Cuckoo Sandbox Book

Cuckoo Sandbox is an Open Source software for automating analysis of suspicious files. To do so it makes use of custom components that monitor the behavior of the malicious processes while running in an isolated Windows environment.

This book explains what Cuckoo is, how it works and what you can do with it, from setup and run Cuckoo to how to customize it and extend it.

Having troubles?

If you’re having troubles you might want to check out the FAQ it might already have the answers to your questions.

Otherwise you can ask to the developers and to other Cuckoo users in the #cuckoobox IRC channel.