├── .gitignore ├── .travis.yml ├── CODE_OF_CONDUCT.md ├── README.md ├── SECURITY.md ├── agent └── agent.py ├── analyzer └── windows │ ├── analyzer.py │ ├── bin │ ├── flashplayer.exe │ ├── loader.exe │ ├── loader_x64.exe │ ├── oldloader.exe │ ├── oldloader_x64.exe │ └── signtool.exe │ ├── dll │ ├── Debugger.dll │ ├── Debugger_x64.dll │ ├── Doppelganging.dll │ ├── Doppelganging_x64.dll │ ├── EvilGrab.dll │ ├── IcedID.dll │ ├── OldExtraction.dll │ ├── PlugX.dll │ ├── QakBot.dll │ ├── Sedreco.dll │ ├── Sedreco_x64.dll │ ├── UPX.dll │ ├── UPX_x64.dll │ ├── Ursnif.dll │ ├── Ursnif_x64.dll │ ├── capemon.dll │ ├── capemon_x64.dll │ ├── cuckoomon.dll │ └── cuckoomon_x64.dll │ ├── lib │ ├── __init__.py │ ├── api │ │ ├── __init__.py │ │ ├── process.py │ │ ├── screenshot.py │ │ └── utils.py │ ├── common │ │ ├── __init__.py │ │ ├── abstracts.py │ │ ├── constants.py │ │ ├── defines.py │ │ ├── errors.py │ │ ├── exceptions.py │ │ ├── hashing.py │ │ ├── rand.py │ │ └── results.py │ └── core │ │ ├── __init__.py │ │ ├── config.py │ │ ├── log.py │ │ ├── packages.py │ │ ├── privileges.py │ │ └── startup.py │ └── modules │ ├── __init__.py │ ├── auxiliary │ ├── __init__.py │ ├── browser.py │ ├── curtain.py │ ├── digisig.py │ ├── disguise.py │ ├── human.py │ ├── screenshots.py │ ├── sysmon.py │ └── usage.py │ └── packages │ ├── Combo.py │ ├── Combo_dll.py │ ├── Compression.py │ ├── Compression_dll.py │ ├── Compression_doc.py │ ├── Compression_js.py │ ├── Compression_pdf.py │ ├── Compression_zip.py │ ├── Debugger.py │ ├── Debugger_dll.py │ ├── Debugger_doc.py │ ├── Doppelganging.py │ ├── DumpOnAPI.py │ ├── Emotet.py │ ├── Emotet_batch.py │ ├── Emotet_doc.py │ ├── EvilGrab.py │ ├── Extraction.py │ ├── Extraction_dll.py │ ├── Extraction_jar.py │ ├── Extraction_js.py │ ├── Extraction_pdf.py │ ├── Extraction_ps1.py │ ├── Extraction_regsvr.py │ ├── Extraction_zip.py │ ├── Hancitor.py │ ├── Hancitor_dll.py │ ├── Hancitor_doc.py │ ├── IcedID.py │ ├── Injection.py │ ├── Injection_dll.py │ ├── Injection_doc.py │ ├── Injection_js.py │ ├── Injection_pdf.py │ ├── Injection_ps1.py │ ├── Injection_zip.py │ ├── PlugX.py │ ├── PlugXPayload.py │ ├── PlugX_dll.py │ ├── PlugX_doc.py │ ├── PlugX_zip.py │ ├── QakBot.py │ ├── Sedreco.py │ ├── Sedreco_dll.py │ ├── Shellcode-Extraction.py │ ├── Shellcode.py │ ├── Shellcode_x64.py │ ├── TrickBot.py │ ├── TrickBot_doc.py │ ├── UPX.py │ ├── UPX_dll.py │ ├── Ursnif.py │ ├── Ursnif_doc.py │ ├── __init__.py │ ├── applet.py │ ├── chm.py │ ├── chrome.py │ ├── cpl.py │ ├── cuckoomon.py │ ├── cuckoomon_dll.py │ ├── dll.py │ ├── doc.py │ ├── doc2016.py │ ├── eml.py │ ├── exe.py │ ├── firefox.py │ ├── generic.py │ ├── hta.py │ ├── html.py │ ├── ie.py │ ├── jar.py │ ├── js.py │ ├── mht.py │ ├── msg.py │ ├── msi.py │ ├── pdf.py │ ├── ppt.py │ ├── ps1.py │ ├── ps1_64.py │ ├── pub.py │ ├── python.py │ ├── rar.py │ ├── regsvr.py │ ├── sct.py │ ├── service.py │ ├── swf.py │ ├── vbs.py │ ├── wsf.py │ ├── xls.py │ ├── xps.py │ ├── zip.py │ └── zip_batch.py ├── conf ├── api.conf ├── auxiliary.conf ├── cuckoo.conf ├── esx.conf ├── kvm.conf ├── kvmremote.conf ├── malheur.conf ├── memory.conf ├── multi.conf ├── physical.conf ├── processing.conf ├── reporting.conf ├── smtp_sinkhole.conf ├── socks5.conf ├── virtualbox.conf ├── vmware.conf ├── vmwarerest.conf ├── vmwareserver.conf ├── vpn.conf ├── vsphere.conf └── xenserver.conf ├── cuckoo.py ├── cuckoo.pyproj ├── cuckoo.sln ├── cuckoo.v11.suo ├── data ├── html │ ├── base-report.html │ ├── base-web.html │ ├── browse.html │ ├── css │ │ ├── bootstrap-responsive.min.css │ │ └── bootstrap.min.css │ ├── error.html │ ├── graphic │ │ └── logo.html │ ├── img │ │ ├── glyphicons-halflings-white.png │ │ └── glyphicons-halflings.png │ ├── js │ │ ├── bootstrap.min.js │ │ ├── functions.js │ │ └── jquery.min.js │ ├── maec_api_call_mappings.json │ ├── pagination-menu.html │ ├── pagination-rpp.html │ ├── report.html │ ├── sections │ │ ├── behavior.html │ │ ├── dropped.html │ │ ├── errors.html │ │ ├── file.html │ │ ├── info.html │ │ ├── network.html │ │ ├── screenshots.html │ │ ├── signatures.html │ │ ├── static.html │ │ ├── url.html │ │ └── volatility.html │ ├── statistics.html │ ├── statistics │ │ └── README │ ├── submit.html │ └── success.html ├── ja3 │ └── ja3fingerprint.json ├── maec_api_call_mappings.json ├── mitre_attack.json ├── peutils │ └── UserDB.TXT ├── signature_overlay.json ├── src │ └── binpackage │ │ ├── Makefile │ │ └── execsc.c ├── test-internet.vbs └── yara │ ├── CAPE │ ├── AAR.yar │ ├── Adzok.yar │ ├── AgentTesla.yar │ ├── AlienSpy.yar │ ├── Ap0calypse.yar │ ├── Arcom.yar │ ├── Arkei.yar │ ├── Atlas.yar │ ├── Azer.yar │ ├── Azorult.yar │ ├── BackOffLoader.yar │ ├── BackOffPOS.yar │ ├── BadRabbit.yar │ ├── Bandook.yar │ ├── BitPaymer.yar │ ├── BlackNix.yar │ ├── BlackShades.yar │ ├── BlueBanana.yar │ ├── Bozok.yar │ ├── Cerber.yar │ ├── ChChes.yar │ ├── ClientMesh.yar │ ├── Clop.yar │ ├── CobaltStrikeBeacon.yar │ ├── Codoso.yar │ ├── Cryptoshield.yar │ ├── Cutlet.yar │ ├── CyberGate.yar │ ├── DarkComet.yar │ ├── DarkRAT.yar │ ├── DoppelPaymer.yar │ ├── Dreambot.yar │ ├── Dridex.yar │ ├── DridexLoader.yar │ ├── DridexV4.yar │ ├── Emotet.yar │ ├── Emotet_Loader.yar │ ├── Enfal.yar │ ├── EternalRomance.yar │ ├── EvilGrab.yar │ ├── Fareit.yar │ ├── Formbook.yar │ ├── Gandcrab.yar │ ├── Gootkit.yar │ ├── Greame.yar │ ├── Hancitor.yar │ ├── HawkEye.yar │ ├── HawkEyev9.yar │ ├── Hermes.yar │ ├── HttpBrowser.yar │ ├── IcedID.yar │ ├── Imminent.yar │ ├── Infinity.yar │ ├── Jaff.yar │ ├── JavaDropper.yar │ ├── KeyBase.yar │ ├── Kovter.yar │ ├── Kronos.yar │ ├── Locky.yar │ ├── Loki.yar │ ├── LostDoor.yar │ ├── LuminosityLink.yar │ ├── LuxNet.yar │ ├── Magniber.yar │ ├── Mangzamel.yar │ ├── Maze.yar │ ├── MedusaLocker.yar │ ├── MegaCortex.yar │ ├── Mole.yar │ ├── NanoCore.yar │ ├── NanoLocker.yar │ ├── NetTraveler.yar │ ├── NetWire.yar │ ├── OlympicDestroyer.yar │ ├── Pandora.yar │ ├── Paradox.yar │ ├── PatchWork.yar │ ├── PetrWrap.yar │ ├── Petya.yar │ ├── Phorpiex.yar │ ├── Plasma.yar │ ├── PoisonIvy.yar │ ├── PowerPool.yar │ ├── PredatorPain.yar │ ├── Punisher.yar │ ├── PythoRAT.yar │ ├── QRat.yar │ ├── QakBot.yar │ ├── RCSession.yar │ ├── REvil.yar │ ├── Ramnit.yar │ ├── RedLeaf.yar │ ├── Redsip.yar │ ├── Remcos.yar │ ├── Retefe.yar │ ├── RokRat.yar │ ├── Ryuk.yar │ ├── Sakula.yar │ ├── Scarab.yar │ ├── Sedreco.yar │ ├── Seduploader.yar │ ├── Shade.yar │ ├── ShadowTech.yar │ ├── SmallNet.yar │ ├── SmokeLoader.yar │ ├── SpyGate.yar │ ├── Sub7Nation.yar │ ├── T5000.yar │ ├── TClient.yar │ ├── TSCookie.yar │ ├── TreasureHunter.yar │ ├── TrickBot.yar │ ├── UPX.yar │ ├── Ursnif.yar │ ├── Ursnif3.yar │ ├── Varenyky.yar │ ├── Vertex.yar │ ├── Vidar.yar │ ├── VirusRat.yar │ ├── WanaCry.yar │ ├── Xtreme.yar │ ├── ZeroT.yar │ ├── ZeusPanda.yar │ ├── adWind.yar │ ├── jRat.yar │ ├── njRat.yar │ ├── tRat.yar │ ├── unrecom.yar │ └── xRAT.yar │ ├── binaries │ ├── HeavensGate.yar │ ├── embedded.yar │ ├── shellcodes.yar │ └── vmdetect.yar │ ├── memory │ ├── .gitignore │ ├── Exploit_HT_Flash_Vars.yar │ ├── Exploit_HT_VRename.yar │ ├── adgholas.yar │ ├── angler.yar │ ├── astrum.yar │ ├── cve_2013_2551.yar │ ├── cve_2014_0515.yar │ ├── cve_2014_0569.yar │ ├── cve_2014_6332.yar │ ├── cve_2015_0016.yar │ ├── cve_2015_2419.yar │ ├── cve_2015_2545.yar │ ├── cve_2015_5122.yar │ ├── cve_2016_0189.yar │ ├── cve_2016_3298.yar │ ├── darkcomet.yar │ ├── dridex.yar │ ├── dyre.yar │ ├── eitest.yar │ ├── flash_exploits.yar │ ├── kazybot.yar │ ├── neutrino.yar │ ├── nuclear.yar │ ├── rig.yar │ ├── shellcodes.yar │ └── sundown.yar │ └── urls │ └── .gitignore ├── docs ├── AUTHORS ├── CHANGELOG ├── LICENSE ├── README └── book │ └── src │ ├── Makefile │ ├── _images │ ├── logo │ │ └── cuckoo.png │ ├── schemas │ │ └── architecture-main.png │ └── screenshots │ │ ├── fog_host_management.png │ │ ├── fog_image_management.png │ │ ├── fog_scheduled_job.png │ │ ├── shared_folders.png │ │ ├── windows_network.png │ │ ├── windows_registry.png │ │ └── windows_security.png │ ├── conf.py │ ├── customization │ ├── auxiliary.rst │ ├── index.rst │ ├── machinery.rst │ ├── packages.rst │ ├── processing.rst │ ├── reporting.rst │ └── signatures.rst │ ├── development │ ├── code_style.rst │ ├── development_notes.rst │ └── index.rst │ ├── faq │ └── index.rst │ ├── finalremarks │ └── index.rst │ ├── index.rst │ ├── installation │ ├── guest │ │ ├── agent.rst │ │ ├── cloning.rst │ │ ├── creation.rst │ │ ├── index.rst │ │ ├── network.rst │ │ ├── requirements.rst │ │ └── saving.rst │ ├── guest_physical │ │ ├── creation.rst │ │ ├── index.rst │ │ ├── network.rst │ │ ├── requirements.rst │ │ └── saving.rst │ ├── host │ │ ├── configuration.rst │ │ ├── index.rst │ │ ├── installation.rst │ │ └── requirements.rst │ ├── index.rst │ └── upgrade.rst │ ├── introduction │ ├── index.rst │ ├── license.rst │ ├── sandboxing.rst │ └── what.rst │ └── usage │ ├── api.rst │ ├── clean.rst │ ├── dist.rst │ ├── index.rst │ ├── packages.rst │ ├── performance.rst │ ├── results.rst │ ├── start.rst │ ├── submit.rst │ ├── utilities.rst │ └── web.rst ├── extra ├── buildvswitch.sh ├── services │ ├── cuckoo │ ├── moloch │ ├── openvswitch-switch │ └── suricata ├── suricata.yaml └── whitelist_domains.txt ├── lib ├── __init__.py ├── cuckoo │ ├── __init__.py │ ├── common │ │ ├── __init__.py │ │ ├── abstracts.py │ │ ├── cape_utils.py │ │ ├── colors.py │ │ ├── compare.py │ │ ├── compressor.py │ │ ├── config.py │ │ ├── constants.py │ │ ├── decoders │ │ │ ├── __init__.py │ │ │ ├── alienspy.py │ │ │ ├── darkcomet.py │ │ │ ├── nanocore.py │ │ │ ├── njrat.py │ │ │ └── qrat.py │ │ ├── defines.py │ │ ├── demux.py │ │ ├── dist_db.py │ │ ├── dns.py │ │ ├── email_utils.py │ │ ├── exceptions.py │ │ ├── graphs │ │ │ ├── __init__.py │ │ │ └── binGraph │ │ │ │ ├── __init__.py │ │ │ │ ├── binGraph.py │ │ │ │ ├── graphs │ │ │ │ ├── __init__.py │ │ │ │ ├── ent │ │ │ │ │ ├── __init.py__ │ │ │ │ │ └── graph.py │ │ │ │ └── hist │ │ │ │ │ ├── __init.py__ │ │ │ │ │ └── graph.py │ │ │ │ └── requirements.txt │ │ ├── icon.py │ │ ├── irc.py │ │ ├── ja3 │ │ │ ├── __init__.py │ │ │ └── ja3.py │ │ ├── logo.py │ │ ├── logtbl.py │ │ ├── netlog.py │ │ ├── objects.py │ │ ├── office │ │ │ ├── DridexURLDecoder.py │ │ │ ├── __init__.py │ │ │ ├── msgextract.py │ │ │ ├── vba2graph.py │ │ │ └── vbadeobf.py │ │ ├── pdftools │ │ │ ├── __init__.py │ │ │ ├── pdf-parser.py │ │ │ └── pdfid.py │ │ ├── peepdf │ │ │ ├── AUTHORS │ │ │ ├── CHANGELOG │ │ │ ├── COPYING │ │ │ ├── JSAnalysis.py │ │ │ ├── PDFCore.py │ │ │ ├── PDFCrypto.py │ │ │ ├── PDFFilters.py │ │ │ ├── PDFUtils.py │ │ │ ├── README │ │ │ ├── TODO │ │ │ ├── __init__.py │ │ │ ├── aes.py │ │ │ ├── aespython │ │ │ │ ├── __init__.py │ │ │ │ ├── aes_cipher.py │ │ │ │ ├── aes_tables.py │ │ │ │ ├── cbc_mode.py │ │ │ │ ├── cfb_mode.py │ │ │ │ ├── key_expander.py │ │ │ │ ├── ofb_mode.py │ │ │ │ └── test_keys.py │ │ │ ├── ccitt.py │ │ │ ├── colorama │ │ │ │ ├── PKG-INFO │ │ │ │ ├── __init__.py │ │ │ │ ├── ansi.py │ │ │ │ ├── ansitowin32.py │ │ │ │ ├── initialise.py │ │ │ │ ├── win32.py │ │ │ │ └── winterm.py │ │ │ ├── jjdecode.py │ │ │ ├── jsbeautifier │ │ │ │ ├── __init__.py │ │ │ │ └── unpackers │ │ │ │ │ ├── README.specs.mkd │ │ │ │ │ ├── __init__.py │ │ │ │ │ ├── evalbased.py │ │ │ │ │ ├── javascriptobfuscator.py │ │ │ │ │ ├── myobfuscate.py │ │ │ │ │ ├── packer.py │ │ │ │ │ └── urlencode.py │ │ │ ├── lzw.py │ │ │ └── peepdf.dtd │ │ ├── quarantine.py │ │ ├── saztopcap.py │ │ ├── signature_utils.py │ │ ├── utils.py │ │ └── web_utils.py │ └── core │ │ ├── __init__.py │ │ ├── database.py │ │ ├── guest.py │ │ ├── plugins.py │ │ ├── resultserver.py │ │ ├── rooter.py │ │ ├── scheduler.py │ │ └── startup.py └── maec │ ├── __init__.py │ ├── maec11.py │ └── maec41.py ├── modules ├── __init__.py ├── auxiliary │ ├── __init__.py │ └── sniffer.py ├── feeds │ ├── __init__.py │ └── bad_ssl_certs.py ├── machinery │ ├── __init__.py │ ├── esx.py │ ├── kvm.py │ ├── kvmremote.py │ ├── multi.py │ ├── physical.py │ ├── virtualbox.py │ ├── vmware.py │ ├── vmwarerest.py │ ├── vmwareserver.py │ ├── vsphere.py │ └── xenserver.py ├── processing │ ├── CAPE.py │ ├── __init__.py │ ├── analysisinfo.py │ ├── behavior.py │ ├── cif.py │ ├── curtain.py │ ├── debug.py │ ├── decompression.py │ ├── deduplication.py │ ├── dropped.py │ ├── maliciousmacrobot.py │ ├── memory.py │ ├── network.py │ ├── parsers │ │ ├── __init__.py │ │ ├── malwareconfig │ │ │ ├── AAR.py │ │ │ ├── Adzok.py │ │ │ ├── AlienSpy.py │ │ │ ├── Arcom.py │ │ │ ├── BackOffLoader.py │ │ │ ├── BackOffPOS.py │ │ │ ├── BlackNix.py │ │ │ ├── BlackShades.py │ │ │ ├── BlueBanana.py │ │ │ ├── Bozok.py │ │ │ ├── ClientMesh.py │ │ │ ├── CobaltStrikeBeacon.py │ │ │ ├── CyberGate.py │ │ │ ├── DarkComet.py │ │ │ ├── DarkRAT.py │ │ │ ├── Greame.py │ │ │ ├── HawkEye.py │ │ │ ├── JavaDropper.py │ │ │ ├── LostDoor.py │ │ │ ├── LuminosityLink.py │ │ │ ├── LuxNet.py │ │ │ ├── NanoCore.py │ │ │ ├── NetWire.py │ │ │ ├── Nymaim.py │ │ │ ├── Pandora.py │ │ │ ├── Plasma.py │ │ │ ├── PoisonIvy.py │ │ │ ├── PredatorPain.py │ │ │ ├── Punisher.py │ │ │ ├── REvil.py │ │ │ ├── Sakula.py │ │ │ ├── ScriptDump.py │ │ │ ├── SmallNet.py │ │ │ ├── TSCookie.py │ │ │ ├── TrickBot.py │ │ │ ├── Ursnif.py │ │ │ ├── Xtreme.py │ │ │ ├── _ShadowTech.py │ │ │ ├── _SpyGate.py │ │ │ ├── _VirusRat.py │ │ │ ├── __init__.py │ │ │ ├── _jRat.py │ │ │ ├── adWind.py │ │ │ ├── njRat.py │ │ │ ├── pyAndroRat.py │ │ │ ├── pyDendroid.py │ │ │ ├── pyRattyExtractor.py │ │ │ ├── pySandroRat.py │ │ │ ├── pySpyNote.py │ │ │ ├── unrecom.py │ │ │ └── xRAT.py │ │ ├── mwcp │ │ │ ├── __init__.py │ │ │ ├── config │ │ │ │ ├── __init__.py │ │ │ │ └── log_config.yml │ │ │ ├── parser.py │ │ │ ├── parsers │ │ │ │ ├── Azorult.py │ │ │ │ ├── BitPaymer.py │ │ │ │ ├── ChChes.py │ │ │ │ ├── DoppelPaymer.py │ │ │ │ ├── DridexLoader.py │ │ │ │ ├── Emotet.py │ │ │ │ ├── Enfal.py │ │ │ │ ├── EvilGrab.py │ │ │ │ ├── HttpBrowser.py │ │ │ │ ├── IcedID.py │ │ │ │ ├── Loki.py │ │ │ │ ├── QakBot.py │ │ │ │ ├── RCSession.py │ │ │ │ ├── RedLeaf.py │ │ │ │ ├── Redsip.py │ │ │ │ ├── Remcos.py │ │ │ │ ├── Retefe.py │ │ │ │ ├── SmokeLoader.py │ │ │ │ └── __init__.py │ │ │ ├── reporter.py │ │ │ ├── resources │ │ │ │ ├── __init__.py │ │ │ │ ├── dispatcher.py │ │ │ │ ├── fields.json │ │ │ │ ├── fields.txt │ │ │ │ └── techanarchy_bridge.py │ │ │ ├── tester.py │ │ │ └── utils │ │ │ │ ├── __init__.py │ │ │ │ ├── construct │ │ │ │ ├── __init__.py │ │ │ │ ├── construct_html.py │ │ │ │ ├── construct_template.html │ │ │ │ ├── helpers.py │ │ │ │ ├── windows_enums.py │ │ │ │ └── windows_structures.py │ │ │ │ ├── custombase64.py │ │ │ │ ├── elffileutils.py │ │ │ │ ├── logutil.py │ │ │ │ ├── multi_proc.py │ │ │ │ ├── pefileutils.py │ │ │ │ └── stringutils.py │ │ └── plugxconfig │ │ │ ├── __init__.py │ │ │ └── plugx.py │ ├── procdump.py │ ├── procmemory.py │ ├── static.py │ ├── strings.py │ ├── suricata.py │ ├── sysmon.py │ ├── targetinfo.py │ ├── trid.py │ ├── usage.py │ └── virustotal.py ├── reporting │ ├── __init__.py │ ├── bingraph.py │ ├── callback.py │ ├── compression.py │ ├── compressresults.py │ ├── elasticsearchdb.py │ ├── jsondump.py │ ├── maec41.py │ ├── maec5.py │ ├── malheur.py │ ├── misp.py │ ├── mitre.py │ ├── mmdef.py │ ├── moloch.py │ ├── mongodb.py │ ├── ramfsclean.py │ ├── reporthtml.py │ ├── reporthtmlsummary.py │ ├── reportpdf.py │ ├── resubmitexe.py │ ├── retention.py │ ├── submitCAPE.py │ └── syslog.py └── signatures │ ├── CAPE.py │ ├── __init__.py │ ├── alphacrypt_apis.py │ ├── andromeda_apis.py │ ├── anomalous_deletefile.py │ ├── antianalysis_detectfile.py │ ├── antianalysis_detectreg.py │ ├── antiav_avast_libs.py │ ├── antiav_bitdefender_libs.py │ ├── antiav_bypass.py │ ├── antiav_detectfile.py │ ├── antiav_detectreg.py │ ├── antiav_servicestop.py │ ├── antiav_srp.py │ ├── antidbg_devices.py │ ├── antidbg_windows.py │ ├── antidebug_addvectoredexceptionhandler.py │ ├── antidebug_checkremotedebuggerpresent.py │ ├── antidebug_debugactiveprocess.py │ ├── antidebug_gettickcount.py │ ├── antidebug_guardpages.py │ ├── antidebug_ntcreatethreadex.py │ ├── antidebug_ntsetinformationthread.py │ ├── antidebug_outputdebugstring.py │ ├── antidebug_setunhandledexceptionfilter.py │ ├── antiemu_wine.py │ ├── antiemu_wine_func.py │ ├── antisandbox_check_userdomain.py │ ├── antisandbox_cuckoo.py │ ├── antisandbox_cuckoo_files.py │ ├── antisandbox_cuckoocrash.py │ ├── antisandbox_fortinet_files.py │ ├── antisandbox_joe_anubis_files.py │ ├── antisandbox_mouse_hook.py │ ├── antisandbox_restart.py │ ├── antisandbox_sboxie_libs.py │ ├── antisandbox_sboxie_mutex.py │ ├── antisandbox_sboxie_objects.py │ ├── antisandbox_scripttimer.py │ ├── antisandbox_sleep.py │ ├── antisandbox_sunbelt_files.py │ ├── antisandbox_sunbelt_libs.py │ ├── antisandbox_suspend.py │ ├── antisandbox_threattrack_files.py │ ├── antisandbox_unhook.py │ ├── antivirus_virustotal.py │ ├── antivm_bochs_keys.py │ ├── antivm_dirobjects.py │ ├── antivm_generic_bios.py │ ├── antivm_generic_cpu.py │ ├── antivm_generic_disk.py │ ├── antivm_generic_disk_setupapi.py │ ├── antivm_generic_diskreg.py │ ├── antivm_generic_scsi.py │ ├── antivm_generic_services.py │ ├── antivm_generic_system.py │ ├── antivm_hyperv_keys.py │ ├── antivm_parallels_keys.py │ ├── antivm_vbox_devices.py │ ├── antivm_vbox_files.py │ ├── antivm_vbox_keys.py │ ├── antivm_vbox_libs.py │ ├── antivm_vbox_provname.py │ ├── antivm_vbox_window.py │ ├── antivm_vmware_devices.py │ ├── antivm_vmware_events.py │ ├── antivm_vmware_files.py │ ├── antivm_vmware_keys.py │ ├── antivm_vmware_libs.py │ ├── antivm_vmware_mutexes.py │ ├── antivm_vpc_files.py │ ├── antivm_vpc_keys.py │ ├── antivm_vpc_mutex.py │ ├── antivm_xen_keys.py │ ├── api_spamming.py │ ├── backdoor_ketrican_regkeys.py │ ├── backdoor_okrum_mutex.py │ ├── bad_certs.py │ ├── bad_ssl_certs.py │ ├── banker_cridex.py │ ├── banker_geodo.py │ ├── banker_prinimalka.py │ ├── banker_spyeye_mutex.py │ ├── banker_zeus_mutex.py │ ├── banker_zeus_p2p.py │ ├── banker_zeus_url.py │ ├── bcdedit_command.py │ ├── betabot_apis.py │ ├── bitcoin_opencl.py │ ├── bootkit.py │ ├── bot_athenahttp.py │ ├── bot_dirtjumper.py │ ├── bot_drive.py │ ├── bot_drive2.py │ ├── bot_madness.py │ ├── bot_russkill.py │ ├── browser_addon.py │ ├── browser_bho.py │ ├── browser_needed.py │ ├── browser_proxy.py │ ├── browser_scanbox.py │ ├── browser_security.py │ ├── browser_startpage.py │ ├── bypass_applocker.py │ ├── bypass_firewall.py │ ├── bypass_uac.py │ ├── cape_extracted.py │ ├── carberp_mutex.py │ ├── cerber_apis.py │ ├── chimera_apis.py │ ├── clamav.py │ ├── clears_logs.py │ ├── clickfraud_cookies.py │ ├── clickfraud_volume.py │ ├── cmdline_anomaly.py │ ├── codelux_apis.py │ ├── compile_dotnet_code.py │ ├── copies_self.py │ ├── creates_exe.py │ ├── creates_largekey.py │ ├── creates_nullvalue.py │ ├── credential_dumping.py │ ├── critical_process.py │ ├── cryptomining.py │ ├── cryptopools.py │ ├── cryptowall_apis.py │ ├── cve_2014_6332.py │ ├── cve_2015_2419.py │ ├── cve_2016-0189.py │ ├── cve_2016_7200.py │ ├── darkcomet_regkeys.py │ ├── dead_connect.py │ ├── dead_link.py │ ├── debugs_self.py │ ├── decoy_doc.py │ ├── deepfreeze_mutex.py │ ├── deletes_self.py │ ├── deletes_shadowcopies.py │ ├── deletes_system_backup.py │ ├── dep_bypass.py │ ├── dep_disable.py │ ├── disables_app.py │ ├── disables_browserwarn.py │ ├── disables_drives_autodisconnect.py │ ├── disables_run_command.py │ ├── disables_spdy.py │ ├── disables_sysrestore.py │ ├── disables_uac.py │ ├── disables_wer.py │ ├── disables_wfp.py │ ├── disables_windefender.py │ ├── disables_windowsupdate.py │ ├── downloader_andromut_mutex.py │ ├── downloader_cabby.py │ ├── downloader_protonbot_mutex.py │ ├── dridex_apis.py │ ├── driver_load.py │ ├── dropper.py │ ├── dropper_js.py │ ├── dynamic_function_loading.py │ ├── dyre_apis.py │ ├── ek_angler.py │ ├── ek_gondad.py │ ├── ek_heapsray.py │ ├── ek_javaapplet.py │ ├── ek_neutrino.py │ ├── ek_nuclear.py │ ├── ek_rig.py │ ├── ek_silverlight.py │ ├── ek_sundown.py │ ├── ek_virtualcheck.py │ ├── encrypted_ioc.py │ ├── exec_crash.py │ ├── exploit_getbasekerneladdress.py │ ├── exploit_gethaldispatchtable.py │ ├── exploit_heapspray.py │ ├── family_proxyback.py │ ├── forces_mappeddrives_uac.py │ ├── generic_metrics.py │ ├── generic_phish.py │ ├── gootkit_apis.py │ ├── h1n1_apis.py │ ├── hancitor_apis.py │ ├── hawkeye_apis.py │ ├── http_request.py │ ├── infostealer_bitcoin.py │ ├── infostealer_browser.py │ ├── infostealer_browser_password.py │ ├── infostealer_ftp.py │ ├── infostealer_im.py │ ├── infostealer_keylog.py │ ├── infostealer_mail.py │ ├── infostealer_raccoon.py │ ├── infostealer_vidar.py │ ├── injection_createremotethread.py │ ├── injection_explorer.py │ ├── injection_needextension.py │ ├── injection_network.py │ ├── injection_runpe.py │ ├── injection_rwx.py │ ├── injection_themeinitapihook.py │ ├── internet_dropper.py │ ├── ipc_namedpipe.py │ ├── ispy_apis.py │ ├── js_phish.py │ ├── js_suspicious_redirect.py │ ├── kazybot_apis.py │ ├── kelihos_apis.py │ ├── kibex_apis.py │ ├── kovter_apis.py │ ├── kraken_mutex.py │ ├── locker_regedit.py │ ├── locker_taskmgr.py │ ├── locky_apis.py │ ├── malicious_dynamic_function_loading.py │ ├── martians_ie.py │ ├── martians_office.py │ ├── mimics_agent.py │ ├── mimics_filename.py │ ├── mimics_filetime.py │ ├── mimics_icon.py │ ├── mimics_processname.py │ ├── modifies_certs.py │ ├── modifies_hostsfile.py │ ├── modifies_seccenter.py │ ├── modifies_uac_notify.py │ ├── modifies_wallpaper.py │ ├── move_file_on_reboot.py │ ├── multiple_ua.py │ ├── network_anomaly.py │ ├── network_bind.py │ ├── network_cnc_generic.py │ ├── network_cnc_http.py │ ├── network_dga.py │ ├── network_docfile_http.py │ ├── network_doh.py │ ├── network_encrypts_single_packet.py │ ├── network_excessive_udp.py │ ├── network_http.py │ ├── network_icmp.py │ ├── network_irc.py │ ├── network_smtp.py │ ├── network_tor.py │ ├── network_tor_service.py │ ├── network_torgateway.py │ ├── nymaim_apis.py │ ├── office_codepage.py │ ├── office_exploit.py │ ├── office_macro.py │ ├── office_macro_suspicious.py │ ├── office_rtf.py │ ├── office_security.py │ ├── office_suspicious.py │ ├── office_write_exe.py │ ├── origin_langid.py │ ├── origin_resource_langid.py │ ├── packer_anomaly.py │ ├── packer_armadillo_mutex.py │ ├── packer_armadillo_regkey.py │ ├── packer_aspack.py │ ├── packer_aspirecrypt.py │ ├── packer_bedsprotector.py │ ├── packer_confuser.py │ ├── packer_enigma.py │ ├── packer_entropy.py │ ├── packer_mpress.py │ ├── packer_nate.py │ ├── packer_smartassembly.py │ ├── packer_spices.py │ ├── packer_themida.py │ ├── packer_titan.py │ ├── packer_upx.py │ ├── packer_vmprotect.py │ ├── pdf_annot_urls.py │ ├── persistence_ads.py │ ├── persistence_autorun.py │ ├── persistence_bootexecute.py │ ├── persistence_fileless.py │ ├── persistence_service.py │ ├── persistence_shim.py │ ├── polymorphic.py │ ├── pony_apis.py │ ├── powerpool_mutex.py │ ├── powershell_command.py │ ├── ppp_pcre.py │ ├── prevents_safeboot.py │ ├── process_interest.py │ ├── process_needed.py │ ├── procmem_yara.py │ ├── ransomware_cryptomix.py │ ├── ransomware_dmalocker.py │ ├── ransomware_fileextensions.py │ ├── ransomware_filemodifications.py │ ├── ransomware_files.py │ ├── ransomware_gandcrab.py │ ├── ransomware_germanwiper.py │ ├── ransomware_medusalocker.py │ ├── ransomware_message.py │ ├── ransomware_radamant.py │ ├── ransomware_recyclebin.py │ ├── ransomware_sodinokibi.py │ ├── rat_beebus_mutex.py │ ├── rat_fynloski_mutex.py │ ├── rat_limerat.py │ ├── rat_luminosity.py │ ├── rat_nanocore.py │ ├── rat_netwire.py │ ├── rat_njrat_regkeys.py │ ├── rat_pcclient.py │ ├── rat_plugx_mutex.py │ ├── rat_poisonivy.py │ ├── rat_quasar.py │ ├── rat_ratsnif_mutex.py │ ├── rat_spynet.py │ ├── rat_xtreme_mutex.py │ ├── reads_self.py │ ├── recon_beacon.py │ ├── recon_checkip.py │ ├── recon_fingerprint.py │ ├── recon_programs.py │ ├── recon_systeminfo.py │ ├── remcos.py │ ├── removes_zoneid_ads.py │ ├── script_downloader.py │ ├── secure_login_phish.py │ ├── securityxploded_modules.py │ ├── setsautoconfigurl.py │ ├── shifu_apis.py │ ├── sniffer_winpcap.py │ ├── spoofs_procname.py │ ├── spreading_autoruninf.py │ ├── stack_pivot.py │ ├── static_authenticode.py │ ├── static_dotnet_anomaly.py │ ├── static_java.py │ ├── static_pdf.py │ ├── static_pe_anomaly.py │ ├── static_rat_config.py │ ├── static_versioninfo_anomaly.py │ ├── stealth_childproc.py │ ├── stealth_file.py │ ├── stealth_hiddenextension.py │ ├── stealth_hiddenreg.py │ ├── stealth_hidenotifications.py │ ├── stealth_network.py │ ├── stealth_timelimit.py │ ├── stealth_webhistory.py │ ├── stealth_window.py │ ├── suricata_alert.py │ ├── sysinternals.py │ ├── targeted_flame.py │ ├── tinba_apis.py │ ├── trickbot_files.py │ ├── trickbot_mutex.py │ ├── trojan_fleercivet_mutex.py │ ├── troldesh_apis.py │ ├── upatre_apis.py │ ├── ursnif_apis.py │ ├── user_enum.py │ ├── vawtrak_apis.py │ ├── vawtrak_dll_apis.py │ ├── virus.py │ ├── virus_neshta.py │ ├── virus_renamer_mutex.py │ ├── volatility_sig.py │ ├── webmail_phish.py │ ├── whois_create.py │ ├── windows_utilities.py │ ├── wmi.py │ └── worm_allaple_mutex.py ├── nginx.md ├── requirements.txt ├── supervisor.conf ├── systemd ├── README.md ├── cuckoo-processor.service ├── cuckoo-rooter.service ├── cuckoo-wsgi.service ├── cuckoo.service ├── suricata-update.service └── suricata-update.timer ├── tests ├── abstracts_tests.py ├── colors_tests.py ├── config_tests.py ├── database_tests.py ├── email_utils_tests.py ├── integrity.py ├── objects_tests.py ├── processor_tests.py ├── reporter_tests.py ├── sniffer_tests.py └── utils_tests.py ├── utils ├── __init__.py ├── api.py ├── cleaner.py ├── db_migration │ ├── alembic.ini │ ├── env.py │ ├── script.py.mako │ └── versions │ │ ├── add_sample_parent_id.py │ │ ├── add_shrike_and_parent_id_columns.py │ │ ├── from_0_6_to_1_1.py │ │ ├── from_1_1_to_1_2-added_states.py │ │ ├── from_1_1_to_1_2-extend_file_type.py │ │ ├── from_1_2_to_1_2-accuvant-add_statistics.py │ │ ├── options_255_to_1024.py │ │ └── proper_indexes.py ├── delete_range.py ├── dist.py ├── listdump.py ├── machine.py ├── process.py ├── rooter.py ├── sample_path.py ├── smtp_sinkhole.py ├── smtp_sinkhole.sh ├── stats.py ├── submit.py ├── tcpdumpwrapper.py ├── tridupdate.py ├── vpncheck.py ├── web.py └── yara_test.py └── web ├── analysis ├── __init__.py ├── forms.py ├── templatetags │ ├── __init__.py │ ├── analysis_tags.py │ ├── generic_tags.py │ ├── key_tags.py │ └── pdf_tags.py ├── urls.py └── views.py ├── api ├── __init__.py ├── urls.py └── views.py ├── compare ├── __init__.py ├── urls.py └── views.py ├── dashboard ├── __init__.py ├── urls.py └── views.py ├── manage.py ├── static ├── css │ ├── bootstrap-datetimepicker.min.css │ ├── bootstrap.min.css │ ├── lightbox.css │ └── style.css ├── fonts │ ├── glyphicons-halflings-regular.eot │ ├── glyphicons-halflings-regular.svg │ ├── glyphicons-halflings-regular.ttf │ ├── glyphicons-halflings-regular.woff │ └── glyphicons-halflings-regular.woff2 ├── generated │ └── README ├── graphic │ ├── background.png │ ├── cape.png │ └── cuckoo.png ├── img │ ├── cape.png │ ├── close.png │ ├── loading.gif │ ├── next.png │ └── prev.png └── js │ ├── bootstrap-collapse.js │ ├── bootstrap-datetimepicker.min.js │ ├── bootstrap-fileupload.js │ ├── bootstrap-transition.js │ ├── bootstrap.min.js │ ├── hexdump.js │ ├── jquery.js │ ├── lightbox.js │ └── moment.min.js ├── submission ├── __init__.py ├── urls.py └── views.py ├── templates ├── analysis │ ├── CAPE │ │ └── index.html │ ├── admin │ │ └── index.html │ ├── antivirus.html │ ├── behavior │ │ ├── _api_call.html │ │ ├── _chunk.html │ │ ├── _processes.html │ │ ├── _search.html │ │ ├── _search_results.html │ │ ├── _tree.html │ │ └── index.html │ ├── comments │ │ └── index.html │ ├── curtain.html │ ├── debugger │ │ └── index.html │ ├── dropped │ │ └── index.html │ ├── index.html │ ├── memory │ │ ├── _apihooks.html │ │ ├── _callbacks.html │ │ ├── _devicetree.html │ │ ├── _gdt.html │ │ ├── _idt.html │ │ ├── _malfind.html │ │ ├── _messagehooks.html │ │ ├── _modscan.html │ │ ├── _netscan.html │ │ ├── _pslist.html │ │ ├── _sockscan.html │ │ ├── _ssdt.html │ │ ├── _svcscan.html │ │ ├── _timers.html │ │ ├── _yarascan.html │ │ └── index.html │ ├── misp │ │ └── index.html │ ├── mitre.html │ ├── network │ │ ├── _cif.html │ │ ├── _dns.html │ │ ├── _hosts.html │ │ ├── _http.html │ │ ├── _icmp.html │ │ ├── _irc.html │ │ ├── _ja3.html │ │ ├── _smtp.html │ │ ├── _suricata_alerts.html │ │ ├── _suricata_files.html │ │ ├── _suricata_http.html │ │ ├── _suricata_tls.html │ │ ├── _tcp.html │ │ ├── _udp.html │ │ └── index.html │ ├── overview │ │ ├── _file.html │ │ ├── _info.html │ │ ├── _screenshots.html │ │ ├── _signatures.html │ │ ├── _summary.html │ │ ├── _url.html │ │ ├── _usage.html │ │ └── index.html │ ├── pending.html │ ├── procdump │ │ └── index.html │ ├── procmemory │ │ └── index.html │ ├── report.html │ ├── reports │ │ └── index.html │ ├── search.html │ ├── shrike.html │ ├── similar │ │ └── index.html │ ├── static │ │ ├── _antivirus.html │ │ ├── _dotnet.html │ │ ├── _java.html │ │ ├── _office.html │ │ ├── _pdf.html │ │ ├── _pe32.html │ │ ├── _script.html │ │ ├── _strings.html │ │ ├── _url.html │ │ └── index.html │ ├── statistics │ │ └── index.html │ ├── surialert.html │ ├── surifiles.html │ ├── surihttp.html │ └── suritls.html ├── api │ └── index.html ├── auth │ ├── base.html │ ├── base_site.html │ ├── login.html │ └── logout.html ├── base.html ├── compare │ ├── _info.html │ ├── _summary_table.html │ ├── both.html │ ├── hash.html │ └── left.html ├── dashboard │ └── index.html ├── error.html ├── footer.html ├── header.html ├── standalone_error.html ├── statistics │ └── index.html ├── submission │ ├── complete.html │ ├── index.html │ └── status.html ├── success.html └── success_simple.html └── web ├── __init__.py ├── headers.py ├── local_settings.py ├── settings.py ├── urls.py └── wsgi.py /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/.gitignore -------------------------------------------------------------------------------- /.travis.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/.travis.yml -------------------------------------------------------------------------------- /CODE_OF_CONDUCT.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/CODE_OF_CONDUCT.md -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/README.md -------------------------------------------------------------------------------- /SECURITY.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/SECURITY.md -------------------------------------------------------------------------------- /agent/agent.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/agent/agent.py -------------------------------------------------------------------------------- /analyzer/windows/analyzer.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/analyzer.py -------------------------------------------------------------------------------- /analyzer/windows/bin/flashplayer.exe: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/bin/flashplayer.exe -------------------------------------------------------------------------------- /analyzer/windows/bin/loader.exe: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/bin/loader.exe -------------------------------------------------------------------------------- /analyzer/windows/bin/loader_x64.exe: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/bin/loader_x64.exe -------------------------------------------------------------------------------- /analyzer/windows/bin/oldloader.exe: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/bin/oldloader.exe -------------------------------------------------------------------------------- /analyzer/windows/bin/oldloader_x64.exe: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/bin/oldloader_x64.exe -------------------------------------------------------------------------------- /analyzer/windows/bin/signtool.exe: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/bin/signtool.exe -------------------------------------------------------------------------------- /analyzer/windows/dll/Debugger.dll: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/dll/Debugger.dll -------------------------------------------------------------------------------- /analyzer/windows/dll/Debugger_x64.dll: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/dll/Debugger_x64.dll -------------------------------------------------------------------------------- /analyzer/windows/dll/Doppelganging.dll: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/dll/Doppelganging.dll -------------------------------------------------------------------------------- /analyzer/windows/dll/EvilGrab.dll: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/dll/EvilGrab.dll -------------------------------------------------------------------------------- /analyzer/windows/dll/IcedID.dll: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/dll/IcedID.dll -------------------------------------------------------------------------------- /analyzer/windows/dll/OldExtraction.dll: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/dll/OldExtraction.dll -------------------------------------------------------------------------------- /analyzer/windows/dll/PlugX.dll: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/dll/PlugX.dll -------------------------------------------------------------------------------- /analyzer/windows/dll/QakBot.dll: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/dll/QakBot.dll -------------------------------------------------------------------------------- /analyzer/windows/dll/Sedreco.dll: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/dll/Sedreco.dll -------------------------------------------------------------------------------- /analyzer/windows/dll/Sedreco_x64.dll: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/dll/Sedreco_x64.dll -------------------------------------------------------------------------------- /analyzer/windows/dll/UPX.dll: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/dll/UPX.dll -------------------------------------------------------------------------------- /analyzer/windows/dll/UPX_x64.dll: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/dll/UPX_x64.dll -------------------------------------------------------------------------------- /analyzer/windows/dll/Ursnif.dll: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/dll/Ursnif.dll -------------------------------------------------------------------------------- /analyzer/windows/dll/Ursnif_x64.dll: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/dll/Ursnif_x64.dll -------------------------------------------------------------------------------- /analyzer/windows/dll/capemon.dll: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/dll/capemon.dll -------------------------------------------------------------------------------- /analyzer/windows/dll/capemon_x64.dll: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/dll/capemon_x64.dll -------------------------------------------------------------------------------- /analyzer/windows/dll/cuckoomon.dll: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/dll/cuckoomon.dll -------------------------------------------------------------------------------- /analyzer/windows/dll/cuckoomon_x64.dll: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/dll/cuckoomon_x64.dll -------------------------------------------------------------------------------- /analyzer/windows/lib/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/lib/__init__.py -------------------------------------------------------------------------------- /analyzer/windows/lib/api/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/lib/api/__init__.py -------------------------------------------------------------------------------- /analyzer/windows/lib/api/process.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/lib/api/process.py -------------------------------------------------------------------------------- /analyzer/windows/lib/api/screenshot.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/lib/api/screenshot.py -------------------------------------------------------------------------------- /analyzer/windows/lib/api/utils.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/lib/api/utils.py -------------------------------------------------------------------------------- /analyzer/windows/lib/common/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/lib/common/__init__.py -------------------------------------------------------------------------------- /analyzer/windows/lib/common/abstracts.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/lib/common/abstracts.py -------------------------------------------------------------------------------- /analyzer/windows/lib/common/constants.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/lib/common/constants.py -------------------------------------------------------------------------------- /analyzer/windows/lib/common/defines.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/lib/common/defines.py -------------------------------------------------------------------------------- /analyzer/windows/lib/common/errors.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/lib/common/errors.py -------------------------------------------------------------------------------- /analyzer/windows/lib/common/exceptions.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/lib/common/exceptions.py -------------------------------------------------------------------------------- /analyzer/windows/lib/common/hashing.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/lib/common/hashing.py -------------------------------------------------------------------------------- /analyzer/windows/lib/common/rand.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/lib/common/rand.py -------------------------------------------------------------------------------- /analyzer/windows/lib/common/results.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/lib/common/results.py -------------------------------------------------------------------------------- /analyzer/windows/lib/core/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/lib/core/__init__.py -------------------------------------------------------------------------------- /analyzer/windows/lib/core/config.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/lib/core/config.py -------------------------------------------------------------------------------- /analyzer/windows/lib/core/log.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/lib/core/log.py -------------------------------------------------------------------------------- /analyzer/windows/lib/core/packages.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/lib/core/packages.py -------------------------------------------------------------------------------- /analyzer/windows/lib/core/privileges.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/lib/core/privileges.py -------------------------------------------------------------------------------- /analyzer/windows/lib/core/startup.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/lib/core/startup.py -------------------------------------------------------------------------------- /analyzer/windows/modules/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/modules/__init__.py -------------------------------------------------------------------------------- /analyzer/windows/modules/packages/UPX.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/modules/packages/UPX.py -------------------------------------------------------------------------------- /analyzer/windows/modules/packages/chm.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/modules/packages/chm.py -------------------------------------------------------------------------------- /analyzer/windows/modules/packages/cpl.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/modules/packages/cpl.py -------------------------------------------------------------------------------- /analyzer/windows/modules/packages/dll.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/modules/packages/dll.py -------------------------------------------------------------------------------- /analyzer/windows/modules/packages/doc.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/modules/packages/doc.py -------------------------------------------------------------------------------- /analyzer/windows/modules/packages/eml.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/modules/packages/eml.py -------------------------------------------------------------------------------- /analyzer/windows/modules/packages/exe.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/modules/packages/exe.py -------------------------------------------------------------------------------- /analyzer/windows/modules/packages/hta.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/modules/packages/hta.py -------------------------------------------------------------------------------- /analyzer/windows/modules/packages/html.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/modules/packages/html.py -------------------------------------------------------------------------------- /analyzer/windows/modules/packages/ie.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/modules/packages/ie.py -------------------------------------------------------------------------------- /analyzer/windows/modules/packages/jar.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/modules/packages/jar.py -------------------------------------------------------------------------------- /analyzer/windows/modules/packages/js.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/modules/packages/js.py -------------------------------------------------------------------------------- /analyzer/windows/modules/packages/mht.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/modules/packages/mht.py -------------------------------------------------------------------------------- /analyzer/windows/modules/packages/msg.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/modules/packages/msg.py -------------------------------------------------------------------------------- /analyzer/windows/modules/packages/msi.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/modules/packages/msi.py -------------------------------------------------------------------------------- /analyzer/windows/modules/packages/pdf.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/modules/packages/pdf.py -------------------------------------------------------------------------------- /analyzer/windows/modules/packages/ppt.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/modules/packages/ppt.py -------------------------------------------------------------------------------- /analyzer/windows/modules/packages/ps1.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/modules/packages/ps1.py -------------------------------------------------------------------------------- /analyzer/windows/modules/packages/pub.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/modules/packages/pub.py -------------------------------------------------------------------------------- /analyzer/windows/modules/packages/rar.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/modules/packages/rar.py -------------------------------------------------------------------------------- /analyzer/windows/modules/packages/sct.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/modules/packages/sct.py -------------------------------------------------------------------------------- /analyzer/windows/modules/packages/swf.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/modules/packages/swf.py -------------------------------------------------------------------------------- /analyzer/windows/modules/packages/vbs.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/modules/packages/vbs.py -------------------------------------------------------------------------------- /analyzer/windows/modules/packages/wsf.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/modules/packages/wsf.py -------------------------------------------------------------------------------- /analyzer/windows/modules/packages/xls.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/modules/packages/xls.py -------------------------------------------------------------------------------- /analyzer/windows/modules/packages/xps.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/modules/packages/xps.py -------------------------------------------------------------------------------- /analyzer/windows/modules/packages/zip.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/analyzer/windows/modules/packages/zip.py -------------------------------------------------------------------------------- /conf/api.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/conf/api.conf -------------------------------------------------------------------------------- /conf/auxiliary.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/conf/auxiliary.conf -------------------------------------------------------------------------------- /conf/cuckoo.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/conf/cuckoo.conf -------------------------------------------------------------------------------- /conf/esx.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/conf/esx.conf -------------------------------------------------------------------------------- /conf/kvm.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/conf/kvm.conf -------------------------------------------------------------------------------- /conf/kvmremote.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/conf/kvmremote.conf -------------------------------------------------------------------------------- /conf/malheur.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/conf/malheur.conf -------------------------------------------------------------------------------- /conf/memory.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/conf/memory.conf -------------------------------------------------------------------------------- /conf/multi.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/conf/multi.conf -------------------------------------------------------------------------------- /conf/physical.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/conf/physical.conf -------------------------------------------------------------------------------- /conf/processing.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/conf/processing.conf -------------------------------------------------------------------------------- /conf/reporting.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/conf/reporting.conf -------------------------------------------------------------------------------- /conf/smtp_sinkhole.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/conf/smtp_sinkhole.conf -------------------------------------------------------------------------------- /conf/socks5.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/conf/socks5.conf -------------------------------------------------------------------------------- /conf/virtualbox.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/conf/virtualbox.conf -------------------------------------------------------------------------------- /conf/vmware.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/conf/vmware.conf -------------------------------------------------------------------------------- /conf/vmwarerest.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/conf/vmwarerest.conf -------------------------------------------------------------------------------- /conf/vmwareserver.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/conf/vmwareserver.conf -------------------------------------------------------------------------------- /conf/vpn.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/conf/vpn.conf -------------------------------------------------------------------------------- /conf/vsphere.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/conf/vsphere.conf -------------------------------------------------------------------------------- /conf/xenserver.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/conf/xenserver.conf -------------------------------------------------------------------------------- /cuckoo.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/cuckoo.py -------------------------------------------------------------------------------- /cuckoo.pyproj: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/cuckoo.pyproj -------------------------------------------------------------------------------- /cuckoo.sln: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/cuckoo.sln -------------------------------------------------------------------------------- /cuckoo.v11.suo: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/cuckoo.v11.suo -------------------------------------------------------------------------------- /data/html/base-report.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/html/base-report.html -------------------------------------------------------------------------------- /data/html/base-web.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/html/base-web.html -------------------------------------------------------------------------------- /data/html/browse.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/html/browse.html -------------------------------------------------------------------------------- /data/html/css/bootstrap.min.css: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/html/css/bootstrap.min.css -------------------------------------------------------------------------------- /data/html/error.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/html/error.html -------------------------------------------------------------------------------- /data/html/graphic/logo.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/html/graphic/logo.html -------------------------------------------------------------------------------- /data/html/img/glyphicons-halflings.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/html/img/glyphicons-halflings.png -------------------------------------------------------------------------------- /data/html/js/bootstrap.min.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/html/js/bootstrap.min.js -------------------------------------------------------------------------------- /data/html/js/functions.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/html/js/functions.js -------------------------------------------------------------------------------- /data/html/js/jquery.min.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/html/js/jquery.min.js -------------------------------------------------------------------------------- /data/html/maec_api_call_mappings.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/html/maec_api_call_mappings.json -------------------------------------------------------------------------------- /data/html/pagination-menu.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/html/pagination-menu.html -------------------------------------------------------------------------------- /data/html/pagination-rpp.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/html/pagination-rpp.html -------------------------------------------------------------------------------- /data/html/report.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/html/report.html -------------------------------------------------------------------------------- /data/html/sections/behavior.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/html/sections/behavior.html -------------------------------------------------------------------------------- /data/html/sections/dropped.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/html/sections/dropped.html -------------------------------------------------------------------------------- /data/html/sections/errors.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/html/sections/errors.html -------------------------------------------------------------------------------- /data/html/sections/file.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/html/sections/file.html -------------------------------------------------------------------------------- /data/html/sections/info.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/html/sections/info.html -------------------------------------------------------------------------------- /data/html/sections/network.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/html/sections/network.html -------------------------------------------------------------------------------- /data/html/sections/screenshots.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/html/sections/screenshots.html -------------------------------------------------------------------------------- /data/html/sections/signatures.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/html/sections/signatures.html -------------------------------------------------------------------------------- /data/html/sections/static.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/html/sections/static.html -------------------------------------------------------------------------------- /data/html/sections/url.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/html/sections/url.html -------------------------------------------------------------------------------- /data/html/sections/volatility.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/html/sections/volatility.html -------------------------------------------------------------------------------- /data/html/statistics.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/html/statistics.html -------------------------------------------------------------------------------- /data/html/statistics/README: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/html/statistics/README -------------------------------------------------------------------------------- /data/html/submit.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/html/submit.html -------------------------------------------------------------------------------- /data/html/success.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/html/success.html -------------------------------------------------------------------------------- /data/ja3/ja3fingerprint.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/ja3/ja3fingerprint.json -------------------------------------------------------------------------------- /data/maec_api_call_mappings.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/maec_api_call_mappings.json -------------------------------------------------------------------------------- /data/mitre_attack.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/mitre_attack.json -------------------------------------------------------------------------------- /data/peutils/UserDB.TXT: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/peutils/UserDB.TXT -------------------------------------------------------------------------------- /data/signature_overlay.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/signature_overlay.json -------------------------------------------------------------------------------- /data/src/binpackage/Makefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/src/binpackage/Makefile -------------------------------------------------------------------------------- /data/src/binpackage/execsc.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/src/binpackage/execsc.c -------------------------------------------------------------------------------- /data/test-internet.vbs: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/test-internet.vbs -------------------------------------------------------------------------------- /data/yara/CAPE/AAR.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/AAR.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Adzok.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Adzok.yar -------------------------------------------------------------------------------- /data/yara/CAPE/AgentTesla.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/AgentTesla.yar -------------------------------------------------------------------------------- /data/yara/CAPE/AlienSpy.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/AlienSpy.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Ap0calypse.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Ap0calypse.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Arcom.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Arcom.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Arkei.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Arkei.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Atlas.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Atlas.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Azer.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Azer.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Azorult.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Azorult.yar -------------------------------------------------------------------------------- /data/yara/CAPE/BackOffLoader.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/BackOffLoader.yar -------------------------------------------------------------------------------- /data/yara/CAPE/BackOffPOS.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/BackOffPOS.yar -------------------------------------------------------------------------------- /data/yara/CAPE/BadRabbit.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/BadRabbit.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Bandook.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Bandook.yar -------------------------------------------------------------------------------- /data/yara/CAPE/BitPaymer.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/BitPaymer.yar -------------------------------------------------------------------------------- /data/yara/CAPE/BlackNix.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/BlackNix.yar -------------------------------------------------------------------------------- /data/yara/CAPE/BlackShades.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/BlackShades.yar -------------------------------------------------------------------------------- /data/yara/CAPE/BlueBanana.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/BlueBanana.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Bozok.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Bozok.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Cerber.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Cerber.yar -------------------------------------------------------------------------------- /data/yara/CAPE/ChChes.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/ChChes.yar -------------------------------------------------------------------------------- /data/yara/CAPE/ClientMesh.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/ClientMesh.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Clop.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Clop.yar -------------------------------------------------------------------------------- /data/yara/CAPE/CobaltStrikeBeacon.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/CobaltStrikeBeacon.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Codoso.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Codoso.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Cryptoshield.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Cryptoshield.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Cutlet.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Cutlet.yar -------------------------------------------------------------------------------- /data/yara/CAPE/CyberGate.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/CyberGate.yar -------------------------------------------------------------------------------- /data/yara/CAPE/DarkComet.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/DarkComet.yar -------------------------------------------------------------------------------- /data/yara/CAPE/DarkRAT.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/DarkRAT.yar -------------------------------------------------------------------------------- /data/yara/CAPE/DoppelPaymer.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/DoppelPaymer.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Dreambot.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Dreambot.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Dridex.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Dridex.yar -------------------------------------------------------------------------------- /data/yara/CAPE/DridexLoader.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/DridexLoader.yar -------------------------------------------------------------------------------- /data/yara/CAPE/DridexV4.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/DridexV4.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Emotet.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Emotet.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Emotet_Loader.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Emotet_Loader.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Enfal.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Enfal.yar -------------------------------------------------------------------------------- /data/yara/CAPE/EternalRomance.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/EternalRomance.yar -------------------------------------------------------------------------------- /data/yara/CAPE/EvilGrab.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/EvilGrab.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Fareit.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Fareit.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Formbook.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Formbook.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Gandcrab.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Gandcrab.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Gootkit.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Gootkit.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Greame.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Greame.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Hancitor.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Hancitor.yar -------------------------------------------------------------------------------- /data/yara/CAPE/HawkEye.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/HawkEye.yar -------------------------------------------------------------------------------- /data/yara/CAPE/HawkEyev9.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/HawkEyev9.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Hermes.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Hermes.yar -------------------------------------------------------------------------------- /data/yara/CAPE/HttpBrowser.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/HttpBrowser.yar -------------------------------------------------------------------------------- /data/yara/CAPE/IcedID.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/IcedID.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Imminent.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Imminent.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Infinity.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Infinity.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Jaff.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Jaff.yar -------------------------------------------------------------------------------- /data/yara/CAPE/JavaDropper.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/JavaDropper.yar -------------------------------------------------------------------------------- /data/yara/CAPE/KeyBase.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/KeyBase.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Kovter.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Kovter.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Kronos.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Kronos.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Locky.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Locky.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Loki.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Loki.yar -------------------------------------------------------------------------------- /data/yara/CAPE/LostDoor.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/LostDoor.yar -------------------------------------------------------------------------------- /data/yara/CAPE/LuminosityLink.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/LuminosityLink.yar -------------------------------------------------------------------------------- /data/yara/CAPE/LuxNet.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/LuxNet.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Magniber.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Magniber.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Mangzamel.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Mangzamel.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Maze.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Maze.yar -------------------------------------------------------------------------------- /data/yara/CAPE/MedusaLocker.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/MedusaLocker.yar -------------------------------------------------------------------------------- /data/yara/CAPE/MegaCortex.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/MegaCortex.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Mole.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Mole.yar -------------------------------------------------------------------------------- /data/yara/CAPE/NanoCore.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/NanoCore.yar -------------------------------------------------------------------------------- /data/yara/CAPE/NanoLocker.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/NanoLocker.yar -------------------------------------------------------------------------------- /data/yara/CAPE/NetTraveler.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/NetTraveler.yar -------------------------------------------------------------------------------- /data/yara/CAPE/NetWire.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/NetWire.yar -------------------------------------------------------------------------------- /data/yara/CAPE/OlympicDestroyer.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/OlympicDestroyer.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Pandora.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Pandora.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Paradox.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Paradox.yar -------------------------------------------------------------------------------- /data/yara/CAPE/PatchWork.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/PatchWork.yar -------------------------------------------------------------------------------- /data/yara/CAPE/PetrWrap.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/PetrWrap.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Petya.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Petya.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Phorpiex.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Phorpiex.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Plasma.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Plasma.yar -------------------------------------------------------------------------------- /data/yara/CAPE/PoisonIvy.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/PoisonIvy.yar -------------------------------------------------------------------------------- /data/yara/CAPE/PowerPool.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/PowerPool.yar -------------------------------------------------------------------------------- /data/yara/CAPE/PredatorPain.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/PredatorPain.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Punisher.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Punisher.yar -------------------------------------------------------------------------------- /data/yara/CAPE/PythoRAT.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/PythoRAT.yar -------------------------------------------------------------------------------- /data/yara/CAPE/QRat.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/QRat.yar -------------------------------------------------------------------------------- /data/yara/CAPE/QakBot.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/QakBot.yar -------------------------------------------------------------------------------- /data/yara/CAPE/RCSession.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/RCSession.yar -------------------------------------------------------------------------------- /data/yara/CAPE/REvil.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/REvil.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Ramnit.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Ramnit.yar -------------------------------------------------------------------------------- /data/yara/CAPE/RedLeaf.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/RedLeaf.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Redsip.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Redsip.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Remcos.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Remcos.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Retefe.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Retefe.yar -------------------------------------------------------------------------------- /data/yara/CAPE/RokRat.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/RokRat.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Ryuk.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Ryuk.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Sakula.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Sakula.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Scarab.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Scarab.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Sedreco.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Sedreco.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Seduploader.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Seduploader.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Shade.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Shade.yar -------------------------------------------------------------------------------- /data/yara/CAPE/ShadowTech.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/ShadowTech.yar -------------------------------------------------------------------------------- /data/yara/CAPE/SmallNet.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/SmallNet.yar -------------------------------------------------------------------------------- /data/yara/CAPE/SmokeLoader.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/SmokeLoader.yar -------------------------------------------------------------------------------- /data/yara/CAPE/SpyGate.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/SpyGate.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Sub7Nation.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Sub7Nation.yar -------------------------------------------------------------------------------- /data/yara/CAPE/T5000.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/T5000.yar -------------------------------------------------------------------------------- /data/yara/CAPE/TClient.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/TClient.yar -------------------------------------------------------------------------------- /data/yara/CAPE/TSCookie.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/TSCookie.yar -------------------------------------------------------------------------------- /data/yara/CAPE/TreasureHunter.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/TreasureHunter.yar -------------------------------------------------------------------------------- /data/yara/CAPE/TrickBot.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/TrickBot.yar -------------------------------------------------------------------------------- /data/yara/CAPE/UPX.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/UPX.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Ursnif.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Ursnif.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Ursnif3.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Ursnif3.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Varenyky.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Varenyky.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Vertex.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Vertex.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Vidar.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Vidar.yar -------------------------------------------------------------------------------- /data/yara/CAPE/VirusRat.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/VirusRat.yar -------------------------------------------------------------------------------- /data/yara/CAPE/WanaCry.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/WanaCry.yar -------------------------------------------------------------------------------- /data/yara/CAPE/Xtreme.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/Xtreme.yar -------------------------------------------------------------------------------- /data/yara/CAPE/ZeroT.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/ZeroT.yar -------------------------------------------------------------------------------- /data/yara/CAPE/ZeusPanda.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/ZeusPanda.yar -------------------------------------------------------------------------------- /data/yara/CAPE/adWind.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/adWind.yar -------------------------------------------------------------------------------- /data/yara/CAPE/jRat.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/jRat.yar -------------------------------------------------------------------------------- /data/yara/CAPE/njRat.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/njRat.yar -------------------------------------------------------------------------------- /data/yara/CAPE/tRat.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/tRat.yar -------------------------------------------------------------------------------- /data/yara/CAPE/unrecom.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/unrecom.yar -------------------------------------------------------------------------------- /data/yara/CAPE/xRAT.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/CAPE/xRAT.yar -------------------------------------------------------------------------------- /data/yara/binaries/HeavensGate.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/binaries/HeavensGate.yar -------------------------------------------------------------------------------- /data/yara/binaries/embedded.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/binaries/embedded.yar -------------------------------------------------------------------------------- /data/yara/binaries/shellcodes.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/binaries/shellcodes.yar -------------------------------------------------------------------------------- /data/yara/binaries/vmdetect.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/binaries/vmdetect.yar -------------------------------------------------------------------------------- /data/yara/memory/.gitignore: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /data/yara/memory/Exploit_HT_VRename.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/memory/Exploit_HT_VRename.yar -------------------------------------------------------------------------------- /data/yara/memory/adgholas.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/memory/adgholas.yar -------------------------------------------------------------------------------- /data/yara/memory/angler.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/memory/angler.yar -------------------------------------------------------------------------------- /data/yara/memory/astrum.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/memory/astrum.yar -------------------------------------------------------------------------------- /data/yara/memory/cve_2013_2551.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/memory/cve_2013_2551.yar -------------------------------------------------------------------------------- /data/yara/memory/cve_2014_0515.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/memory/cve_2014_0515.yar -------------------------------------------------------------------------------- /data/yara/memory/cve_2014_0569.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/memory/cve_2014_0569.yar -------------------------------------------------------------------------------- /data/yara/memory/cve_2014_6332.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/memory/cve_2014_6332.yar -------------------------------------------------------------------------------- /data/yara/memory/cve_2015_0016.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/memory/cve_2015_0016.yar -------------------------------------------------------------------------------- /data/yara/memory/cve_2015_2419.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/memory/cve_2015_2419.yar -------------------------------------------------------------------------------- /data/yara/memory/cve_2015_2545.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/memory/cve_2015_2545.yar -------------------------------------------------------------------------------- /data/yara/memory/cve_2015_5122.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/memory/cve_2015_5122.yar -------------------------------------------------------------------------------- /data/yara/memory/cve_2016_0189.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/memory/cve_2016_0189.yar -------------------------------------------------------------------------------- /data/yara/memory/cve_2016_3298.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/memory/cve_2016_3298.yar -------------------------------------------------------------------------------- /data/yara/memory/darkcomet.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/memory/darkcomet.yar -------------------------------------------------------------------------------- /data/yara/memory/dridex.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/memory/dridex.yar -------------------------------------------------------------------------------- /data/yara/memory/dyre.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/memory/dyre.yar -------------------------------------------------------------------------------- /data/yara/memory/eitest.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/memory/eitest.yar -------------------------------------------------------------------------------- /data/yara/memory/flash_exploits.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/memory/flash_exploits.yar -------------------------------------------------------------------------------- /data/yara/memory/kazybot.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/memory/kazybot.yar -------------------------------------------------------------------------------- /data/yara/memory/neutrino.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/memory/neutrino.yar -------------------------------------------------------------------------------- /data/yara/memory/nuclear.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/memory/nuclear.yar -------------------------------------------------------------------------------- /data/yara/memory/rig.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/memory/rig.yar -------------------------------------------------------------------------------- /data/yara/memory/shellcodes.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/memory/shellcodes.yar -------------------------------------------------------------------------------- /data/yara/memory/sundown.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/data/yara/memory/sundown.yar -------------------------------------------------------------------------------- /data/yara/urls/.gitignore: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /docs/AUTHORS: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/docs/AUTHORS -------------------------------------------------------------------------------- /docs/CHANGELOG: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/docs/CHANGELOG -------------------------------------------------------------------------------- /docs/LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/docs/LICENSE -------------------------------------------------------------------------------- /docs/README: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/docs/README -------------------------------------------------------------------------------- /docs/book/src/Makefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/docs/book/src/Makefile -------------------------------------------------------------------------------- /docs/book/src/_images/logo/cuckoo.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/docs/book/src/_images/logo/cuckoo.png -------------------------------------------------------------------------------- /docs/book/src/conf.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/docs/book/src/conf.py -------------------------------------------------------------------------------- /docs/book/src/customization/auxiliary.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/docs/book/src/customization/auxiliary.rst -------------------------------------------------------------------------------- /docs/book/src/customization/index.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/docs/book/src/customization/index.rst -------------------------------------------------------------------------------- /docs/book/src/customization/machinery.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/docs/book/src/customization/machinery.rst -------------------------------------------------------------------------------- /docs/book/src/customization/packages.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/docs/book/src/customization/packages.rst -------------------------------------------------------------------------------- /docs/book/src/customization/reporting.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/docs/book/src/customization/reporting.rst -------------------------------------------------------------------------------- /docs/book/src/development/code_style.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/docs/book/src/development/code_style.rst -------------------------------------------------------------------------------- /docs/book/src/development/index.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/docs/book/src/development/index.rst -------------------------------------------------------------------------------- /docs/book/src/faq/index.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/docs/book/src/faq/index.rst -------------------------------------------------------------------------------- /docs/book/src/finalremarks/index.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/docs/book/src/finalremarks/index.rst -------------------------------------------------------------------------------- /docs/book/src/index.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/docs/book/src/index.rst -------------------------------------------------------------------------------- /docs/book/src/installation/host/index.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/docs/book/src/installation/host/index.rst -------------------------------------------------------------------------------- /docs/book/src/installation/index.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/docs/book/src/installation/index.rst -------------------------------------------------------------------------------- /docs/book/src/installation/upgrade.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/docs/book/src/installation/upgrade.rst -------------------------------------------------------------------------------- /docs/book/src/introduction/index.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/docs/book/src/introduction/index.rst -------------------------------------------------------------------------------- /docs/book/src/introduction/license.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/docs/book/src/introduction/license.rst -------------------------------------------------------------------------------- /docs/book/src/introduction/sandboxing.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/docs/book/src/introduction/sandboxing.rst -------------------------------------------------------------------------------- /docs/book/src/introduction/what.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/docs/book/src/introduction/what.rst -------------------------------------------------------------------------------- /docs/book/src/usage/api.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/docs/book/src/usage/api.rst -------------------------------------------------------------------------------- /docs/book/src/usage/clean.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/docs/book/src/usage/clean.rst -------------------------------------------------------------------------------- /docs/book/src/usage/dist.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/docs/book/src/usage/dist.rst -------------------------------------------------------------------------------- /docs/book/src/usage/index.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/docs/book/src/usage/index.rst -------------------------------------------------------------------------------- /docs/book/src/usage/packages.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/docs/book/src/usage/packages.rst -------------------------------------------------------------------------------- /docs/book/src/usage/performance.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/docs/book/src/usage/performance.rst -------------------------------------------------------------------------------- /docs/book/src/usage/results.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/docs/book/src/usage/results.rst -------------------------------------------------------------------------------- /docs/book/src/usage/start.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/docs/book/src/usage/start.rst -------------------------------------------------------------------------------- /docs/book/src/usage/submit.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/docs/book/src/usage/submit.rst -------------------------------------------------------------------------------- /docs/book/src/usage/utilities.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/docs/book/src/usage/utilities.rst -------------------------------------------------------------------------------- /docs/book/src/usage/web.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/docs/book/src/usage/web.rst -------------------------------------------------------------------------------- /extra/buildvswitch.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/extra/buildvswitch.sh -------------------------------------------------------------------------------- /extra/services/cuckoo: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/extra/services/cuckoo -------------------------------------------------------------------------------- /extra/services/moloch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/extra/services/moloch -------------------------------------------------------------------------------- /extra/services/openvswitch-switch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/extra/services/openvswitch-switch -------------------------------------------------------------------------------- /extra/services/suricata: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/extra/services/suricata -------------------------------------------------------------------------------- /extra/suricata.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/extra/suricata.yaml -------------------------------------------------------------------------------- /extra/whitelist_domains.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/extra/whitelist_domains.txt -------------------------------------------------------------------------------- /lib/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/__init__.py -------------------------------------------------------------------------------- /lib/cuckoo/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/__init__.py -------------------------------------------------------------------------------- /lib/cuckoo/common/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/__init__.py -------------------------------------------------------------------------------- /lib/cuckoo/common/abstracts.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/abstracts.py -------------------------------------------------------------------------------- /lib/cuckoo/common/cape_utils.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/cape_utils.py -------------------------------------------------------------------------------- /lib/cuckoo/common/colors.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/colors.py -------------------------------------------------------------------------------- /lib/cuckoo/common/compare.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/compare.py -------------------------------------------------------------------------------- /lib/cuckoo/common/compressor.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/compressor.py -------------------------------------------------------------------------------- /lib/cuckoo/common/config.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/config.py -------------------------------------------------------------------------------- /lib/cuckoo/common/constants.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/constants.py -------------------------------------------------------------------------------- /lib/cuckoo/common/decoders/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/decoders/__init__.py -------------------------------------------------------------------------------- /lib/cuckoo/common/decoders/alienspy.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/decoders/alienspy.py -------------------------------------------------------------------------------- /lib/cuckoo/common/decoders/darkcomet.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/decoders/darkcomet.py -------------------------------------------------------------------------------- /lib/cuckoo/common/decoders/nanocore.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/decoders/nanocore.py -------------------------------------------------------------------------------- /lib/cuckoo/common/decoders/njrat.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/decoders/njrat.py -------------------------------------------------------------------------------- /lib/cuckoo/common/decoders/qrat.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/decoders/qrat.py -------------------------------------------------------------------------------- /lib/cuckoo/common/defines.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/defines.py -------------------------------------------------------------------------------- /lib/cuckoo/common/demux.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/demux.py -------------------------------------------------------------------------------- /lib/cuckoo/common/dist_db.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/dist_db.py -------------------------------------------------------------------------------- /lib/cuckoo/common/dns.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/dns.py -------------------------------------------------------------------------------- /lib/cuckoo/common/email_utils.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/email_utils.py -------------------------------------------------------------------------------- /lib/cuckoo/common/exceptions.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/exceptions.py -------------------------------------------------------------------------------- /lib/cuckoo/common/graphs/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /lib/cuckoo/common/graphs/binGraph/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /lib/cuckoo/common/graphs/binGraph/graphs/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /lib/cuckoo/common/graphs/binGraph/graphs/ent/__init.py__: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /lib/cuckoo/common/graphs/binGraph/graphs/hist/__init.py__: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /lib/cuckoo/common/icon.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/icon.py -------------------------------------------------------------------------------- /lib/cuckoo/common/irc.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/irc.py -------------------------------------------------------------------------------- /lib/cuckoo/common/ja3/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /lib/cuckoo/common/ja3/ja3.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/ja3/ja3.py -------------------------------------------------------------------------------- /lib/cuckoo/common/logo.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/logo.py -------------------------------------------------------------------------------- /lib/cuckoo/common/logtbl.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/logtbl.py -------------------------------------------------------------------------------- /lib/cuckoo/common/netlog.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/netlog.py -------------------------------------------------------------------------------- /lib/cuckoo/common/objects.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/objects.py -------------------------------------------------------------------------------- /lib/cuckoo/common/office/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /lib/cuckoo/common/office/msgextract.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/office/msgextract.py -------------------------------------------------------------------------------- /lib/cuckoo/common/office/vba2graph.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/office/vba2graph.py -------------------------------------------------------------------------------- /lib/cuckoo/common/office/vbadeobf.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/office/vbadeobf.py -------------------------------------------------------------------------------- /lib/cuckoo/common/pdftools/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /lib/cuckoo/common/pdftools/pdf-parser.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/pdftools/pdf-parser.py -------------------------------------------------------------------------------- /lib/cuckoo/common/pdftools/pdfid.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/pdftools/pdfid.py -------------------------------------------------------------------------------- /lib/cuckoo/common/peepdf/AUTHORS: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/peepdf/AUTHORS -------------------------------------------------------------------------------- /lib/cuckoo/common/peepdf/CHANGELOG: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/peepdf/CHANGELOG -------------------------------------------------------------------------------- /lib/cuckoo/common/peepdf/COPYING: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/peepdf/COPYING -------------------------------------------------------------------------------- /lib/cuckoo/common/peepdf/JSAnalysis.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/peepdf/JSAnalysis.py -------------------------------------------------------------------------------- /lib/cuckoo/common/peepdf/PDFCore.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/peepdf/PDFCore.py -------------------------------------------------------------------------------- /lib/cuckoo/common/peepdf/PDFCrypto.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/peepdf/PDFCrypto.py -------------------------------------------------------------------------------- /lib/cuckoo/common/peepdf/PDFFilters.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/peepdf/PDFFilters.py -------------------------------------------------------------------------------- /lib/cuckoo/common/peepdf/PDFUtils.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/peepdf/PDFUtils.py -------------------------------------------------------------------------------- /lib/cuckoo/common/peepdf/README: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/peepdf/README -------------------------------------------------------------------------------- /lib/cuckoo/common/peepdf/TODO: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/peepdf/TODO -------------------------------------------------------------------------------- /lib/cuckoo/common/peepdf/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /lib/cuckoo/common/peepdf/aes.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/peepdf/aes.py -------------------------------------------------------------------------------- /lib/cuckoo/common/peepdf/aespython/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /lib/cuckoo/common/peepdf/ccitt.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/peepdf/ccitt.py -------------------------------------------------------------------------------- /lib/cuckoo/common/peepdf/colorama/ansi.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/peepdf/colorama/ansi.py -------------------------------------------------------------------------------- /lib/cuckoo/common/peepdf/jjdecode.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/peepdf/jjdecode.py -------------------------------------------------------------------------------- /lib/cuckoo/common/peepdf/lzw.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/peepdf/lzw.py -------------------------------------------------------------------------------- /lib/cuckoo/common/peepdf/peepdf.dtd: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/peepdf/peepdf.dtd -------------------------------------------------------------------------------- /lib/cuckoo/common/quarantine.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/quarantine.py -------------------------------------------------------------------------------- /lib/cuckoo/common/saztopcap.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/saztopcap.py -------------------------------------------------------------------------------- /lib/cuckoo/common/signature_utils.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/signature_utils.py -------------------------------------------------------------------------------- /lib/cuckoo/common/utils.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/utils.py -------------------------------------------------------------------------------- /lib/cuckoo/common/web_utils.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/common/web_utils.py -------------------------------------------------------------------------------- /lib/cuckoo/core/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/core/__init__.py -------------------------------------------------------------------------------- /lib/cuckoo/core/database.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/core/database.py -------------------------------------------------------------------------------- /lib/cuckoo/core/guest.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/core/guest.py -------------------------------------------------------------------------------- /lib/cuckoo/core/plugins.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/core/plugins.py -------------------------------------------------------------------------------- /lib/cuckoo/core/resultserver.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/core/resultserver.py -------------------------------------------------------------------------------- /lib/cuckoo/core/rooter.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/core/rooter.py -------------------------------------------------------------------------------- /lib/cuckoo/core/scheduler.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/core/scheduler.py -------------------------------------------------------------------------------- /lib/cuckoo/core/startup.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/cuckoo/core/startup.py -------------------------------------------------------------------------------- /lib/maec/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/maec/__init__.py -------------------------------------------------------------------------------- /lib/maec/maec11.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/maec/maec11.py -------------------------------------------------------------------------------- /lib/maec/maec41.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/lib/maec/maec41.py -------------------------------------------------------------------------------- /modules/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/__init__.py -------------------------------------------------------------------------------- /modules/auxiliary/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/auxiliary/__init__.py -------------------------------------------------------------------------------- /modules/auxiliary/sniffer.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/auxiliary/sniffer.py -------------------------------------------------------------------------------- /modules/feeds/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/feeds/__init__.py -------------------------------------------------------------------------------- /modules/feeds/bad_ssl_certs.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/feeds/bad_ssl_certs.py -------------------------------------------------------------------------------- /modules/machinery/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/machinery/__init__.py -------------------------------------------------------------------------------- /modules/machinery/esx.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/machinery/esx.py -------------------------------------------------------------------------------- /modules/machinery/kvm.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/machinery/kvm.py -------------------------------------------------------------------------------- /modules/machinery/kvmremote.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/machinery/kvmremote.py -------------------------------------------------------------------------------- /modules/machinery/multi.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/machinery/multi.py -------------------------------------------------------------------------------- /modules/machinery/physical.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/machinery/physical.py -------------------------------------------------------------------------------- /modules/machinery/virtualbox.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/machinery/virtualbox.py -------------------------------------------------------------------------------- /modules/machinery/vmware.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/machinery/vmware.py -------------------------------------------------------------------------------- /modules/machinery/vmwarerest.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/machinery/vmwarerest.py -------------------------------------------------------------------------------- /modules/machinery/vmwareserver.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/machinery/vmwareserver.py -------------------------------------------------------------------------------- /modules/machinery/vsphere.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/machinery/vsphere.py -------------------------------------------------------------------------------- /modules/machinery/xenserver.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/machinery/xenserver.py -------------------------------------------------------------------------------- /modules/processing/CAPE.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/processing/CAPE.py -------------------------------------------------------------------------------- /modules/processing/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/processing/__init__.py -------------------------------------------------------------------------------- /modules/processing/analysisinfo.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/processing/analysisinfo.py -------------------------------------------------------------------------------- /modules/processing/behavior.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/processing/behavior.py -------------------------------------------------------------------------------- /modules/processing/cif.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/processing/cif.py -------------------------------------------------------------------------------- /modules/processing/curtain.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/processing/curtain.py -------------------------------------------------------------------------------- /modules/processing/debug.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/processing/debug.py -------------------------------------------------------------------------------- /modules/processing/decompression.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/processing/decompression.py -------------------------------------------------------------------------------- /modules/processing/deduplication.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/processing/deduplication.py -------------------------------------------------------------------------------- /modules/processing/dropped.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/processing/dropped.py -------------------------------------------------------------------------------- /modules/processing/maliciousmacrobot.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/processing/maliciousmacrobot.py -------------------------------------------------------------------------------- /modules/processing/memory.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/processing/memory.py -------------------------------------------------------------------------------- /modules/processing/network.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/processing/network.py -------------------------------------------------------------------------------- /modules/processing/parsers/__init__.py: -------------------------------------------------------------------------------- 1 | # Init -------------------------------------------------------------------------------- /modules/processing/parsers/malwareconfig/__init__.py: -------------------------------------------------------------------------------- 1 | # Init -------------------------------------------------------------------------------- /modules/processing/parsers/mwcp/parser.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/processing/parsers/mwcp/parser.py -------------------------------------------------------------------------------- /modules/processing/parsers/mwcp/resources/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /modules/processing/parsers/mwcp/tester.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/processing/parsers/mwcp/tester.py -------------------------------------------------------------------------------- /modules/processing/parsers/plugxconfig/__init__.py: -------------------------------------------------------------------------------- 1 | # Init -------------------------------------------------------------------------------- /modules/processing/procdump.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/processing/procdump.py -------------------------------------------------------------------------------- /modules/processing/procmemory.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/processing/procmemory.py -------------------------------------------------------------------------------- /modules/processing/static.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/processing/static.py -------------------------------------------------------------------------------- /modules/processing/strings.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/processing/strings.py -------------------------------------------------------------------------------- /modules/processing/suricata.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/processing/suricata.py -------------------------------------------------------------------------------- /modules/processing/sysmon.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/processing/sysmon.py -------------------------------------------------------------------------------- /modules/processing/targetinfo.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/processing/targetinfo.py -------------------------------------------------------------------------------- /modules/processing/trid.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/processing/trid.py -------------------------------------------------------------------------------- /modules/processing/usage.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/processing/usage.py -------------------------------------------------------------------------------- /modules/processing/virustotal.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/processing/virustotal.py -------------------------------------------------------------------------------- /modules/reporting/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/reporting/__init__.py -------------------------------------------------------------------------------- /modules/reporting/bingraph.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/reporting/bingraph.py -------------------------------------------------------------------------------- /modules/reporting/callback.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/reporting/callback.py -------------------------------------------------------------------------------- /modules/reporting/compression.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/reporting/compression.py -------------------------------------------------------------------------------- /modules/reporting/compressresults.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/reporting/compressresults.py -------------------------------------------------------------------------------- /modules/reporting/elasticsearchdb.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/reporting/elasticsearchdb.py -------------------------------------------------------------------------------- /modules/reporting/jsondump.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/reporting/jsondump.py -------------------------------------------------------------------------------- /modules/reporting/maec41.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/reporting/maec41.py -------------------------------------------------------------------------------- /modules/reporting/maec5.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/reporting/maec5.py -------------------------------------------------------------------------------- /modules/reporting/malheur.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/reporting/malheur.py -------------------------------------------------------------------------------- /modules/reporting/misp.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/reporting/misp.py -------------------------------------------------------------------------------- /modules/reporting/mitre.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/reporting/mitre.py -------------------------------------------------------------------------------- /modules/reporting/mmdef.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/reporting/mmdef.py -------------------------------------------------------------------------------- /modules/reporting/moloch.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/reporting/moloch.py -------------------------------------------------------------------------------- /modules/reporting/mongodb.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/reporting/mongodb.py -------------------------------------------------------------------------------- /modules/reporting/ramfsclean.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/reporting/ramfsclean.py -------------------------------------------------------------------------------- /modules/reporting/reporthtml.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/reporting/reporthtml.py -------------------------------------------------------------------------------- /modules/reporting/reporthtmlsummary.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/reporting/reporthtmlsummary.py -------------------------------------------------------------------------------- /modules/reporting/reportpdf.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/reporting/reportpdf.py -------------------------------------------------------------------------------- /modules/reporting/resubmitexe.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/reporting/resubmitexe.py -------------------------------------------------------------------------------- /modules/reporting/retention.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/reporting/retention.py -------------------------------------------------------------------------------- /modules/reporting/submitCAPE.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/reporting/submitCAPE.py -------------------------------------------------------------------------------- /modules/reporting/syslog.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/reporting/syslog.py -------------------------------------------------------------------------------- /modules/signatures/CAPE.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/CAPE.py -------------------------------------------------------------------------------- /modules/signatures/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/__init__.py -------------------------------------------------------------------------------- /modules/signatures/alphacrypt_apis.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/alphacrypt_apis.py -------------------------------------------------------------------------------- /modules/signatures/andromeda_apis.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/andromeda_apis.py -------------------------------------------------------------------------------- /modules/signatures/antiav_avast_libs.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/antiav_avast_libs.py -------------------------------------------------------------------------------- /modules/signatures/antiav_bypass.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/antiav_bypass.py -------------------------------------------------------------------------------- /modules/signatures/antiav_detectfile.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/antiav_detectfile.py -------------------------------------------------------------------------------- /modules/signatures/antiav_detectreg.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/antiav_detectreg.py -------------------------------------------------------------------------------- /modules/signatures/antiav_servicestop.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/antiav_servicestop.py -------------------------------------------------------------------------------- /modules/signatures/antiav_srp.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/antiav_srp.py -------------------------------------------------------------------------------- /modules/signatures/antidbg_devices.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/antidbg_devices.py -------------------------------------------------------------------------------- /modules/signatures/antidbg_windows.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/antidbg_windows.py -------------------------------------------------------------------------------- /modules/signatures/antiemu_wine.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/antiemu_wine.py -------------------------------------------------------------------------------- /modules/signatures/antiemu_wine_func.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/antiemu_wine_func.py -------------------------------------------------------------------------------- /modules/signatures/antisandbox_cuckoo.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/antisandbox_cuckoo.py -------------------------------------------------------------------------------- /modules/signatures/antisandbox_restart.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/antisandbox_restart.py -------------------------------------------------------------------------------- /modules/signatures/antisandbox_sleep.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/antisandbox_sleep.py -------------------------------------------------------------------------------- /modules/signatures/antisandbox_suspend.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/antisandbox_suspend.py -------------------------------------------------------------------------------- /modules/signatures/antisandbox_unhook.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/antisandbox_unhook.py -------------------------------------------------------------------------------- /modules/signatures/antivm_bochs_keys.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/antivm_bochs_keys.py -------------------------------------------------------------------------------- /modules/signatures/antivm_dirobjects.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/antivm_dirobjects.py -------------------------------------------------------------------------------- /modules/signatures/antivm_generic_bios.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/antivm_generic_bios.py -------------------------------------------------------------------------------- /modules/signatures/antivm_generic_cpu.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/antivm_generic_cpu.py -------------------------------------------------------------------------------- /modules/signatures/antivm_generic_disk.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/antivm_generic_disk.py -------------------------------------------------------------------------------- /modules/signatures/antivm_generic_scsi.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/antivm_generic_scsi.py -------------------------------------------------------------------------------- /modules/signatures/antivm_hyperv_keys.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/antivm_hyperv_keys.py -------------------------------------------------------------------------------- /modules/signatures/antivm_vbox_devices.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/antivm_vbox_devices.py -------------------------------------------------------------------------------- /modules/signatures/antivm_vbox_files.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/antivm_vbox_files.py -------------------------------------------------------------------------------- /modules/signatures/antivm_vbox_keys.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/antivm_vbox_keys.py -------------------------------------------------------------------------------- /modules/signatures/antivm_vbox_libs.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/antivm_vbox_libs.py -------------------------------------------------------------------------------- /modules/signatures/antivm_vbox_window.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/antivm_vbox_window.py -------------------------------------------------------------------------------- /modules/signatures/antivm_vmware_files.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/antivm_vmware_files.py -------------------------------------------------------------------------------- /modules/signatures/antivm_vmware_keys.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/antivm_vmware_keys.py -------------------------------------------------------------------------------- /modules/signatures/antivm_vmware_libs.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/antivm_vmware_libs.py -------------------------------------------------------------------------------- /modules/signatures/antivm_vpc_files.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/antivm_vpc_files.py -------------------------------------------------------------------------------- /modules/signatures/antivm_vpc_keys.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/antivm_vpc_keys.py -------------------------------------------------------------------------------- /modules/signatures/antivm_vpc_mutex.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/antivm_vpc_mutex.py -------------------------------------------------------------------------------- /modules/signatures/antivm_xen_keys.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/antivm_xen_keys.py -------------------------------------------------------------------------------- /modules/signatures/api_spamming.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/api_spamming.py -------------------------------------------------------------------------------- /modules/signatures/bad_certs.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/bad_certs.py -------------------------------------------------------------------------------- /modules/signatures/bad_ssl_certs.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/bad_ssl_certs.py -------------------------------------------------------------------------------- /modules/signatures/banker_cridex.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/banker_cridex.py -------------------------------------------------------------------------------- /modules/signatures/banker_geodo.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/banker_geodo.py -------------------------------------------------------------------------------- /modules/signatures/banker_prinimalka.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/banker_prinimalka.py -------------------------------------------------------------------------------- /modules/signatures/banker_spyeye_mutex.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/banker_spyeye_mutex.py -------------------------------------------------------------------------------- /modules/signatures/banker_zeus_mutex.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/banker_zeus_mutex.py -------------------------------------------------------------------------------- /modules/signatures/banker_zeus_p2p.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/banker_zeus_p2p.py -------------------------------------------------------------------------------- /modules/signatures/banker_zeus_url.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/banker_zeus_url.py -------------------------------------------------------------------------------- /modules/signatures/bcdedit_command.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/bcdedit_command.py -------------------------------------------------------------------------------- /modules/signatures/betabot_apis.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/betabot_apis.py -------------------------------------------------------------------------------- /modules/signatures/bitcoin_opencl.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/bitcoin_opencl.py -------------------------------------------------------------------------------- /modules/signatures/bootkit.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/bootkit.py -------------------------------------------------------------------------------- /modules/signatures/bot_athenahttp.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/bot_athenahttp.py -------------------------------------------------------------------------------- /modules/signatures/bot_dirtjumper.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/bot_dirtjumper.py -------------------------------------------------------------------------------- /modules/signatures/bot_drive.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/bot_drive.py -------------------------------------------------------------------------------- /modules/signatures/bot_drive2.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/bot_drive2.py -------------------------------------------------------------------------------- /modules/signatures/bot_madness.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/bot_madness.py -------------------------------------------------------------------------------- /modules/signatures/bot_russkill.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/bot_russkill.py -------------------------------------------------------------------------------- /modules/signatures/browser_addon.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/browser_addon.py -------------------------------------------------------------------------------- /modules/signatures/browser_bho.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/browser_bho.py -------------------------------------------------------------------------------- /modules/signatures/browser_needed.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/browser_needed.py -------------------------------------------------------------------------------- /modules/signatures/browser_proxy.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/browser_proxy.py -------------------------------------------------------------------------------- /modules/signatures/browser_scanbox.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/browser_scanbox.py -------------------------------------------------------------------------------- /modules/signatures/browser_security.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/browser_security.py -------------------------------------------------------------------------------- /modules/signatures/browser_startpage.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/browser_startpage.py -------------------------------------------------------------------------------- /modules/signatures/bypass_applocker.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/bypass_applocker.py -------------------------------------------------------------------------------- /modules/signatures/bypass_firewall.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/bypass_firewall.py -------------------------------------------------------------------------------- /modules/signatures/bypass_uac.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/bypass_uac.py -------------------------------------------------------------------------------- /modules/signatures/cape_extracted.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/cape_extracted.py -------------------------------------------------------------------------------- /modules/signatures/carberp_mutex.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/carberp_mutex.py -------------------------------------------------------------------------------- /modules/signatures/cerber_apis.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/cerber_apis.py -------------------------------------------------------------------------------- /modules/signatures/chimera_apis.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/chimera_apis.py -------------------------------------------------------------------------------- /modules/signatures/clamav.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/clamav.py -------------------------------------------------------------------------------- /modules/signatures/clears_logs.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/clears_logs.py -------------------------------------------------------------------------------- /modules/signatures/clickfraud_cookies.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/clickfraud_cookies.py -------------------------------------------------------------------------------- /modules/signatures/clickfraud_volume.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/clickfraud_volume.py -------------------------------------------------------------------------------- /modules/signatures/cmdline_anomaly.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/cmdline_anomaly.py -------------------------------------------------------------------------------- /modules/signatures/codelux_apis.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/codelux_apis.py -------------------------------------------------------------------------------- /modules/signatures/compile_dotnet_code.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/compile_dotnet_code.py -------------------------------------------------------------------------------- /modules/signatures/copies_self.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/copies_self.py -------------------------------------------------------------------------------- /modules/signatures/creates_exe.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/creates_exe.py -------------------------------------------------------------------------------- /modules/signatures/creates_largekey.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/creates_largekey.py -------------------------------------------------------------------------------- /modules/signatures/creates_nullvalue.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/creates_nullvalue.py -------------------------------------------------------------------------------- /modules/signatures/credential_dumping.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/credential_dumping.py -------------------------------------------------------------------------------- /modules/signatures/critical_process.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/critical_process.py -------------------------------------------------------------------------------- /modules/signatures/cryptomining.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/cryptomining.py -------------------------------------------------------------------------------- /modules/signatures/cryptopools.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/cryptopools.py -------------------------------------------------------------------------------- /modules/signatures/cryptowall_apis.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/cryptowall_apis.py -------------------------------------------------------------------------------- /modules/signatures/cve_2014_6332.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/cve_2014_6332.py -------------------------------------------------------------------------------- /modules/signatures/cve_2015_2419.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/cve_2015_2419.py -------------------------------------------------------------------------------- /modules/signatures/cve_2016-0189.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/cve_2016-0189.py -------------------------------------------------------------------------------- /modules/signatures/cve_2016_7200.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/cve_2016_7200.py -------------------------------------------------------------------------------- /modules/signatures/darkcomet_regkeys.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/darkcomet_regkeys.py -------------------------------------------------------------------------------- /modules/signatures/dead_connect.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/dead_connect.py -------------------------------------------------------------------------------- /modules/signatures/dead_link.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/dead_link.py -------------------------------------------------------------------------------- /modules/signatures/debugs_self.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/debugs_self.py -------------------------------------------------------------------------------- /modules/signatures/decoy_doc.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/decoy_doc.py -------------------------------------------------------------------------------- /modules/signatures/deepfreeze_mutex.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/deepfreeze_mutex.py -------------------------------------------------------------------------------- /modules/signatures/deletes_self.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/deletes_self.py -------------------------------------------------------------------------------- /modules/signatures/dep_bypass.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/dep_bypass.py -------------------------------------------------------------------------------- /modules/signatures/dep_disable.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/dep_disable.py -------------------------------------------------------------------------------- /modules/signatures/disables_app.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/disables_app.py -------------------------------------------------------------------------------- /modules/signatures/disables_spdy.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/disables_spdy.py -------------------------------------------------------------------------------- /modules/signatures/disables_sysrestore.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/disables_sysrestore.py -------------------------------------------------------------------------------- /modules/signatures/disables_uac.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/disables_uac.py -------------------------------------------------------------------------------- /modules/signatures/disables_wer.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/disables_wer.py -------------------------------------------------------------------------------- /modules/signatures/disables_wfp.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/disables_wfp.py -------------------------------------------------------------------------------- /modules/signatures/downloader_cabby.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/downloader_cabby.py -------------------------------------------------------------------------------- /modules/signatures/dridex_apis.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/dridex_apis.py -------------------------------------------------------------------------------- /modules/signatures/driver_load.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/driver_load.py -------------------------------------------------------------------------------- /modules/signatures/dropper.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/dropper.py -------------------------------------------------------------------------------- /modules/signatures/dropper_js.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/dropper_js.py -------------------------------------------------------------------------------- /modules/signatures/dyre_apis.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/dyre_apis.py -------------------------------------------------------------------------------- /modules/signatures/ek_angler.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/ek_angler.py -------------------------------------------------------------------------------- /modules/signatures/ek_gondad.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/ek_gondad.py -------------------------------------------------------------------------------- /modules/signatures/ek_heapsray.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/ek_heapsray.py -------------------------------------------------------------------------------- /modules/signatures/ek_javaapplet.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/ek_javaapplet.py -------------------------------------------------------------------------------- /modules/signatures/ek_neutrino.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/ek_neutrino.py -------------------------------------------------------------------------------- /modules/signatures/ek_nuclear.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/ek_nuclear.py -------------------------------------------------------------------------------- /modules/signatures/ek_rig.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/ek_rig.py -------------------------------------------------------------------------------- /modules/signatures/ek_silverlight.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/ek_silverlight.py -------------------------------------------------------------------------------- /modules/signatures/ek_sundown.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/ek_sundown.py -------------------------------------------------------------------------------- /modules/signatures/ek_virtualcheck.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/ek_virtualcheck.py -------------------------------------------------------------------------------- /modules/signatures/encrypted_ioc.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/encrypted_ioc.py -------------------------------------------------------------------------------- /modules/signatures/exec_crash.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/exec_crash.py -------------------------------------------------------------------------------- /modules/signatures/exploit_heapspray.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/exploit_heapspray.py -------------------------------------------------------------------------------- /modules/signatures/family_proxyback.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/family_proxyback.py -------------------------------------------------------------------------------- /modules/signatures/generic_metrics.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/generic_metrics.py -------------------------------------------------------------------------------- /modules/signatures/generic_phish.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/generic_phish.py -------------------------------------------------------------------------------- /modules/signatures/gootkit_apis.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/gootkit_apis.py -------------------------------------------------------------------------------- /modules/signatures/h1n1_apis.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/h1n1_apis.py -------------------------------------------------------------------------------- /modules/signatures/hancitor_apis.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/hancitor_apis.py -------------------------------------------------------------------------------- /modules/signatures/hawkeye_apis.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/hawkeye_apis.py -------------------------------------------------------------------------------- /modules/signatures/http_request.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/http_request.py -------------------------------------------------------------------------------- /modules/signatures/infostealer_bitcoin.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/infostealer_bitcoin.py -------------------------------------------------------------------------------- /modules/signatures/infostealer_browser.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/infostealer_browser.py -------------------------------------------------------------------------------- /modules/signatures/infostealer_ftp.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/infostealer_ftp.py -------------------------------------------------------------------------------- /modules/signatures/infostealer_im.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/infostealer_im.py -------------------------------------------------------------------------------- /modules/signatures/infostealer_keylog.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/infostealer_keylog.py -------------------------------------------------------------------------------- /modules/signatures/infostealer_mail.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/infostealer_mail.py -------------------------------------------------------------------------------- /modules/signatures/infostealer_raccoon.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/infostealer_raccoon.py -------------------------------------------------------------------------------- /modules/signatures/infostealer_vidar.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/infostealer_vidar.py -------------------------------------------------------------------------------- /modules/signatures/injection_explorer.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/injection_explorer.py -------------------------------------------------------------------------------- /modules/signatures/injection_network.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/injection_network.py -------------------------------------------------------------------------------- /modules/signatures/injection_runpe.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/injection_runpe.py -------------------------------------------------------------------------------- /modules/signatures/injection_rwx.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/injection_rwx.py -------------------------------------------------------------------------------- /modules/signatures/internet_dropper.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/internet_dropper.py -------------------------------------------------------------------------------- /modules/signatures/ipc_namedpipe.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/ipc_namedpipe.py -------------------------------------------------------------------------------- /modules/signatures/ispy_apis.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/ispy_apis.py -------------------------------------------------------------------------------- /modules/signatures/js_phish.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/js_phish.py -------------------------------------------------------------------------------- /modules/signatures/kazybot_apis.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/kazybot_apis.py -------------------------------------------------------------------------------- /modules/signatures/kelihos_apis.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/kelihos_apis.py -------------------------------------------------------------------------------- /modules/signatures/kibex_apis.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/kibex_apis.py -------------------------------------------------------------------------------- /modules/signatures/kovter_apis.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/kovter_apis.py -------------------------------------------------------------------------------- /modules/signatures/kraken_mutex.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/kraken_mutex.py -------------------------------------------------------------------------------- /modules/signatures/locker_regedit.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/locker_regedit.py -------------------------------------------------------------------------------- /modules/signatures/locker_taskmgr.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/locker_taskmgr.py -------------------------------------------------------------------------------- /modules/signatures/locky_apis.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/locky_apis.py -------------------------------------------------------------------------------- /modules/signatures/martians_ie.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/martians_ie.py -------------------------------------------------------------------------------- /modules/signatures/martians_office.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/martians_office.py -------------------------------------------------------------------------------- /modules/signatures/mimics_agent.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/mimics_agent.py -------------------------------------------------------------------------------- /modules/signatures/mimics_filename.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/mimics_filename.py -------------------------------------------------------------------------------- /modules/signatures/mimics_filetime.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/mimics_filetime.py -------------------------------------------------------------------------------- /modules/signatures/mimics_icon.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/mimics_icon.py -------------------------------------------------------------------------------- /modules/signatures/mimics_processname.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/mimics_processname.py -------------------------------------------------------------------------------- /modules/signatures/modifies_certs.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/modifies_certs.py -------------------------------------------------------------------------------- /modules/signatures/modifies_hostsfile.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/modifies_hostsfile.py -------------------------------------------------------------------------------- /modules/signatures/modifies_seccenter.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/modifies_seccenter.py -------------------------------------------------------------------------------- /modules/signatures/modifies_uac_notify.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/modifies_uac_notify.py -------------------------------------------------------------------------------- /modules/signatures/modifies_wallpaper.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/modifies_wallpaper.py -------------------------------------------------------------------------------- /modules/signatures/move_file_on_reboot.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/move_file_on_reboot.py -------------------------------------------------------------------------------- /modules/signatures/multiple_ua.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/multiple_ua.py -------------------------------------------------------------------------------- /modules/signatures/network_anomaly.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/network_anomaly.py -------------------------------------------------------------------------------- /modules/signatures/network_bind.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/network_bind.py -------------------------------------------------------------------------------- /modules/signatures/network_cnc_generic.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/network_cnc_generic.py -------------------------------------------------------------------------------- /modules/signatures/network_cnc_http.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/network_cnc_http.py -------------------------------------------------------------------------------- /modules/signatures/network_dga.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/network_dga.py -------------------------------------------------------------------------------- /modules/signatures/network_doh.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/network_doh.py -------------------------------------------------------------------------------- /modules/signatures/network_http.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/network_http.py -------------------------------------------------------------------------------- /modules/signatures/network_icmp.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/network_icmp.py -------------------------------------------------------------------------------- /modules/signatures/network_irc.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/network_irc.py -------------------------------------------------------------------------------- /modules/signatures/network_smtp.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/network_smtp.py -------------------------------------------------------------------------------- /modules/signatures/network_tor.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/network_tor.py -------------------------------------------------------------------------------- /modules/signatures/network_tor_service.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/network_tor_service.py -------------------------------------------------------------------------------- /modules/signatures/network_torgateway.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/network_torgateway.py -------------------------------------------------------------------------------- /modules/signatures/nymaim_apis.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/nymaim_apis.py -------------------------------------------------------------------------------- /modules/signatures/office_codepage.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/office_codepage.py -------------------------------------------------------------------------------- /modules/signatures/office_exploit.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/office_exploit.py -------------------------------------------------------------------------------- /modules/signatures/office_macro.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/office_macro.py -------------------------------------------------------------------------------- /modules/signatures/office_rtf.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/office_rtf.py -------------------------------------------------------------------------------- /modules/signatures/office_security.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/office_security.py -------------------------------------------------------------------------------- /modules/signatures/office_suspicious.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/office_suspicious.py -------------------------------------------------------------------------------- /modules/signatures/office_write_exe.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/office_write_exe.py -------------------------------------------------------------------------------- /modules/signatures/origin_langid.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/origin_langid.py -------------------------------------------------------------------------------- /modules/signatures/packer_anomaly.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/packer_anomaly.py -------------------------------------------------------------------------------- /modules/signatures/packer_aspack.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/packer_aspack.py -------------------------------------------------------------------------------- /modules/signatures/packer_aspirecrypt.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/packer_aspirecrypt.py -------------------------------------------------------------------------------- /modules/signatures/packer_confuser.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/packer_confuser.py -------------------------------------------------------------------------------- /modules/signatures/packer_enigma.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/packer_enigma.py -------------------------------------------------------------------------------- /modules/signatures/packer_entropy.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/packer_entropy.py -------------------------------------------------------------------------------- /modules/signatures/packer_mpress.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/packer_mpress.py -------------------------------------------------------------------------------- /modules/signatures/packer_nate.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/packer_nate.py -------------------------------------------------------------------------------- /modules/signatures/packer_spices.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/packer_spices.py -------------------------------------------------------------------------------- /modules/signatures/packer_themida.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/packer_themida.py -------------------------------------------------------------------------------- /modules/signatures/packer_titan.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/packer_titan.py -------------------------------------------------------------------------------- /modules/signatures/packer_upx.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/packer_upx.py -------------------------------------------------------------------------------- /modules/signatures/packer_vmprotect.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/packer_vmprotect.py -------------------------------------------------------------------------------- /modules/signatures/pdf_annot_urls.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/pdf_annot_urls.py -------------------------------------------------------------------------------- /modules/signatures/persistence_ads.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/persistence_ads.py -------------------------------------------------------------------------------- /modules/signatures/persistence_autorun.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/persistence_autorun.py -------------------------------------------------------------------------------- /modules/signatures/persistence_service.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/persistence_service.py -------------------------------------------------------------------------------- /modules/signatures/persistence_shim.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/persistence_shim.py -------------------------------------------------------------------------------- /modules/signatures/polymorphic.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/polymorphic.py -------------------------------------------------------------------------------- /modules/signatures/pony_apis.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/pony_apis.py -------------------------------------------------------------------------------- /modules/signatures/powerpool_mutex.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/powerpool_mutex.py -------------------------------------------------------------------------------- /modules/signatures/powershell_command.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/powershell_command.py -------------------------------------------------------------------------------- /modules/signatures/ppp_pcre.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/ppp_pcre.py -------------------------------------------------------------------------------- /modules/signatures/prevents_safeboot.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/prevents_safeboot.py -------------------------------------------------------------------------------- /modules/signatures/process_interest.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/process_interest.py -------------------------------------------------------------------------------- /modules/signatures/process_needed.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/process_needed.py -------------------------------------------------------------------------------- /modules/signatures/procmem_yara.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/procmem_yara.py -------------------------------------------------------------------------------- /modules/signatures/ransomware_files.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/ransomware_files.py -------------------------------------------------------------------------------- /modules/signatures/ransomware_gandcrab.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/ransomware_gandcrab.py -------------------------------------------------------------------------------- /modules/signatures/ransomware_message.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/ransomware_message.py -------------------------------------------------------------------------------- /modules/signatures/ransomware_radamant.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/ransomware_radamant.py -------------------------------------------------------------------------------- /modules/signatures/rat_beebus_mutex.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/rat_beebus_mutex.py -------------------------------------------------------------------------------- /modules/signatures/rat_fynloski_mutex.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/rat_fynloski_mutex.py -------------------------------------------------------------------------------- /modules/signatures/rat_limerat.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/rat_limerat.py -------------------------------------------------------------------------------- /modules/signatures/rat_luminosity.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/rat_luminosity.py -------------------------------------------------------------------------------- /modules/signatures/rat_nanocore.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/rat_nanocore.py -------------------------------------------------------------------------------- /modules/signatures/rat_netwire.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/rat_netwire.py -------------------------------------------------------------------------------- /modules/signatures/rat_njrat_regkeys.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/rat_njrat_regkeys.py -------------------------------------------------------------------------------- /modules/signatures/rat_pcclient.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/rat_pcclient.py -------------------------------------------------------------------------------- /modules/signatures/rat_plugx_mutex.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/rat_plugx_mutex.py -------------------------------------------------------------------------------- /modules/signatures/rat_poisonivy.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/rat_poisonivy.py -------------------------------------------------------------------------------- /modules/signatures/rat_quasar.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/rat_quasar.py -------------------------------------------------------------------------------- /modules/signatures/rat_ratsnif_mutex.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/rat_ratsnif_mutex.py -------------------------------------------------------------------------------- /modules/signatures/rat_spynet.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/rat_spynet.py -------------------------------------------------------------------------------- /modules/signatures/rat_xtreme_mutex.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/rat_xtreme_mutex.py -------------------------------------------------------------------------------- /modules/signatures/reads_self.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/reads_self.py -------------------------------------------------------------------------------- /modules/signatures/recon_beacon.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/recon_beacon.py -------------------------------------------------------------------------------- /modules/signatures/recon_checkip.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/recon_checkip.py -------------------------------------------------------------------------------- /modules/signatures/recon_fingerprint.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/recon_fingerprint.py -------------------------------------------------------------------------------- /modules/signatures/recon_programs.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/recon_programs.py -------------------------------------------------------------------------------- /modules/signatures/recon_systeminfo.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/recon_systeminfo.py -------------------------------------------------------------------------------- /modules/signatures/remcos.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/remcos.py -------------------------------------------------------------------------------- /modules/signatures/removes_zoneid_ads.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/removes_zoneid_ads.py -------------------------------------------------------------------------------- /modules/signatures/script_downloader.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/script_downloader.py -------------------------------------------------------------------------------- /modules/signatures/secure_login_phish.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/secure_login_phish.py -------------------------------------------------------------------------------- /modules/signatures/setsautoconfigurl.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/setsautoconfigurl.py -------------------------------------------------------------------------------- /modules/signatures/shifu_apis.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/shifu_apis.py -------------------------------------------------------------------------------- /modules/signatures/sniffer_winpcap.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/sniffer_winpcap.py -------------------------------------------------------------------------------- /modules/signatures/spoofs_procname.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/spoofs_procname.py -------------------------------------------------------------------------------- /modules/signatures/stack_pivot.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/stack_pivot.py -------------------------------------------------------------------------------- /modules/signatures/static_authenticode.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/static_authenticode.py -------------------------------------------------------------------------------- /modules/signatures/static_java.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/static_java.py -------------------------------------------------------------------------------- /modules/signatures/static_pdf.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/static_pdf.py -------------------------------------------------------------------------------- /modules/signatures/static_pe_anomaly.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/static_pe_anomaly.py -------------------------------------------------------------------------------- /modules/signatures/static_rat_config.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/static_rat_config.py -------------------------------------------------------------------------------- /modules/signatures/stealth_file.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/stealth_file.py -------------------------------------------------------------------------------- /modules/signatures/stealth_network.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/stealth_network.py -------------------------------------------------------------------------------- /modules/signatures/stealth_window.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/stealth_window.py -------------------------------------------------------------------------------- /modules/signatures/suricata_alert.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/suricata_alert.py -------------------------------------------------------------------------------- /modules/signatures/sysinternals.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/sysinternals.py -------------------------------------------------------------------------------- /modules/signatures/targeted_flame.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/targeted_flame.py -------------------------------------------------------------------------------- /modules/signatures/tinba_apis.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/tinba_apis.py -------------------------------------------------------------------------------- /modules/signatures/trickbot_files.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/trickbot_files.py -------------------------------------------------------------------------------- /modules/signatures/trickbot_mutex.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/trickbot_mutex.py -------------------------------------------------------------------------------- /modules/signatures/troldesh_apis.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/troldesh_apis.py -------------------------------------------------------------------------------- /modules/signatures/upatre_apis.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/upatre_apis.py -------------------------------------------------------------------------------- /modules/signatures/ursnif_apis.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/ursnif_apis.py -------------------------------------------------------------------------------- /modules/signatures/user_enum.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/user_enum.py -------------------------------------------------------------------------------- /modules/signatures/vawtrak_apis.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/vawtrak_apis.py -------------------------------------------------------------------------------- /modules/signatures/vawtrak_dll_apis.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/vawtrak_dll_apis.py -------------------------------------------------------------------------------- /modules/signatures/virus.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/virus.py -------------------------------------------------------------------------------- /modules/signatures/virus_neshta.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/virus_neshta.py -------------------------------------------------------------------------------- /modules/signatures/volatility_sig.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/volatility_sig.py -------------------------------------------------------------------------------- /modules/signatures/webmail_phish.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/webmail_phish.py -------------------------------------------------------------------------------- /modules/signatures/whois_create.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/whois_create.py -------------------------------------------------------------------------------- /modules/signatures/wmi.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/modules/signatures/wmi.py -------------------------------------------------------------------------------- /nginx.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/nginx.md -------------------------------------------------------------------------------- /requirements.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/requirements.txt -------------------------------------------------------------------------------- /supervisor.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/supervisor.conf -------------------------------------------------------------------------------- /systemd/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/systemd/README.md -------------------------------------------------------------------------------- /systemd/cuckoo-processor.service: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/systemd/cuckoo-processor.service -------------------------------------------------------------------------------- /systemd/cuckoo-rooter.service: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/systemd/cuckoo-rooter.service -------------------------------------------------------------------------------- /systemd/cuckoo-wsgi.service: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/systemd/cuckoo-wsgi.service -------------------------------------------------------------------------------- /systemd/cuckoo.service: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/systemd/cuckoo.service -------------------------------------------------------------------------------- /systemd/suricata-update.service: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/systemd/suricata-update.service -------------------------------------------------------------------------------- /systemd/suricata-update.timer: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/systemd/suricata-update.timer -------------------------------------------------------------------------------- /tests/abstracts_tests.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/tests/abstracts_tests.py -------------------------------------------------------------------------------- /tests/colors_tests.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/tests/colors_tests.py -------------------------------------------------------------------------------- /tests/config_tests.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/tests/config_tests.py -------------------------------------------------------------------------------- /tests/database_tests.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/tests/database_tests.py -------------------------------------------------------------------------------- /tests/email_utils_tests.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/tests/email_utils_tests.py -------------------------------------------------------------------------------- /tests/integrity.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/tests/integrity.py -------------------------------------------------------------------------------- /tests/objects_tests.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/tests/objects_tests.py -------------------------------------------------------------------------------- /tests/processor_tests.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/tests/processor_tests.py -------------------------------------------------------------------------------- /tests/reporter_tests.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/tests/reporter_tests.py -------------------------------------------------------------------------------- /tests/sniffer_tests.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/tests/sniffer_tests.py -------------------------------------------------------------------------------- /tests/utils_tests.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/tests/utils_tests.py -------------------------------------------------------------------------------- /utils/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /utils/api.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/utils/api.py -------------------------------------------------------------------------------- /utils/cleaner.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/utils/cleaner.py -------------------------------------------------------------------------------- /utils/db_migration/alembic.ini: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/utils/db_migration/alembic.ini -------------------------------------------------------------------------------- /utils/db_migration/env.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/utils/db_migration/env.py -------------------------------------------------------------------------------- /utils/db_migration/script.py.mako: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/utils/db_migration/script.py.mako -------------------------------------------------------------------------------- /utils/delete_range.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/utils/delete_range.py -------------------------------------------------------------------------------- /utils/dist.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/utils/dist.py -------------------------------------------------------------------------------- /utils/listdump.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/utils/listdump.py -------------------------------------------------------------------------------- /utils/machine.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/utils/machine.py -------------------------------------------------------------------------------- /utils/process.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/utils/process.py -------------------------------------------------------------------------------- /utils/rooter.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/utils/rooter.py -------------------------------------------------------------------------------- /utils/sample_path.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/utils/sample_path.py -------------------------------------------------------------------------------- /utils/smtp_sinkhole.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/utils/smtp_sinkhole.py -------------------------------------------------------------------------------- /utils/smtp_sinkhole.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/utils/smtp_sinkhole.sh -------------------------------------------------------------------------------- /utils/stats.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/utils/stats.py -------------------------------------------------------------------------------- /utils/submit.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/utils/submit.py -------------------------------------------------------------------------------- /utils/tcpdumpwrapper.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/utils/tcpdumpwrapper.py -------------------------------------------------------------------------------- /utils/tridupdate.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/utils/tridupdate.py -------------------------------------------------------------------------------- /utils/vpncheck.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/utils/vpncheck.py -------------------------------------------------------------------------------- /utils/web.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/utils/web.py -------------------------------------------------------------------------------- /utils/yara_test.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/utils/yara_test.py -------------------------------------------------------------------------------- /web/analysis/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/analysis/__init__.py -------------------------------------------------------------------------------- /web/analysis/forms.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/analysis/forms.py -------------------------------------------------------------------------------- /web/analysis/templatetags/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/analysis/templatetags/__init__.py -------------------------------------------------------------------------------- /web/analysis/templatetags/key_tags.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/analysis/templatetags/key_tags.py -------------------------------------------------------------------------------- /web/analysis/templatetags/pdf_tags.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/analysis/templatetags/pdf_tags.py -------------------------------------------------------------------------------- /web/analysis/urls.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/analysis/urls.py -------------------------------------------------------------------------------- /web/analysis/views.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/analysis/views.py -------------------------------------------------------------------------------- /web/api/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /web/api/urls.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/api/urls.py -------------------------------------------------------------------------------- /web/api/views.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/api/views.py -------------------------------------------------------------------------------- /web/compare/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/compare/__init__.py -------------------------------------------------------------------------------- /web/compare/urls.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/compare/urls.py -------------------------------------------------------------------------------- /web/compare/views.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/compare/views.py -------------------------------------------------------------------------------- /web/dashboard/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /web/dashboard/urls.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/dashboard/urls.py -------------------------------------------------------------------------------- /web/dashboard/views.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/dashboard/views.py -------------------------------------------------------------------------------- /web/manage.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/manage.py -------------------------------------------------------------------------------- /web/static/css/bootstrap.min.css: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/static/css/bootstrap.min.css -------------------------------------------------------------------------------- /web/static/css/lightbox.css: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/static/css/lightbox.css -------------------------------------------------------------------------------- /web/static/css/style.css: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/static/css/style.css -------------------------------------------------------------------------------- /web/static/generated/README: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/static/generated/README -------------------------------------------------------------------------------- /web/static/graphic/background.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/static/graphic/background.png -------------------------------------------------------------------------------- /web/static/graphic/cape.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/static/graphic/cape.png -------------------------------------------------------------------------------- /web/static/graphic/cuckoo.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/static/graphic/cuckoo.png -------------------------------------------------------------------------------- /web/static/img/cape.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/static/img/cape.png -------------------------------------------------------------------------------- /web/static/img/close.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/static/img/close.png -------------------------------------------------------------------------------- /web/static/img/loading.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/static/img/loading.gif -------------------------------------------------------------------------------- /web/static/img/next.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/static/img/next.png -------------------------------------------------------------------------------- /web/static/img/prev.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/static/img/prev.png -------------------------------------------------------------------------------- /web/static/js/bootstrap-collapse.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/static/js/bootstrap-collapse.js -------------------------------------------------------------------------------- /web/static/js/bootstrap-fileupload.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/static/js/bootstrap-fileupload.js -------------------------------------------------------------------------------- /web/static/js/bootstrap-transition.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/static/js/bootstrap-transition.js -------------------------------------------------------------------------------- /web/static/js/bootstrap.min.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/static/js/bootstrap.min.js -------------------------------------------------------------------------------- /web/static/js/hexdump.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/static/js/hexdump.js -------------------------------------------------------------------------------- /web/static/js/jquery.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/static/js/jquery.js -------------------------------------------------------------------------------- /web/static/js/lightbox.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/static/js/lightbox.js -------------------------------------------------------------------------------- /web/static/js/moment.min.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/static/js/moment.min.js -------------------------------------------------------------------------------- /web/submission/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/submission/__init__.py -------------------------------------------------------------------------------- /web/submission/urls.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/submission/urls.py -------------------------------------------------------------------------------- /web/submission/views.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/submission/views.py -------------------------------------------------------------------------------- /web/templates/analysis/CAPE/index.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/templates/analysis/CAPE/index.html -------------------------------------------------------------------------------- /web/templates/analysis/antivirus.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/templates/analysis/antivirus.html -------------------------------------------------------------------------------- /web/templates/analysis/curtain.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/templates/analysis/curtain.html -------------------------------------------------------------------------------- /web/templates/analysis/index.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/templates/analysis/index.html -------------------------------------------------------------------------------- /web/templates/analysis/misp/index.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/templates/analysis/misp/index.html -------------------------------------------------------------------------------- /web/templates/analysis/mitre.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/templates/analysis/mitre.html -------------------------------------------------------------------------------- /web/templates/analysis/pending.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/templates/analysis/pending.html -------------------------------------------------------------------------------- /web/templates/analysis/report.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/templates/analysis/report.html -------------------------------------------------------------------------------- /web/templates/analysis/search.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/templates/analysis/search.html -------------------------------------------------------------------------------- /web/templates/analysis/shrike.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/templates/analysis/shrike.html -------------------------------------------------------------------------------- /web/templates/analysis/surialert.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/templates/analysis/surialert.html -------------------------------------------------------------------------------- /web/templates/analysis/surifiles.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/templates/analysis/surifiles.html -------------------------------------------------------------------------------- /web/templates/analysis/surihttp.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/templates/analysis/surihttp.html -------------------------------------------------------------------------------- /web/templates/analysis/suritls.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/templates/analysis/suritls.html -------------------------------------------------------------------------------- /web/templates/api/index.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/templates/api/index.html -------------------------------------------------------------------------------- /web/templates/auth/base.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/templates/auth/base.html -------------------------------------------------------------------------------- /web/templates/auth/base_site.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/templates/auth/base_site.html -------------------------------------------------------------------------------- /web/templates/auth/login.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/templates/auth/login.html -------------------------------------------------------------------------------- /web/templates/auth/logout.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/templates/auth/logout.html -------------------------------------------------------------------------------- /web/templates/base.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/templates/base.html -------------------------------------------------------------------------------- /web/templates/compare/_info.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/templates/compare/_info.html -------------------------------------------------------------------------------- /web/templates/compare/both.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/templates/compare/both.html -------------------------------------------------------------------------------- /web/templates/compare/hash.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/templates/compare/hash.html -------------------------------------------------------------------------------- /web/templates/compare/left.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/templates/compare/left.html -------------------------------------------------------------------------------- /web/templates/dashboard/index.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/templates/dashboard/index.html -------------------------------------------------------------------------------- /web/templates/error.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/templates/error.html -------------------------------------------------------------------------------- /web/templates/footer.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/templates/footer.html -------------------------------------------------------------------------------- /web/templates/header.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/templates/header.html -------------------------------------------------------------------------------- /web/templates/standalone_error.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/templates/standalone_error.html -------------------------------------------------------------------------------- /web/templates/statistics/index.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/templates/statistics/index.html -------------------------------------------------------------------------------- /web/templates/submission/complete.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/templates/submission/complete.html -------------------------------------------------------------------------------- /web/templates/submission/index.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/templates/submission/index.html -------------------------------------------------------------------------------- /web/templates/submission/status.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/templates/submission/status.html -------------------------------------------------------------------------------- /web/templates/success.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/templates/success.html -------------------------------------------------------------------------------- /web/templates/success_simple.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/templates/success_simple.html -------------------------------------------------------------------------------- /web/web/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/web/__init__.py -------------------------------------------------------------------------------- /web/web/headers.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/web/headers.py -------------------------------------------------------------------------------- /web/web/local_settings.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/web/local_settings.py -------------------------------------------------------------------------------- /web/web/settings.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/web/settings.py -------------------------------------------------------------------------------- /web/web/urls.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/web/urls.py -------------------------------------------------------------------------------- /web/web/wsgi.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ctxis/CAPE/HEAD/web/web/wsgi.py --------------------------------------------------------------------------------