Cuckoo-Modified-API
A Python library to interface with a cuckoo-modified instance. This library interfaces with the Cuckoo malware sandbox at: https://github.com/spender-sandbox/cuckoo-modified. It can be used either with the Django web front end or the api.py script in utils. Installation: pip install git+https://github.com/keithjjones/cuckoo-modified-api.git ...or... pip install cuckoo-modified-api. Usage: You can load this module like any other module. As an example to submit a sample to Cuckoo: Python 2.7.12 (v2.7.12:d33e0cf91556, Jun 27 2016, 15:24:40) [MSC v.1500 64 bit (AMD64)] on win32 Type 'help', 'copyright', 'credits' or 'license' for more information. >>> import CuckooAPI >>> api = CuckooAPI.CuckooAPI('10.0.0.144') >>> api.submitfile('malware.exe') {u'url': [u'http://example.tld/submit/status/3/'], u'data': {u'task_ids': [3], u'message': u'Task ID 3 has been submitted'}, u'error': False} >>> More information about each function call is below. This is the standard Django web interface API. You can also interface with the api.py script, if you don't have Django running for example, from Cuckoo by setting the following API characteristics.
FEATURES
SIMILAR TOOLS
A debugger tool for reverse engineers, crackers, and security analysts, with a user-friendly debugging UI and custom agent support.
UDcide provides an alternative approach to dealing with Android malware by targeting specific behaviors for removal.
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
Fuzzilli is a JavaScript engine fuzzer that helps identify vulnerabilities in JavaScript engines.
A strings statistics calculator for YARA rules to aid malware research.
Exploiting a vulnerability in HID iClass system to retrieve master authentication key for cloning cards and changing reader settings.
A blog post discussing INF-SCT fetch and execute techniques for bypass, evasion, and persistence
A powerful tool for detecting and identifying malware using a rule-based system.
PINNED
Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.