Updated on 2020-04-27
Basic
conda config --add channels conda-forge
conda create -y -n myenv2 pycrypto m2crypto python=2
conda activate myenv2
python -m pip install --index-url=https://mirrors.aliyun.com/pypi/simple/ --upgrade cuckoo M2CryptoWin64
cuckoo init
cuckoo community
cuckoo
cuckoo submit --package exe --options arguments="-Lvk http://www.qq.com" curl.exe
Web
cuckoo web runserver 0.0.0.0:1234
MongoDB
mongod --dbpath D:\Work\mongo\db --bind_ip_all
mongo
----
use admin
db.createUser({user: "root", pwd: "123456", roles: [{db: "admin", role: "root"}]})
use cuckoo
db.createUser({user: "123", pwd: "123456", roles: [{db: "cuckoo", role: "dbOwner"}]})
db.getUsers()
mongod --dbpath D:\Work\mongo\db --bind_ip_all --auth
API
cuckoo api -H 0.0.0.0 -p 1337
python -m pip install --index-url=https://mirrors.aliyun.com/pypi/simple/ --upgrade flask
curl -H "Authorization: Bearer giDMhiP63PZiCfnI0Oz3Yw" http://127.0.0.1:1337/tasks/list
Misc
mklink cuckoo cuckoo.exe
tcpdump -D
getmac /fo list /v
Lib\site-packages\cuckoo\auxiliary\sniffer.py
----
err_whitelist_start
----
"tcpdump.exe: listening on ",
resultserver 的 IP 为主机 HOST-ONLY 网卡的 IPv4 地址,推荐设置为 192.168.137.1。