Cuckoo Sandbox 1.2 released

Posted on March 05, 2015 in Tools • Tagged with cuckoo • 1 min read

After a while we finally released Cuckoo Sandbox 1.2!

It is one of the Cuckoo’s release with the most impressive amount of new features, just to mention a few:

  • XenServer machinery support
  • Physical machine support, to run analysis on bare metal
  • Comparative reporting, you can compare analysis in a fancy way
  • Improved visualization of network data

A complete list of feature is available in the announce post, I kindly suggest to have a look over it.


Continue reading

New Ghiro website

Posted on March 04, 2015 in Tools • Tagged with ghiro • 1 min read

It seems that the old Ghiro website was too hard for understand for people visiting it.

All we know people stops on websites few seconds, so contents should be delivered in an efficient way, with a simple layout and  short web page.

After one year we read about people that barely were able to understand what Ghiro is, if it is an automated digital forensic tool or a brand new Photoshop clone. We read about people asking where they can download it, how much it costs a license and so on.

So our burlone, Ghiro’s design engineer, put together …


Continue reading

How to clean data in Cuckoo Sandbox

Posted on March 02, 2015 in Tools • Tagged with cuckoo • 1 min read

Starting with Cuckoo Sandbox 1.2, which will be released soon, the old data cleanup tool will be deprecated in favor of a new cleanup method.

The old clean tool, still available, it is the clean.sh script in the tools directory. It is a bash script used to delete the data inside the storage directory (malware samples and reports), logs directory and db directory. The downside is that if you are not using SQLite database but  MySQL or PostgreSQL and if you enable the MongoDB reporting module to store analysis results in MongoDB, clean.sh won’t clean up …


Continue reading

Ghiro 0.2 released

Posted on January 15, 2015 in Tools • Tagged with ghiro, image forensics • 2 min read

It took some time, but here we are, I am really happy to say: we released Ghiro 0.2! We continuously love to improve Ghiro’s feature and our codebase, I hope you like we now release and any kind of feedback will be appreciated. It follows the official release statement.

Ghiro 0.2 has been released!

Ghiro is an automated image forensics tool: sometimes forensic investigators
need to process digital images as evidence. Dealing with tons of images is
pretty easy, Ghiro is designed to scale to support gigs of images.
All tasks are totally automated, you have just …

Continue reading

Ghiro Appliance Building

Posted on November 18, 2014 in Tools • Tagged with appliance, ghiro, image forensics • 2 min read

All started with us thinking about a way to provide users with the simplest and fastest method to test or deploy Ghiro, some users just want to give a try or deploy their infrastructure with no pain in few minutes, and we like challenges.

The game was achieving an plug and play “box” with:

  • Few requirements or no requirements.
  • The ability to use the appliance building technology in a continuous integration system to be used in developer’s daily testing.

After evaluating some technologies, the winner was a conventional “virtual appliance”, because it requires only one virtualization software (i.e …


Continue reading