Skip to content

murselturk/vm-inspector

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

24 Commits

tools

tools

 
 

.gitignore

.gitignore

 
 

README.md

README.md

 
 

inspect.py

inspect.py

 
 

Repository files navigation

vm-inspector

A sample tool for inspecting a disk image file, e.g. vmdk, vdi, qcow, etc., to determine which operating system and applications it contains.

Usage

To inspect a disk image file:

python3 inspect.py foo.vmdk

or

./inspect.py foo.vmdk

CLI options

./inspect.py --help
usage: inspect.py [-h] [-b {libvmdk,nbdfuse}] [-v] image

Tool for inspecting a disk image file to determine which operating
system and applications it contains.

positional arguments:
  image                 disk image file to inspect

optional arguments:
  -h, --help            show this help message and exit
  -b {libvmdk,nbdfuse}, --backend {libvmdk,nbdfuse}
                        used backend for mounting disk image files in
                        the local filesystem (default: nbdfuse)
  -v, --verbose         print debug messages

Requirements

  • Python >= 3.9

  • Debian 11 Bullseye (recommended)

  • lklfuse

    $ sudo apt install build-essential flex bison bc libfuse-dev libarchive-dev xfsprogs python git
$ git clone https://github.com/lkl/linux.git
$ cd linux
$ echo "CONFIG_NTFS_FS=y" >> arch/lkl/configs/defconfig
$ make -C tools/lkl
$ sudo cp tools/lkl/lklfuse /usr/local/bin

  • nbdfuse + qemu-nbd (qcow2, vdi, vmdk, etc.) or libvmdk >= 20210807 (vmdk only)

    $ sudo apt install qemu-utils nbdfuse
    $ sudo apt install build-essential libfuse-dev
$ wget https://github.com/libyal/libvmdk/releases/download/20210807/libvmdk-alpha-20210807.tar.gz
$ tar xfv libvmdk-alpha-20210807.tar.gz
$ cd libvmdk-20210807/
$ ./configure
$ make
$ sudo make install
$ sudo ldconfig

  • libvslvm >= 20210807

    $ sudo apt install build-essential libfuse-dev
$ wget https://github.com/libyal/libvslvm/releases/download/20210807/libvslvm-experimental-20210807.tar.gz
$ tar xfv libvslvm-experimental-20210807.tar.gz
$ cd libvslvm-20210807/
$ ./configure
$ make
$ sudo make install
$ sudo ldconfig

  • pyparted

    $ sudo apt install python3 python3-pip python3-dev libparted-dev pkg-config
$ pip3 install pyparted

  • python-registry

    $ sudo apt install python3 python3-pip
$ pip3 install python-registry

  • python3-rpm >= 4.16.1.3

    $ sudo apt install build-essential python3 python3-dev python3-pip zlib1g-dev libgcrypt20-dev libmagic-dev libpopt-dev libsqlite3-dev libarchive-dev
$ wget https://ftp.osuosl.org/pub/rpm/releases/rpm-4.16.x/rpm-4.16.1.3.tar.bz2
$ tar xfv rpm-4.16.1.3.tar.bz2
$ cd rpm-4.16.1.3/
$ ./autogen.sh --enable-python --enable-bdb=no --enable-bdb-ro --enable-sqlite=yes --enable-ndb --without-lua --disable-plugins
$ make
$ sudo make install
$ sudo ldconfig
$ cd python && sudo python3 setup.py install

About

A sample tool for inspecting a disk image file, e.g. vmdk, vdi, qcow, etc., to determine which operating system and applications it contains.

Topics

disk qcow2 vdi vmdk

Resources

Readme
Activity

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages