CAPE Sandbox Book
CAPE Sandbox is an Open Source software for automating analysis of suspicious files. To do so it makes use of custom components that monitor the behavior of the malicious processes while running in an isolated environment.
This guide will explain how to set up CAPE, use it and customize it.
Having troubles?
If you’re having troubles you might want to check out the FAQ as it may already have the answers to your questions.
Otherwise you can ask the developers and/or other CAPE users, see Join the discussion.
Contents
- Introduction
- Installation
- Preparing the Host
- Preparing the Guest
- Preparing the Guest (Physical Machine)
- Upgrade from a previous release
- Usage
- Starting CAPE
- CAPE internals
- Submit an Analysis
- Web interface
- REST API
- api.py DEPRECATED
- Distributed CAPE
- CAPE advanced administration
- Analysis Packages
- Analysis Results
- Clean all Tasks and Samples
- CAPE Rooter
- Utilities
- Performance
- CAPE’s debugger
- Interactive session
- Pattern replacement
- Customization
- Integrations
- Development
- Final Remarks