{"id":4164,"date":"2016-08-12T08:58:40","date_gmt":"2016-08-12T03:28:40","guid":{"rendered":"https:\/\/www.qadit.com\/blog\/?p=4164"},"modified":"2016-08-12T08:58:40","modified_gmt":"2016-08-12T03:28:40","slug":"cuckoodroid-automated-android-malware-analysis","status":"publish","type":"post","link":"https:\/\/qadit.com\/blog\/cuckoodroid-automated-android-malware-analysis\/","title":{"rendered":"CuckooDroid \u2013 Automated Android Malware Analysis"},"content":{"rendered":"
\n
\n<\/a><\/p>\n

CuckooDroid is an extension of Cuckoo Sandbox<\/a> the Open Source software for automating analysis of suspicious files, for Android malware analysis. CuckooDroid brings to Cuckoo the capabilities of execution and analysis of android applications.<\/p>\n

\"CuckooDroid<\/p>\n

CuckooDroid provides both static and dynamic APK inspection as well as evading certain VM-detection techniques, encryption key extraction, SSL inspection, API call trace, basic behavioural signatures and many other features.<\/p>\n

The framework is highly customizable and extensible \u2013 leveraging the power of the large existing Cuckoo community.<\/p>\n

Installation<\/h3>\n
\n

\n

\n\n\n
\n<\/td>\n\n
\n

git <\/span>config<\/span> <\/span>—<\/span>global<\/span> <\/span>user<\/span>.<\/span>email<\/span> <\/span>"you@example.com"<\/span><\/p>\n

git <\/span>config<\/span> <\/span>—<\/span>global<\/span> <\/span>user<\/span>.<\/span>name<\/span> <\/span>"Your Name"<\/span><\/p>\n

git <\/span>clone<\/span> <\/span>—<\/span>depth<\/span>=<\/span>1<\/span> <\/span>https<\/span>:<\/span>\/\/github.com\/cuckoobox\/cuckoo.git cuckoo -b 1.2<\/span><\/p>\n

cd <\/span>cuckoo<\/span><\/p>\n

git <\/span>remote <\/span>add <\/span>droid <\/span>https<\/span>:<\/span>\/\/github.com\/idanr1986\/cuckoo-droid<\/span><\/p>\n

git <\/span>pull<\/span> <\/span>—<\/span>no<\/span>–<\/span>edit<\/span> <\/span>–<\/span>s<\/span> <\/span>recursive<\/span> <\/span>–<\/span>X<\/span> <\/span>theirs <\/span>droid <\/span>master <\/span><\/p>\n

cat <\/span>conf<\/span>–<\/span>extra<\/span>\/<\/span>processing<\/span>.<\/span>conf<\/span> <\/span>>><\/span> <\/span>conf<\/span>\/<\/span>processing<\/span>.<\/span>conf<\/span><\/p>\n

cat <\/span>conf<\/span>–<\/span>extra<\/span>\/<\/span>reporting<\/span>.<\/span>conf<\/span> <\/span>>><\/span> <\/span>conf<\/span>\/<\/span>reporting<\/span>.<\/span>conf<\/span><\/p>\n

rm<\/span> <\/span>–<\/span>r<\/span> <\/span>conf<\/span>–<\/span>extra<\/span><\/p>\n

echo<\/span> <\/span>"protobuf"<\/span> <\/span>>><\/span> <\/span>requirements<\/span>.<\/span>txt<\/span><\/p>\n<\/div>\n<\/td>\n<\/tr>\n<\/table>\n<\/div>\n<\/div>\n

You can download CuckooDroid here:<\/p>\n

cuckoo-droid-master.zip<\/a><\/p>\n

Or read more here<\/a>.<\/p>\n<\/section>\n<\/div>\n

via https:\/\/ift.tt\/2b1edKH<\/p>\n","protected":false},"excerpt":{"rendered":"

CuckooDroid is an extension of Cuckoo Sandbox the Open Source software for automating analysis of suspicious files, for Android malware analysis. CuckooDroid brings to Cuckoo the capabilities of execution and analysis of android applications. CuckooDroid provides both static and dynamic APK inspection as well as evading certain VM-detection techniques, encryption key extraction, SSL inspection, API … <\/p>\n

Continue reading “CuckooDroid \u2013 Automated Android Malware Analysis”<\/span><\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","enabled":false},"version":2}},"categories":[12],"tags":[],"class_list":["post-4164","post","type-post","status-publish","format-standard","hentry","category-itsec"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p9AH7Q-15a","_links":{"self":[{"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/posts\/4164","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/comments?post=4164"}],"version-history":[{"count":1,"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/posts\/4164\/revisions"}],"predecessor-version":[{"id":4165,"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/posts\/4164\/revisions\/4165"}],"wp:attachment":[{"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/media?parent=4164"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/categories?post=4164"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/tags?post=4164"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}