Cuckoo Sandbox

Cuckoo Sandbox is a modular, automated malware analysis system. Running from command-line on a Linux or Mac host, it uses python and virtualization (VirtualBox, QEMU-KVM...

Free • Open Source
Anti-Malware App

Mac
Windows
Linux
Online
Android

1 comments

What is Cuckoo Sandbox?

Cuckoo Sandbox is a modular, automated malware analysis system. Running from command-line on a Linux or Mac host, it uses python and virtualization (VirtualBox, QEMU-KVM, etc) to create an isolated Windows guest environment to safely and automatically run and analyze files to collect comprehensive file behavior analysis. These results outline what the malware does while running inside an isolated Windows operating system, including Win32 API calls, files created/deleted, memory dumps, network traffic trace, screenshots of execution behavior, and full memory dumps of virtual machines.

Malwr.com is a free, non-commercial, closed-source example of a running instance of Cuckoo Sandbox while also using VirusTotal (Google subsidiary) APIs and libraries to present the file analysis.

Supported Host Operating Systems: GNU/Linux (Debian/Ubuntu preferred), Mac OS X Required Host Software: Python-2.7, Virtualization (VirtualBox, QEMU-KVM, etc) Supported Virtualized Operating Systems: Windows XP Service Pack 3, Windows Vista, Windows 7

show full description ▾

Official Links

Cuckoo Sandbox Screenshots

Suggest and vote on features

Cuckoo Sandbox Features

Command line interfaceCuckoo Sandbox either have CLI support or is a CLI-only app.
Malware AnalysisCuckoo Sandbox can inspect a suspicious file or URL to detect potential threats.

Monitor File Changes

Cuckoo Sandbox information

Developed byClaudio “nex” Guarnieri
LicensingOpen Source and Free product.
Alternatives21 alternatives listed

Supported Languages

English

Popular alternatives

View all

Our users have written 1 comments and reviews about Cuckoo Sandbox, and it has gotten 19 likes

Cuckoo Sandbox was added to AlternativeTo by aguy on and this page was last updated . Cuckoo Sandbox is sometimes referred to as Cuckoo, CuckooSandbox.

Comments and Reviews Post a comment/review

all • positive • negative relevance • date

bawldiggle

Comment• ago

Windows 7 ( or any Win-edition) ?
At first I was very interested after the demise of (down but not out ... yet) . . . SandBoxie

Cuckoo SandBox was born in 2010 see Cuckoo History but still no documentation as promised for Installation instructions Win-7

If I understand the CS blurbs it can test new apps without actually installing those apps ? If so what a clever concept !

So far CS is LINUX and MAC focused but nothing for/about Windows ... even after 10 years have passed.

Cuckoo Sandbox could be very helpful for non-Windows users. There are 730+ issues listed on Github ... of which I would expect for a relativly new program ... but I am not prepared to trawl through 700+ issues to find Windows leads.

I cannot rate Cuckoo Sandbox without a Windows version to test.
22-Apr-2020

1 reply

jasonbrown1965journo

Just tried to install on Linux.

My copy of Linux Lite would not accept the listed terminal instructions without changing from python to python3.

Went through all that, only for cuckoo to inform me that it only works on python2. The Github page for this software has been "archived" suggesting that it is no longer in development.

I am not a tech expert, so maybe I missed the new repo, but it seems to me another example of abandonware.

Reply written ago

Show entire comment and 1 reply ▾

List containing Cuckoo Sandbox

security

Cuckoo Sandbox platform details

Mac

Host Operating System = Mac OS X

Windows

Virtualized Guest OS' = Windows XP Service Pack 3, Vista, Win7

Linux

Recommended Host Operating System = GNU/Linux (Debian/Ubuntu preferred)

Online

https://malwr.com/

Recent user activities on Cuckoo Sandbox

wo
worsening4512 edited Cuckoo Sandbox
ago
wo
worsening4512 liked Cuckoo Sandbox
ago
furkandogan added Cuckoo Sandbox as alternative(s) to Threat.Zone
ago