November 2019
Intermediate to advanced
346 pages
9h 36m
English
At a conceptual level, obtaining dynamic analysis results consists of running samples in environments that allow the analyst to collect runtime information. Cuckoo Sandbox is a flexible framework with prebuilt modules to do just that. We began our recipe for using Cuckoo Sandbox by opening up the web portal (Step 1). A command-line interface (CLI) exists as well. We proceeded to submit a sample and select the type of analysis we wished to perform (Steps 2 and 3). These steps, too, can be performed through the Cuckoo CLI. We proceeded to examine the analysis report (Step 4). You can see at this stage how the many modules of Cuckoo Sandbox reflect in the final analysis output. For instance, if a module for capturing traffic ...