标签：cuckoo get Downloads sudo sandbox CuckooSandbox 开源 install 沙箱

系统的准备：   本次安装使用Vmware workstation安装，系统采用ubuntu desktop 16.04,分析虚拟机采用win7 SP1 x64 虚拟机的配置为： 480G 硬盘 8C CPU  32G 内存   注：在虚拟机的CPU设置上开启VT-X   Step1:安装依赖软件

cuckoo@sandbox:~$ sudo apt-get install curl git wget openconnect

Step2:安装python

cuckoo@sandbox:~$ curl https://bootstrap.pypa.io/pip/2.7/get-pip.py -O

cuckoo@sandbox:~$ sudo python get-pip.py

cuckoo@sandbox:~$ sudo apt-get install -y python-dev libffi-dev libssl-dev libfuzzy-dev libtool flex autoconf libjansson-dev git

cuckoo@sandbox:~$ sudo apt-get install -y python-setuptools

Step3:安装jpeg和接口工具

cuckoo@sandbox:~$ sudo apt-get install -y libjpeg-dev zlib1g-dev swig

Step4:安装mongodb

cuckoo@sandbox:~$ sudo apt-get install -y mongodb

step5:安装PostgreSQL

cuckoo@sandbox:~$ sudo apt-get install -y postgresql libpq-dev

step6:安装VirtualBox

cuckoo@sandbox:~$ sudo apt-get install -y virtualbox

step7:安装volatile

cuckoo@sandbox:~$ mkdir -pv Downloads

cuckoo@sandbox:~$ cd Downloads/

cuckoo@sandbox:~/Downloads$ git clone https://github.com/volatilityfoundation/volatility.git

cuckoo@sandbox:~/Downloads$ cd volatility

cuckoo@sandbox:~/Downloads/volatility$ sudo python setup.py build

cuckoo@sandbox:~/Downloads/volatility$ sudo python setup.py install

cuckoo@sandbox:~/Downloads/volatility$ cd ..

step8:安装Distorm3

cuckoo@sandbox:~/Downloads$ sudo -H pip install distorm3==3.4.4

step9:安装Yara

cuckoo@sandbox:~/Downloads$ sudo -H pip install yara-python==3.6.3

step10:安装ssdeep

cuckoo@sandbox:~/Downloads$ sudo apt-get install -y ssdeep

step11:安装pydeep

cuckoo@sandbox:~/Downloads$ sudo -H pip install pydeep

step12:安装openpyxl

cuckoo@sandbox:~/Downloads$ sudo -H pip install openpyxl

step13:安装ujson

cuckoo@sandbox:~/Downloads$ sudo -H pip install ujson

step14:安装jupyter

cuckoo@sandbox:~/Downloads$ sudo -H pip install jupyter

 

step15:安装tcpdump

cuckoo@sandbox:~/Downloads$ sudo apt-get install tcpdump 

cuckoo@sandbox:~/Downloads$ sudo apt-get install libcap2-bin 

cuckoo@sandbox:~/Downloads$ sudo setcap cap_net_raw,cap_net_admin=eip /usr/sbin/tcpdump

cuckoo@sandbox:~/Downloads$ getcap /usr/sbin/tcpdump

step16:安装apparmor

cuckoo@sandbox:~/Downloads$ sudo apt-get install -y apparmor-utils

cuckoo@sandbox:~/Downloads$ sudo aa-disable /usr/sbin/tcpdump

step17:安装cuckoo sandbox

cuckoo@sandbox:~/Downloads$ pip install -U pip setuptools

cuckoo@sandbox:~/Downloads$ sudo -H pip install -U cuckoo

 

标签：cuckoo,get,Downloads,sudo,sandbox,CuckooSandbox,开源,install,沙箱
来源： https://www.cnblogs.com/networking/p/16630444.html

本站声明： 1. iCode9 技术分享网（下文简称本站）提供的所有内容，仅供技术学习、探讨和分享；
2. 关于本站的所有留言、评论、转载及引用，纯属内容发起人的个人观点，与本站观点和立场无关；
3. 关于本站的所有言论和文字，纯属内容发起人的个人观点，与本站观点和立场无关；
4. 本站文章均是网友提供，不完全保证技术分享内容的完整性、准确性、时效性、风险性和版权归属；如您发现该文章侵犯了您的权益，可联系我们第一时间进行删除；
5. 本站为非盈利性的个人网站，所有内容不会用来进行牟利，也不会利用任何形式的广告来间接获益，纯粹是为了广大技术爱好者提供技术内容和技术思想的分享性交流网站。