{"id":26900061,"url":"https://github.com/narges-d/cape-sandbox","last_synced_at":"2026-01-15T22:31:06.271Z","repository":{"id":283531984,"uuid":"952039669","full_name":"narges-d/cape-sandbox","owner":"narges-d","description":null,"archived":false,"fork":false,"pushed_at":"2025-06-07T06:01:19.000Z","size":1982,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-06-07T07:17:35.579Z","etag":null,"topics":["cape","capesandbox","malware","malware-analysis","malware-detection","network","network-analysis","pcap","pcap-analyzer","sandbox","security","wireshark"],"latest_commit_sha":null,"homepage":"","language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/narges-d.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2025-03-20T16:28:31.000Z","updated_at":"2025-06-07T06:01:24.000Z","dependencies_parsed_at":"2025-03-20T18:53:55.028Z","dependency_job_id":null,"html_url":"https://github.com/narges-d/cape-sandbox","commit_stats":null,"previous_names":["narges-d/cape-sandbox"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/narges-d/cape-sandbox","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/narges-d%2Fcape-sandbox","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/narges-d%2Fcape-sandbox/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/narges-d%2Fcape-sandbox/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/narges-d%2Fcape-sandbox/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/narges-d","download_url":"https://codeload.github.com/narges-d/cape-sandbox/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/narges-d%2Fcape-sandbox/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":28472763,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-01-15T22:27:41.514Z","status":"ssl_error","status_checked_at":"2026-01-15T21:54:47.910Z","response_time":62,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.6:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["cape","capesandbox","malware","malware-analysis","malware-detection","network","network-analysis","pcap","pcap-analyzer","sandbox","security","wireshark"],"created_at":"2025-04-01T07:07:11.697Z","updated_at":"2026-01-15T22:31:06.267Z","avatar_url":"https://github.com/narges-d.png","language":null,"funding_links":[],"categories":[],"sub_categories":[],"readme":"![CAPE Logo](./image/22219888.png)\n\n# CAPEv2 Sandbox Installation from Begin\n\nThis repository provides an automated script for installing and configuring CAPE Sandbox.  \nI used this sandbox as part of my thesis to extract network traffic.  \nThis repository also includes a documentation of errors encountered during the installation process, serving as a guide for others who might face similar issues.\n\n## What is CAPEv2\n\nCAPE Sandbox is an Open Source software for automating analysis of suspicious files.  \nTo do so it makes use of custom components that monitor the behavior of the malicious processes while running in an isolated environment.\n\n## Prepare Requirement\n\nFor installing CAPEv2 I used nested virtualization format.  \nAt first, I used Ubuntu 22.04.4 as my base operating system and faced errors, so I decided to use nested virtualization.\n\nFor installing you can follow this path:\n\n\nsudo apt-get update \u0026\u0026 sudo apt-get upgrade -y\n\n--------------\nsudo chmod -R a+rwx /opt/\n\n-----------\ncd /opt\n\n-------------\nsudo apt install git\ngit clone https://github.com/kevoreilly/CAPEv2.git\ncd CAPEv2/installer\nsed -i 's/\u003cWOOT\u003e/BXPC/g' kvm-qemu.sh\nchmod a+x kvm-qemu.sh\nchmod a+x cape2.sh\n\nsudo ./kvm-qemu.sh all cape | tee kvm-qemu.log\nsudo reboot\n\ncd /opt/CAPEv2/installer\nsudo ./kvm-qemu.sh virtmanager cape | tee kvm-qemu-virt-manager.log\n\n------------------------------------------------------------\nafter that you have see :\n\n------------------------------\n![kvm-qemu](./image/Capture.PNG)\n\ncd /opt/CAPEv2/installer\nsudo ./cape2.sh all cape | tee cape.log\nsudo reboot\n\ncd /opt/CAPEv2\npoetry install or sudo poetry install\n\n-------------------\nif you see such result from this command :\n\n---------------------\n![poetry](./image/Capture5.PNG)\n\n---------\ncheck this :\n\n----------\n![poetry](./image/Capture6.PNG)\n\n-------------\nthen do like this:\n\n----------------------\n![poetry](./image/Capture7.PNG)\n\n---------------\n\npoetry env list\n---- poetry run pip install -r requirements.txt -------\nsudo -u cape poetry run pip install -r extra/optional_dependencies.txt\nsudo -u cape poetry run pip install pyattck==7.1.2\n\n-----------------------------\ncd /opt/CAPEv2\nsudo apt install dbus-x11\n\n------------------\nin this part have to check these:\n\n---------------------\n![Setting](./image/Capture10.PNG)\n\n---------------\nfor checking how does do setting conf file can check here https://capev2.readthedocs.io/en/latest/installation/host/configuration.html\nafter set the conf files you can check cape web UI\n\n---------------------\n![CAPP](./image/Capture4.PNG)\n\n-------------------------\nnow for target side you have to install windows 10 on your KVM:\nbefore that sure to check:\n\n----------------------\n![Setting](./image/Capture13.PNG)\n\n----------------\nthen select new virtual machine and start installation \n\n------------------------\n![Target-side](./image/Capture11.PNG)\n\n----------------\nafter the installation finish \ndownload python #python must be x32 version (windows 7 version 3.7.0) ( windows 10 version 3.10.6)\n- Create 2-4 files and docs in Desktop (to make the vm looks like reality)\nyou have to copy agent file from your cape in your windows in host do like this\n\n-------------------------\n![Target-side](./image/Capture15.PNG)\n\n-----------------\nthen in browser in windows enter your vm ip:8000\nthen open agent file copy it in document\n\n--------------\n![Target-side](./image/Capture16.PNG)\n\n---------------\nafter that you have to set aget file pop up when windows start\n\n-------------------\n![Target-side](./image/Capture21.PNG)\n\n----------------\n![Target-side](./image/Capture22.PNG)\n\n-----------------\n![Target-side](./image/Capture23.PNG)\n\n---------------\n![Target-side](./image/Capture25.PNG)\n\n------------\n![Target-side](./image/Capture26.PNG)\n\n-----------------\nnow install what mention\n- python -m pip install Pillow==9.5.0\n- Download and install OfficeSetup.exe (if you have a license) \n- Download pdf reader\n- Download .NET Framwork (3.5 win7 4.8 win10-11)\n- Download 7z for windows 10-11 and 7 winrar\n\n------------------\n![Target-side](./image/Capture20.PNG)\n\n----------------\nafter that \n- disable anti-virus\n- disable auto update\n- disable firewall\n\n- -----------------\n![Target-side](./image/Capture17.PNG)\n![Target-side](./image/Capture18.PNG)\n![Target-side](./image/Capture19.PNG)\n\nnow from web can selelct exe file and analysis it.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fnarges-d%2Fcape-sandbox","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fnarges-d%2Fcape-sandbox","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fnarges-d%2Fcape-sandbox/lists"}