PLEASE NOTE: Cuckoo Sandbox 2.x is currently unmaintained. Any open issues or pull requests will most likely not be processed, as a current full rewrite of Cuckoo is undergoing and will be announced soon.
This is the modified version of cuckoo host. usage : (1)compile IAT/EAT/VEH version of monitor
(2)create folder named iat/eat/veh in .cuckoo/monitor/ and copy all file from "lastest" (depend on your cuckoo's version) (remember to change your monitor.dll) (3)when using cuckoo, you have to specify your monitor version (--monitor "version name")
notice : new monitor only test on 32bytes version, 64bytes could work but I didn't test it.
Cuckoo Sandbox is the leading open source automated malware analysis system.
What does that mean? It simply means that you can throw any suspicious file at it and in a matter of seconds Cuckoo will provide you back some detailed results outlining what such file did when executed inside an isolated environment.
If you want to contribute to development, report a bug, make a feature request or ask a question, please first take a look at our community guidelines. Make sure you check our existing Issues and Pull Requests and that you join our IRC or Slack channel.
For setup instructions, please refer to our documentation.
This is a development version, we do not recommend its use in production; the
latest stable version may be installed through pip install -U cuckoo
.
You can find the full documentation of the latest stable release here.