├── .gitignore ├── .pylintrc ├── .travis.yml ├── CHANGELOG.adoc ├── Jenkinsfile ├── LICENSE ├── MANIFEST.in ├── Makefile ├── README.adoc ├── TODO.adoc ├── docs ├── Autounattend-fixing.adoc ├── LICENSE ├── aws.adoc ├── chocolatey.adoc ├── devel.adoc ├── esx-setup.adoc ├── logos │ ├── main.png │ ├── main.svg │ └── source.svg ├── troubleshooting.adoc ├── windows-10-tips.adoc └── windows-licenses.adoc ├── malboxes ├── __init__.py ├── _version.py ├── config-example.js ├── installconfig │ ├── debian │ │ └── preseed.cfg │ ├── windows10 │ │ ├── Autounattend.xml │ │ └── enablewinrm.ps1 │ ├── windows10_64 │ │ ├── Autounattend.xml │ │ └── enablewinrm.ps1 │ ├── windows7 │ │ ├── Autounattend.xml │ │ └── enablewinrm.ps1 │ └── windows7_64 │ │ ├── Autounattend.xml │ │ └── enablewinrm.ps1 ├── malboxes.py ├── messages │ └── defender-1903.txt ├── profile-example.js ├── scripts │ ├── common │ │ └── vagrantkey.sh │ ├── debian │ │ ├── cleanup.sh │ │ ├── installtools.sh │ │ ├── setnetwork.sh │ │ ├── update.sh │ │ └── vmtools.sh │ └── windows │ │ ├── add-shortcut.ps1 │ │ ├── allow-WinRM-public.ps1 │ │ ├── disable_auto-updates.ps1 │ │ ├── disable_defender.bat │ │ ├── installtools.ps1 │ │ ├── malware_analysis.ps1 │ │ ├── refresh-proxy.ps1 │ │ ├── uac.ps1 │ │ └── vmtools.ps1 ├── templates │ ├── snippets │ │ ├── builder_virtualbox_windows.json │ │ ├── builder_vsphere_windows.json │ │ ├── ida_remote_32.json │ │ ├── ida_remote_64.json │ │ ├── postprocessor_aws.json │ │ ├── postprocessor_vagrant.json │ │ ├── provision_win10_common.json │ │ ├── provision_win7_common.json │ │ ├── tools.json │ │ ├── win10_x64_analyst.json │ │ └── win10_x86_analyst.json │ ├── win10_1607_x64_analyst.json │ ├── win10_1607_x86_analyst.json │ ├── win10_1903_x64_analyst.json │ ├── win10_1903_x86_analyst.json │ ├── win10_x64_analyst.json │ ├── win10_x86_analyst.json │ ├── win7_x64_analyst.json │ └── win7_x86_analyst.json └── vagrantfiles │ ├── analyst_aws.rb │ ├── analyst_single.rb │ ├── analyst_vsphere.rb │ ├── box_win.rb │ ├── debian-8.2.0-amd64.rb │ └── windows-7x64.rb ├── requirements.txt ├── setup.py └── tests ├── __init__.py ├── config_example_valid.sh ├── smoke ├── Dockerfile ├── build-all-templates.sh └── config.js └── test_packer_templates.py /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/.gitignore -------------------------------------------------------------------------------- /.pylintrc: -------------------------------------------------------------------------------- 1 | [BASIC] 2 | errors-only=True 3 | -------------------------------------------------------------------------------- /.travis.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/.travis.yml -------------------------------------------------------------------------------- /CHANGELOG.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/CHANGELOG.adoc -------------------------------------------------------------------------------- /Jenkinsfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/Jenkinsfile -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/LICENSE -------------------------------------------------------------------------------- /MANIFEST.in: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/MANIFEST.in -------------------------------------------------------------------------------- /Makefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/Makefile -------------------------------------------------------------------------------- /README.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/README.adoc -------------------------------------------------------------------------------- /TODO.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/TODO.adoc -------------------------------------------------------------------------------- /docs/Autounattend-fixing.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/docs/Autounattend-fixing.adoc -------------------------------------------------------------------------------- /docs/LICENSE: -------------------------------------------------------------------------------- 1 | TODO: https://creativecommons.org/licenses/by-sa/4.0/ 2 | -------------------------------------------------------------------------------- /docs/aws.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/docs/aws.adoc -------------------------------------------------------------------------------- /docs/chocolatey.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/docs/chocolatey.adoc -------------------------------------------------------------------------------- /docs/devel.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/docs/devel.adoc -------------------------------------------------------------------------------- /docs/esx-setup.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/docs/esx-setup.adoc -------------------------------------------------------------------------------- /docs/logos/main.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/docs/logos/main.png -------------------------------------------------------------------------------- /docs/logos/main.svg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/docs/logos/main.svg -------------------------------------------------------------------------------- /docs/logos/source.svg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/docs/logos/source.svg -------------------------------------------------------------------------------- /docs/troubleshooting.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/docs/troubleshooting.adoc -------------------------------------------------------------------------------- /docs/windows-10-tips.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/docs/windows-10-tips.adoc -------------------------------------------------------------------------------- /docs/windows-licenses.adoc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/docs/windows-licenses.adoc -------------------------------------------------------------------------------- /malboxes/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/__init__.py -------------------------------------------------------------------------------- /malboxes/_version.py: -------------------------------------------------------------------------------- 1 | __version__ = "0.5.0" 2 | -------------------------------------------------------------------------------- /malboxes/config-example.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/config-example.js -------------------------------------------------------------------------------- /malboxes/installconfig/debian/preseed.cfg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/installconfig/debian/preseed.cfg -------------------------------------------------------------------------------- /malboxes/installconfig/windows10/Autounattend.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/installconfig/windows10/Autounattend.xml -------------------------------------------------------------------------------- /malboxes/installconfig/windows10/enablewinrm.ps1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/installconfig/windows10/enablewinrm.ps1 -------------------------------------------------------------------------------- /malboxes/installconfig/windows10_64/Autounattend.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/installconfig/windows10_64/Autounattend.xml -------------------------------------------------------------------------------- /malboxes/installconfig/windows10_64/enablewinrm.ps1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/installconfig/windows10_64/enablewinrm.ps1 -------------------------------------------------------------------------------- /malboxes/installconfig/windows7/Autounattend.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/installconfig/windows7/Autounattend.xml -------------------------------------------------------------------------------- /malboxes/installconfig/windows7/enablewinrm.ps1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/installconfig/windows7/enablewinrm.ps1 -------------------------------------------------------------------------------- /malboxes/installconfig/windows7_64/Autounattend.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/installconfig/windows7_64/Autounattend.xml -------------------------------------------------------------------------------- /malboxes/installconfig/windows7_64/enablewinrm.ps1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/installconfig/windows7_64/enablewinrm.ps1 -------------------------------------------------------------------------------- /malboxes/malboxes.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/malboxes.py -------------------------------------------------------------------------------- /malboxes/messages/defender-1903.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/messages/defender-1903.txt -------------------------------------------------------------------------------- /malboxes/profile-example.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/profile-example.js -------------------------------------------------------------------------------- /malboxes/scripts/common/vagrantkey.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/scripts/common/vagrantkey.sh -------------------------------------------------------------------------------- /malboxes/scripts/debian/cleanup.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/scripts/debian/cleanup.sh -------------------------------------------------------------------------------- /malboxes/scripts/debian/installtools.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/scripts/debian/installtools.sh -------------------------------------------------------------------------------- /malboxes/scripts/debian/setnetwork.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/scripts/debian/setnetwork.sh -------------------------------------------------------------------------------- /malboxes/scripts/debian/update.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/scripts/debian/update.sh -------------------------------------------------------------------------------- /malboxes/scripts/debian/vmtools.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/scripts/debian/vmtools.sh -------------------------------------------------------------------------------- /malboxes/scripts/windows/add-shortcut.ps1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/scripts/windows/add-shortcut.ps1 -------------------------------------------------------------------------------- /malboxes/scripts/windows/allow-WinRM-public.ps1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/scripts/windows/allow-WinRM-public.ps1 -------------------------------------------------------------------------------- /malboxes/scripts/windows/disable_auto-updates.ps1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/scripts/windows/disable_auto-updates.ps1 -------------------------------------------------------------------------------- /malboxes/scripts/windows/disable_defender.bat: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/scripts/windows/disable_defender.bat -------------------------------------------------------------------------------- /malboxes/scripts/windows/installtools.ps1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/scripts/windows/installtools.ps1 -------------------------------------------------------------------------------- /malboxes/scripts/windows/malware_analysis.ps1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/scripts/windows/malware_analysis.ps1 -------------------------------------------------------------------------------- /malboxes/scripts/windows/refresh-proxy.ps1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/scripts/windows/refresh-proxy.ps1 -------------------------------------------------------------------------------- /malboxes/scripts/windows/uac.ps1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/scripts/windows/uac.ps1 -------------------------------------------------------------------------------- /malboxes/scripts/windows/vmtools.ps1: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/scripts/windows/vmtools.ps1 -------------------------------------------------------------------------------- /malboxes/templates/snippets/builder_virtualbox_windows.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/templates/snippets/builder_virtualbox_windows.json -------------------------------------------------------------------------------- /malboxes/templates/snippets/builder_vsphere_windows.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/templates/snippets/builder_vsphere_windows.json -------------------------------------------------------------------------------- /malboxes/templates/snippets/ida_remote_32.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/templates/snippets/ida_remote_32.json -------------------------------------------------------------------------------- /malboxes/templates/snippets/ida_remote_64.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/templates/snippets/ida_remote_64.json -------------------------------------------------------------------------------- /malboxes/templates/snippets/postprocessor_aws.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/templates/snippets/postprocessor_aws.json -------------------------------------------------------------------------------- /malboxes/templates/snippets/postprocessor_vagrant.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/templates/snippets/postprocessor_vagrant.json -------------------------------------------------------------------------------- /malboxes/templates/snippets/provision_win10_common.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/templates/snippets/provision_win10_common.json -------------------------------------------------------------------------------- /malboxes/templates/snippets/provision_win7_common.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/templates/snippets/provision_win7_common.json -------------------------------------------------------------------------------- /malboxes/templates/snippets/tools.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/templates/snippets/tools.json -------------------------------------------------------------------------------- /malboxes/templates/snippets/win10_x64_analyst.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/templates/snippets/win10_x64_analyst.json -------------------------------------------------------------------------------- /malboxes/templates/snippets/win10_x86_analyst.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/templates/snippets/win10_x86_analyst.json -------------------------------------------------------------------------------- /malboxes/templates/win10_1607_x64_analyst.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/templates/win10_1607_x64_analyst.json -------------------------------------------------------------------------------- /malboxes/templates/win10_1607_x86_analyst.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/templates/win10_1607_x86_analyst.json -------------------------------------------------------------------------------- /malboxes/templates/win10_1903_x64_analyst.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/templates/win10_1903_x64_analyst.json -------------------------------------------------------------------------------- /malboxes/templates/win10_1903_x86_analyst.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/templates/win10_1903_x86_analyst.json -------------------------------------------------------------------------------- /malboxes/templates/win10_x64_analyst.json: -------------------------------------------------------------------------------- 1 | {% include 'win10_1903_x64_analyst.json' %} 2 | -------------------------------------------------------------------------------- /malboxes/templates/win10_x86_analyst.json: -------------------------------------------------------------------------------- 1 | {% include 'win10_1903_x86_analyst.json' %} 2 | -------------------------------------------------------------------------------- /malboxes/templates/win7_x64_analyst.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/templates/win7_x64_analyst.json -------------------------------------------------------------------------------- /malboxes/templates/win7_x86_analyst.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/templates/win7_x86_analyst.json -------------------------------------------------------------------------------- /malboxes/vagrantfiles/analyst_aws.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/vagrantfiles/analyst_aws.rb -------------------------------------------------------------------------------- /malboxes/vagrantfiles/analyst_single.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/vagrantfiles/analyst_single.rb -------------------------------------------------------------------------------- /malboxes/vagrantfiles/analyst_vsphere.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/vagrantfiles/analyst_vsphere.rb -------------------------------------------------------------------------------- /malboxes/vagrantfiles/box_win.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/vagrantfiles/box_win.rb -------------------------------------------------------------------------------- /malboxes/vagrantfiles/debian-8.2.0-amd64.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/vagrantfiles/debian-8.2.0-amd64.rb -------------------------------------------------------------------------------- /malboxes/vagrantfiles/windows-7x64.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/malboxes/vagrantfiles/windows-7x64.rb -------------------------------------------------------------------------------- /requirements.txt: -------------------------------------------------------------------------------- 1 | appdirs 2 | Jinja2>=2.9 3 | jsmin 4 | boto3 5 | 6 | -------------------------------------------------------------------------------- /setup.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/setup.py -------------------------------------------------------------------------------- /tests/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /tests/config_example_valid.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/tests/config_example_valid.sh -------------------------------------------------------------------------------- /tests/smoke/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/tests/smoke/Dockerfile -------------------------------------------------------------------------------- /tests/smoke/build-all-templates.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/tests/smoke/build-all-templates.sh -------------------------------------------------------------------------------- /tests/smoke/config.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/tests/smoke/config.js -------------------------------------------------------------------------------- /tests/test_packer_templates.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/GoSecure/malboxes/HEAD/tests/test_packer_templates.py --------------------------------------------------------------------------------