Emul4nt/Cerberus

[][linkedin-url]

Table of Contents

1. About The Project
   • Built With
2. Roadmap

## About The Project This project serves as a proof of concept on how an automated malware analysis framework works, when I am analysing malware I often find myself going to sites like https://tria.ge/ but unfortunately triage isn't 100% open-source about their project, so I decided this would be a fun project for me to try and do myself! ### Features - 🔍 **Automated Static Analysis** - File hashing, entropy analysis, string extraction, and YARA rule matching - 🏃 **Dynamic Analysis** - Sandboxed execution with behavior monitoring and network traffic analysis - 🌐 **Web Interface** - Simplistic web application to submit malware and retreive results - 📊 **Comprehensive Reporting** - Detailed analysis reports with IOCs, MITRE ATT&CK mapping, and threat intelligence assisted by Cisco's Sec8B Threat Intel LLM - 🐳 **Containerised** - Isolated using Vagrant & Virtualbox

(back to top)

### Built With The web application is built with python/flask whereas the backend is going to be built with bash and utilising Vagrant for automatic VM deployment, python will also be used for log parsing & result formatting. * [][Python-url] * [][Flask-url] * [][Bash-url] * [][Vagrant-url]

(back to top)

## Roadmap - [x] Begin Web Application - [ ] Create Static Analysis Scripts - [ ] Set up Vagrant Environment - [ ] Integrate Sec8B Threat Intel LLM - [ ] PDF Generation - [ ] Interactive Dynamic Analysis - [ ] VM Hardening

(back to top)

## License Distributed under the MIT License. See `LICENSE.txt` for more information.

(back to top)