it each time you reboot with BT4??

Could be this can help you:
Noticias

Come on now. Why would you do this everytime you reboot if you have a hdd or persistent install? Furthermore the above compile times will vary by hardware specs.

In addition if anyone follows the above link (in the post above mine) be aware you are on your own for support if something goes wrong.
Thanks.

[RageLtMan]

Devel shows explico added to repos on the 17th - so i figure its been more than a week but i still dont see it with apt-cache search, do i just not have all the BT repos listed??

[sn0tt]

Thanks for this, I just sat down and tried to install xplico.
Saved me much time

[killerdan56]

Xplico 0.6.1 Update with videosnarf added.

** Just copy into terminal and let it do its thing**

Code:

cd /tmp
mkdir xbuild
cd xbuild
wget http://voxel.dl.sourceforge.net/project/xplico/Xplico%20versions/version%200.6.1/xplico-0.6.1.tgz
tar xvf xplico-0.6.1.tgz
rm xplico-0.6.1.tgz

wget http://geolite.maxmind.com/download/geoip/api/c/GeoIP-1.4.6.tar.gz 
tar zxvf GeoIP-1.4.6.tar.gz
cd GeoIP-1.4.6
./configure
make
cd ..
rm -f *.tar.gz

cd xplico*
wget http://geolite.maxmind.com/download/geoip/database/GeoLiteCity.dat.gz
gzip -d GeoLiteCity.dat.gz
rm -f *dat.gz
make

cd ..
wget http://mirror.cs.wisc.edu/pub/mirrors/ghost/GPL/ghostpdl/ghostpdl-8.70.tar.bz2
tar jxvf ghostpdl-8.70.tar.bz2
rm -f *.bz2
cd ghostpdl-8.70
make

cd ..
cp ghostpdl-8.70/main/obj/pcl6 xplico-0.6.*
rm -rf ghostpdl-8.70

wget http://downloads.sourceforge.net/project/ucsniff/videosnarf/videosnarf-0.63.tar.gz
tar xvzf videosnarf-0.63.tar.gz
cd videosnarf-0.63
./configure 
make 
cd .. 
cp videosnarf-0.63/src/videosnarf xplico-0.6.*


cd xplico-0.6.*
make install
cd ..
rm -rf xbuild

cp /opt/xplico/cfg/apache_xi /etc/apache2/sites-enabled/xplico

echo '# xplico Host port
NameVirtualHost *:9876
Listen 9876' >> /etc/apache2/ports.conf

sed -i 's,post_max_size = 8M,post_max_size = 100M,' /etc/php5/apache2/php.ini
sed -i 's,upload_max_filesize = 2M,upload_max_filesize = 100M,' /etc/php5/apache2/php.ini

a2enmod rewrite

/etc/init.d/apache2 restart
/opt/xplico/script/sqlite_demo.sh

These two, cd to them
/opt/xplico/xi

/opt/xplico/cfg
and give them read and write access.

Im new to linux and just wanted xplico so I modded his script for 0.6.1 real fast try it and tell me if it works. If apache2 restart fails, remove the virtual host double.

Edit:
ah this is insane