Velociraptor install issue..
256 views
Skip to first unread message
Harshal Gosalia
Apr 26, 2024, 10:04:09 AM4/26/24
to velociraptor-discuss
HI all,
I recently downloaded Velociraptor from the GitHub site https://github.com/Velocidex/velociraptor/releases/tag/v0.72 specifically the version:
Upon installing this on my windows 11 device and running the command: velociraptor.exe gui from the C:\program files\velociraptor directory I get the following error message:
Velociraptor.exe: error: gui: starting frontend: listen tcp 127.0.0.1:8001: bind: An attempt was made to access a socket in a way forbidden by its access permissions.
I have Splunk running on port 8001 and I do not want to change this unless there is no other option..
Can anyone help me in changing the port for velociraptor so it does not clash?
By default the following files are present in the C:\Program Files\Velociraptor directory:
I recently downloaded Velociraptor from the GitHub site https://github.com/Velocidex/velociraptor/releases/tag/v0.72 specifically the version:
Upon installing this on my windows 11 device and running the command: velociraptor.exe gui from the C:\program files\velociraptor directory I get the following error message:
Velociraptor.exe: error: gui: starting frontend: listen tcp 127.0.0.1:8001: bind: An attempt was made to access a socket in a way forbidden by its access permissions.
I have Splunk running on port 8001 and I do not want to change this unless there is no other option..
Can anyone help me in changing the port for velociraptor so it does not clash?
By default the following files are present in the C:\Program Files\Velociraptor directory:
- client.config.yaml
- Velociraptor.exe
I have tried the following and have had no luck.
- Generate a config file using the command below:
- Velociraptor.exe config generate -i
- Changed the GUI port to something else such as 9000 or 9001
- Then run the command:
- Velociraptor.exe gui
- I get the same error message.
Any advise / help would be much appreciated! Thank you!
Mike Cohen
Apr 26, 2024, 10:09:42 AM4/26/24
to Harshal Gosalia, velociraptor-discuss
When you install the MSI it installs a client on windows. If you want to run a demo server try velociraptor gui
This will generate a new server.config.yaml file and then will try to start with listening on port 8001 (and then it will fail) so just edit the server.config.yaml (it should tell you at the top the path to the config file) and change the port from 8001 to another port, and try again
Thanks
Mike
--
You received this message because you are subscribed to the Google Groups "velociraptor-discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to velociraptor-dis...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/velociraptor-discuss/49e4368b-0f56-4e32-8ce4-7229867dbf05n%40googlegroups.com.
Reply all
Reply to author
Forward
0 new messages