CAPEv2
CAPEv2 copied to clipboard
kevoreilly
Malware Configuration And Payload Extraction
## About accounts on [capesandbox.com](https://capesandbox.com/) * Issues isn't the way to ask for account activation. Ping capesandbox in [Twitter](https://twitter.com/capesandbox) with your username ## This is open source and you are...
Windows 10 - Hangs on Restarting after successful analysis. Recently I started to have fun with Capev2. I am using the physical machinery, and physical machine (hp elite desk 800...
Hi, today I was looking at this really interesting feature in the file: `analyzer/windows/modules/auxiliary/tlsdump.py`. At the end of the analysis I can download the pcap and log files containing respectively...
Both the [docs](https://capev2.readthedocs.io/en/latest/installation/guest/requirements.html#install-python) and [agent module](https://github.com/kevoreilly/CAPEv2/blob/c04cc401c18c08ca5227de37fdfd4316b432c8c6/agent/agent.py#L33) say an x86 version of Python is required. Under the covers the analysis process calls a bunch of low-level Windows libraries, unpacking the results...
I was playing with `agent.py` and I noticed this warning when running on Python 3.10.11 > agent.py:6: DeprecationWarning: 'cgi' is deprecated and slated for removal in Python 3.13 Obviously 3.13...
https://github.com/kevoreilly/CAPEv2/blob/master/modules/reporting/elasticsearchdb.py#L101-L130
Reapply 90134aaaca07c89fda269a601f05c49a17977d78. The lib.api.process.Process class wants `thread_id`, not `tid`.
# Prerequisites - [+] I am running the latest version - [+] I did read the README! - [+] I checked the documentation and found no answer - [-] I...
# Prerequisites Please answer the following questions for yourself before submitting an issue. - [x] I am running the latest version - [x] I did read the README! - [x]...
Metadata
Owner
Metadata
Malware Configuration And Payload Extraction