其他分享
首页 > 其他分享> > 开源沙箱CuckooSandbox 的部署

开源沙箱CuckooSandbox 的部署

作者:互联网

系统的准备:   本次安装使用Vmware workstation安装,系统采用ubuntu desktop 16.04,分析虚拟机采用win7 SP1 x64 虚拟机的配置为: 480G 硬盘 8C CPU  32G 内存   注:在虚拟机的CPU设置上开启VT-X   Step1:安装依赖软件

cuckoo@sandbox:~$ sudo apt-get install curl git wget openconnect

Step2:安装python

cuckoo@sandbox:~$ curl https://bootstrap.pypa.io/pip/2.7/get-pip.py -O

cuckoo@sandbox:~$ sudo python get-pip.py

cuckoo@sandbox:~$ sudo apt-get install -y python-dev libffi-dev libssl-dev libfuzzy-dev libtool flex autoconf libjansson-dev git

cuckoo@sandbox:~$ sudo apt-get install -y python-setuptools

Step3:安装jpeg和接口工具

cuckoo@sandbox:~$ sudo apt-get install -y libjpeg-dev zlib1g-dev swig

Step4:安装mongodb

cuckoo@sandbox:~$ sudo apt-get install -y mongodb

step5:安装PostgreSQL

cuckoo@sandbox:~$ sudo apt-get install -y postgresql libpq-dev

step6:安装VirtualBox

cuckoo@sandbox:~$ sudo apt-get install -y virtualbox

step7:安装volatile

cuckoo@sandbox:~$ mkdir -pv Downloads

cuckoo@sandbox:~$ cd Downloads/

cuckoo@sandbox:~/Downloads$ git clone https://github.com/volatilityfoundation/volatility.git

cuckoo@sandbox:~/Downloads$ cd volatility

cuckoo@sandbox:~/Downloads/volatility$ sudo python setup.py build

cuckoo@sandbox:~/Downloads/volatility$ sudo python setup.py install

cuckoo@sandbox:~/Downloads/volatility$ cd ..

step8:安装Distorm3

cuckoo@sandbox:~/Downloads$ sudo -H pip install distorm3==3.4.4

step9:安装Yara

cuckoo@sandbox:~/Downloads$ sudo -H pip install yara-python==3.6.3

step10:安装ssdeep

cuckoo@sandbox:~/Downloads$ sudo apt-get install -y ssdeep

step11:安装pydeep

cuckoo@sandbox:~/Downloads$ sudo -H pip install pydeep

step12:安装openpyxl

cuckoo@sandbox:~/Downloads$ sudo -H pip install openpyxl

step13:安装ujson

cuckoo@sandbox:~/Downloads$ sudo -H pip install ujson

step14:安装jupyter

cuckoo@sandbox:~/Downloads$ sudo -H pip install jupyter

 

step15:安装tcpdump

cuckoo@sandbox:~/Downloads$ sudo apt-get install tcpdump 

cuckoo@sandbox:~/Downloads$ sudo apt-get install libcap2-bin 

cuckoo@sandbox:~/Downloads$ sudo setcap cap_net_raw,cap_net_admin=eip /usr/sbin/tcpdump

cuckoo@sandbox:~/Downloads$ getcap /usr/sbin/tcpdump

step16:安装apparmor

cuckoo@sandbox:~/Downloads$ sudo apt-get install -y apparmor-utils

cuckoo@sandbox:~/Downloads$ sudo aa-disable /usr/sbin/tcpdump

step17:安装cuckoo sandbox

cuckoo@sandbox:~/Downloads$ pip install -U pip setuptools

cuckoo@sandbox:~/Downloads$ sudo -H pip install -U cuckoo

 

标签:cuckoo,get,Downloads,sudo,sandbox,CuckooSandbox,开源,install,沙箱
来源: https://www.cnblogs.com/networking/p/16630444.html