In the final chapter of this book, we will be covering some tips and tricks for Cuckoo Sandbox. We need to modify Cuckoo so that it becomes harder to be detected as a Sandbox by malware, or further enhance the malware analysis process by adding plugins or modules. By doing so, we expect that Cuckoo is able to monitor the malware inch by inch so that we can capture the malware, just like in live infected hosts, and with more plugins or modules, Cuckoo will be able to run malware in many environments or make malware analysis easier, faster, and more of a pleasure than a routine task over and over again.

In this chapter, there will be three topics. They are: