cert-ee / cuckoo3

Cuckoo3 is a Python 3 open source automated malware analysis system.
https://cuckoo-hatch.cert.ee
European Union Public License 1.2
642 stars 83 forks source link

Cuckoo3 - Malware analysis tool

Cuckoo3 logo

PyPI version

GitHub License GitHub contributors GitHub Release

About

Cuckoo3 is an open-source tool to test suspicious files or links in a controlled environment.

It will test them in a sandboxed platform emulator(s) and generate a report, showing what the files or websites did during the test.

⚠️ You can currently only set up Cuckoo3 on Linux(Ubuntu) machines with Python 3.10 and run Windows sandboxes.
Check our Cuckoo3 requirements for more information.

You can see it in action at our online Cuckoo3 Sandbox.
For more insight into our plans, check out our roadmap here.

Quickstart

To get started, we have created Quickstart script that installs and sets up everything you need to test out Cuckoo3.

Run the following command in your terminal and follow on screen prompts.

curl -sSf https://cuckoo-hatch.cert.ee/static/install/quickstart | sudo bash

A brief overview of Quickstart

Here is a short overview of what it will do:

For the full list of things this script does, check out our Quickstart walkthrough.

Next steps

IMPORTANT!

This is not a production ready solution just yet.
We highly advise you not to use it in production environment!