Preparing the Guest (Physical Machine)¶
At this point, you should have configured the CAPE host component and you should have designed and defined the number and the names of the physical machines you are going to use for malware execution.
- You don’t need KVM or any other hypervisor to run physical machinery. You only need FOG.
- Please see this writeup for more updated details 15.10.2020
- https://mariohenkel.medium.com/using-cape-sandbox-and-fog-to-analyze-malware-on-physical-machines-4dda328d4e2c
Now it’s time to create such machines and configure them properly.