Home

Awesome

DRAKVUF Sandbox

DRAKVUF Sandbox is an automated black-box malware analysis system with DRAKVUF engine under the hood, which does not require an agent on guest OS.

This project provides you with a friendly web interface that allows you to upload suspicious files to be analyzed. Once the sandboxing job is finished, you can explore the analysis result through the mentioned interface and get an insight on whether the file is truly malicious or not.

Because it is usually pretty hard to set up a malware sandbox, this project also provides you with an installer app that would guide you through the necessary steps and configure your system using settings that are recommended for beginners. At the same time, experienced users can tweak some settings or even replace some infrastructure parts to better suit their needs.

Quick start

DRAKVUF Sandbox - Analysis view

Supported hardware & software

In order to run DRAKVUF Sandbox, your setup must fullfill all of the listed requirements.

Nested virtualization:

Maintainers/authors

Feel free to contact us if you have any questions or comments.

General contact email: info@cert.pl (fastest response)

You can also chat with us about this project on Discord:

This project is authored by:

If you have any questions about DRAKVUF engine itself, contact tamas@tklengyel.com

Acknowledgements

This project was created and/or upgraded thanks to the following organizations and initiatives:

Connecting Europe Facility of the European Union

<a href="https://ec.europa.eu/inea/en/connecting-europe-facility"> <img style="border: 0.2px solid black" src=".github/screenshots/cef.png" alt="Co-financed by the Connecting Europe Facility of the European Union"> </a>

The Honeynet Project

<a href="https://honeynet.org"> <img style="border: 0.2px solid black" src=".github/screenshots/honeynet.png" alt="Contributed by The Honeynet Project"> </a>

CERT Polska

<a href="https://cert.pl"> <img style="border: 0.2px solid black" src=".github/screenshots/cert.png" alt="Maintained by CERT Polska"> </a>