{"id":103,"date":"2025-07-16T15:19:11","date_gmt":"2025-07-16T06:19:11","guid":{"rendered":"http:\/\/34.64.61.65\/?p=103"},"modified":"2025-07-16T15:19:11","modified_gmt":"2025-07-16T06:19:11","slug":"cuckoo-sandbox-install","status":"publish","type":"post","link":"https:\/\/hed-g.me\/?p=103","title":{"rendered":"Cuckoo Sandbox Install"},"content":{"rendered":"\n<p><strong>Cuckoo Sandbox \uad6c\ucd95 \uc21c\uc11c:<\/strong><\/p>\n\n\n\n<p>\ud83c\udf1f&nbsp;\uae30\ubcf8 \ud328\ud0a4\uc9c0 \ubc0f \ub77c\uc774\ube0c\ub7ec\ub9ac \uc124\uce58<\/p>\n\n\n\n<p>\ud83c\udf1f&nbsp;cuckoo \ucf54\uc5b4 \uc124\uce58<\/p>\n\n\n\n<p>\ud83c\udf1f&nbsp;sandbox \uad6c\uc131<\/p>\n\n\n\n<p>\ud83c\udf1f&nbsp;cuckoo \uc6f9&nbsp;\ub370\uc774\ud130\ubca0\uc774\uc2a4 \uad6c\uc131<\/p>\n\n\n\n<p>\ud83c\udf1f&nbsp;cuckoo \uc124\uc815 \ubc0f \uc2e4\ud589<\/p>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\"\/>\n\n\n\n<ol class=\"wp-block-list\">\n<li>\uae30\ubcf8 \ud328\ud0a4\uc9c0 \ubc0f \ub77c\uc774\ube0c\ub7ec\ub9ac \uc124\uce58<\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\ud328\ud0a4\uc9c0 \ubc0f \ub77c\uc774\ube0c\ub7ec\ub9ac \uc124\uce58\ud560 \uc900\ube44\ub97c \uc704\ud574 \uc5c5\ub370\uc774\ud2b8.<\/li>\n<\/ul>\n\n\n\n<pre class=\"wp-block-code\"><code>sudo apt-get update<\/code><\/pre>\n\n\n\n<p>1) \uae30\ubcf8 \ud328\ud0a4\uc9c0 \ubc0f \ub77c\uc774\ube0c\ub7ec\ub9ac \uc124\uce58<\/p>\n\n\n\n<p>\ud604\uc7ac \ubc84\uc804 22.04 \uae30\uc900\uc73c\ub85c \uad6c\ucd95\uc2dc python2.7, python3 \ud63c\uc6a9 \uc124\uce58 \ud544\uc694.<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>sudo apt-get install python2.7 python2.7-dev python3 python3-dev python3-pip<\/code><\/pre>\n\n\n\n<p>pip 2\ubc84\uc804\uc744 \uc124\uce58\ud558\uae30 \uc704\ud574 \ub2e4\uc74c\uacfc \uac19\uc740 command:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>sudo add-apt-repository universe\nsudo apt-get install curl\ncurl https:\/\/bootstrap.pypa.io\/pip\/2.7\/get-pip.py --output get-pip.py\nsudo python2.7 get-pip.py<\/code><\/pre>\n\n\n\n<p>\uc720\ub2c8\ubc84\uc2a4 \ub9ac\ud3ec\uc9c0\ud1a0\ub9ac \ud65c\uc131\ud654 \ud6c4, curl \uc2a4\ud06c\ub9bd\ud2b8\ub85c \ub2e4\uc6b4\ub85c\ub4dc\ud558\uc5ec pip\ub97c \uc124\uce58.<\/p>\n\n\n\n<p>\ub098\uba38\uc9c0 \ub77c\uc774\ube0c\ub7ec\ub9ac \uc124\uce58 \uc9c4\ud589:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>sudo apt-get install subversion\nsudo apt-get install libssl-dev libjpeg-dev zlib1g-dev libffi-dev git\nsudo apt-get install automake autoconf libtool build-essential wget swig\nsudo apt-get install libpcre3 libpcre3-dev libpcre++-dev -y\nsudo apt-get install python3-magic python3-dpkt python3-sqlalchemy python3-jinja2 -y\nsudo apt-get install python3-pymongo python3-bottle python3-virtualenv python-setuptools -y<\/code><\/pre>\n\n\n\n<p>2) tcpdump<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>tcpdump<\/li>\n<\/ul>\n\n\n\n<p>\ub124\ud2b8\uc6cc\ud06c \uc0c1 \uc1a1\uc218\uc2e0\ub418\ub294 \ud328\ud0b7\ub4e4\uc758 \uc815\ubcf4\ub4e4\uc744 \uac00\ub85c\ucc44(\uc2a4\ub2c8\ud551) \uc815\ubcf4\ub4e4\uc744 \ud45c\uc2dc\ud574\uc8fc\ub294&nbsp;<strong>\ub124\ud2b8\uc6cc\ud06c \ud328\ud0b7 \ucea1\ucc98 \ubc0f \ubd84\uc11d\ub3c4\uad6c<\/strong>.<\/p>\n\n\n\n<p>cuckoo sandbox\uc5d0\uc11c\ub294 \ubd84\uc11d \uc911 malware\uc5d0 \uc758\ud574 \uc0dd\uc131\ub41c \ub124\ud2b8\uc6cc\ud06c \ud2b8\ub798\ud53d\uc744 \ucea1\ucc98\ud558\uace0 \ubd84\uc11d\ud558\uc5ec \ub370\uc774\ud130\ub97c \uc81c\uacf5.<\/p>\n\n\n\n<p>\ub2e4\uc74c command\ub97c \ud1b5\ud574 tcpdump\uc640 apparmor-utils \uc124\uce58:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>sudo apt-get install tcpdump apparmor-utils<\/code><\/pre>\n\n\n\n<p>app armor\ub97c \ube44\ud65c\uc131\ud654\ud558\uace0, tcpdump\ub97c root \uad8c\ud55c \uc5c6\uc774 \uc0ac\uc6a9\ud560 \uc218 \uc788\ub3c4\ub85d \uc124\uc815:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>sudo aa-disable \/usr\/bin\/tcpdump\nsudo setcap cap_net_raw,cap_net_admin=eip \/usr\/bin\/tcpdump<\/code><\/pre>\n\n\n\n<p>\u203b tcpdump issue :&nbsp;<a href=\"https:\/\/jihyun-dev.tistory.com\/4\">https:\/\/jihyun-dev.tistory.com\/4<\/a><\/p>\n\n\n\n<p><a href=\"https:\/\/jihyun-dev.tistory.com\/4\">tcpdump directory issue: \/usr\/sbin\/tcpdump<br>\n\ub098\uac19\uc740 \uacbd\uc6b0\uc5d0\ub294 cuckoo sandbox\ub97c \uc0ac\uc6a9\ud558\uae30 \uc704\ud574 tcpdump\uac00 \ud544\uc694\ud588\uace0&#8230; \ub2e4\ub978 \uc774\uc720\ub85c\ub3c4 tcpdump\uac00 \ud544\uc694\ud55c \ubd84\ub4e4\uc774 \uc788\uaca0\uc9c0\ub9cc \uc544\ubb34\ud2bc \ucd5c\uc2e0 \ubc84\uc804\uc758 \ubb38\uc81c\uc778\uc9c0 \ubab0\ub77c\ub3c4 \uacc4\uc18d \uc5d0\ub7ec \ubc1c\uc0dd. \uadfc\ub370 \uc5b4\uca50\uc9c0 \uadf8 \uc5d0\ub7ec\ub4e4<br>\njihyun-dev.tistory.com<\/a><\/p>\n\n\n\n<p>3) ssdeep, pydeep<\/p>\n\n\n\n<p>(1) ssdeep \uc124\uce58<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>ssdeep<\/li>\n<\/ul>\n\n\n\n<p>Fuzzy Hash\ub97c \uc0ac\uc6a9\ud558\uc5ec&nbsp;<strong>\uc6d0\ubcf8 \ud30c\uc77c\uacfc \uc720\uc0ac\ub3c4 \uce21\uc815<\/strong>, Hash \uac12\uc744 \ud1b5\ud574 \ubb34\uacb0\uc131 \uccb4\ud06c.<\/p>\n\n\n\n<p>sandbox\uc5d0 submit\ub41c \ud30c\uc77c\uc758 Hash\uac12\uc744 \ud1b5\ud574 malware\uc758 \ubcc0\uc885\uc778\uc9c0 \ube44\uad50\ud558\ub294\ub370 \uc0ac\uc6a9, \uad00\ub828\uc788\ub294 \ud30c\uc77c\uc744 \ube60\ub974\uac8c \uc2dd\ubcc4.<\/p>\n\n\n\n<p>\ub2e4\uc74c command\ub97c \ud1b5\ud574 ssdeep.tar.gz \ud30c\uc77c \ub2e4\uc6b4\ub85c\ub4dc \ubc0f \uc555\ucd95\ud574\uc81c:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>wget http:\/\/sourceforge.net\/projects\/ssdeep\/files\/ssdeep-2.13\/ssdeep-2.13.tar.gz\ntar zxf ssdeep-2.13.tar.gz\nrm -r ssdeep-2.13.tar.gz\nmv ssdeep-2.13 ssdeep<\/code><\/pre>\n\n\n\n<p>ssdeep \ub514\ub809\ud130\ub9ac\ub85c \uc774\ub3d9\ud558\uc5ec \uc124\uc815:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>cd ssdeep\n.\/configure &amp;&amp; make &amp;&amp; make install\nsudo ldconfig<\/code><\/pre>\n\n\n\n<p>(2) pydeep<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>pydeep<\/li>\n<\/ul>\n\n\n\n<p>cuckoo sandbox\uc5d0 \uc788\uc5b4\uc11c pydeep\uc740 Fuzzy Hashing\uc744 \uc218\ud589, \ud30c\uc77c\uc744 cuckoo sandbox\uc5d0 submit\ud558\uba74 pydeep\uc774<\/p>\n\n\n\n<p>\ud574\ub2f9 \ud30c\uc77c\uc5d0 \ub300\ud55c CTPH Hash\ub97c \uc0dd\uc131\ud558\uace0 \uc54c\ub824\uc9c4 Hash \ub370\uc774\ud130\ubca0\uc774\uc2a4\uc640 \ube44\uad50\ud558\uc5ec \ubd84\uc11d \uc9c4\ud589.<\/p>\n\n\n\n<p>\uc989, \uc7a0\uc7ac\uc801\uc73c\ub85c \uc545\uc131\uc77c \ud30c\uc77c\uc744 \ud6a8\uc728\uc801\uc73c\ub85c \ubd84\uc11d \ubc0f \uc2dd\ubcc4 \uac00\ub2a5.<\/p>\n\n\n\n<p>\ub2e4\uc74c command\ub97c \ud1b5\ud574 pydeep \uc124\uce58:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>git clone https:\/\/github.com\/kbandla\/pydeep.git pydeep\ncd pydeep\nsudo apt-get install libfuzzy-dev\npython3 setup.py build\nsudo python3 setup.py install<\/code><\/pre>\n\n\n\n<p>4) pefile<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>pefile<\/li>\n<\/ul>\n\n\n\n<p>\uc2e4\ud589\ud30c\uc77c(.exe), DLL \ubc0f \uae30\ud0c0 \ubc14\uc774\ub108\ub9ac \ud30c\uc77c\uc5d0 \uc0ac\uc6a9\ud558\ub294 \ud30c\uc77c \ud615\uc2dd\uc778 PE(Portable Executable)\ud30c\uc77c\uc5d0 \uc791\uc5c5\ud558\ub294<\/p>\n\n\n\n<p>Python \ubaa8\ub4c8. malware \ubd84\uc11d\uc5d0\uc11c&nbsp;<strong>PE\ud30c\uc77c\uc758 \uc815\ubcf4 \ucd94\ucd9c<\/strong>\uc774 \uac00\ub2a5\ud558\uba70, \ucd94\ucd9c \uc815\ubcf4\ub294 \uc8fc\ub85c \ud30c\uc77c\uc758 \ubaa9\uc801, malware \uc5ec\ubd80,<\/p>\n\n\n\n<p>\uc2e4\ud589 \uc2dc \uc5b4\ub5a4 \ub3d9\uc791\uc744 \ubcf4\uc774\ub294\uc9c0 \ud30c\uc545\ud558\ub294\ub370 \uc0ac\uc6a9.<\/p>\n\n\n\n<p>\ub2e4\uc74c command\ub97c \ud1b5\ud574 PE file \ub2e4\uc6b4\ub85c\ub4dc:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>wget https:\/\/github.com\/erocarrera\/pefile\/releases\/download\/v2023.2.7\/pefile-2023.2.7.tar.gz\ntar zxf pefile-2023.2.7.tar.gz\nrm -r pefile-2023.2.7.tar.gz\nmv pefile-2023.2.7 pefile<\/code><\/pre>\n\n\n\n<p>pefile \ub514\ub809\ud130\ub9ac\ub85c \uc774\ub3d9\ud558\uc5ec \uc124\uce58:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>cd pefile\npython3 setup.py build\nsudo python3 setup.py install<\/code><\/pre>\n\n\n\n<p>5)&nbsp;<strong>yara<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>yara<\/li>\n<\/ul>\n\n\n\n<p>malware&nbsp;<strong>\ud328\ud134 \ub9e4\uce6d \ubc0f \ud0d0\uc9c0<\/strong>\uc5d0 \uc0ac\uc6a9. \ud2b9\uc815 malware\uc758 \ub3d9\uc791\uc774\ub098 \ud2b9\uc131\uc744 \uc2dd\ubcc4\ud558\uae30 \uc704\ud574 yara rule\uc744 \uc0dd\uc131\ud558\uace0<\/p>\n\n\n\n<p>\uc774 rule\uc744 \uc0ac\uc6a9\ud558\uc5ec \ud30c\uc77c, \uba54\ubaa8\ub9ac\uc5d0\uc11c \uc7a0\uc7ac\uc801\uc778 malware\ub97c \uac80\uc0ac \uac00\ub2a5(Signature \uae30\ubc18 \ud0d0\uc9c0)<\/p>\n\n\n\n<p>yara-4.3.0.tar.gz \ud30c\uc77c\uc744 \ub2e4\uc6b4\ub85c\ub4dc:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>wget https:\/\/github.com\/VirusTotal\/yara\/archive\/refs\/tags\/v4.3.0.tar.gz\ntar zxf v4.3.0.tar.gz\nrm -r v4.3.0.tar.gz\nmv yara-4.3.0 yara<\/code><\/pre>\n\n\n\n<p>yara \ub514\ub809\ud130\ub9ac\ub85c \uc774\ub3d9, \uc124\uce58 \ubc0f \uc124\uc815 \uc644\ub8cc:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>cd yara\nsudo apt-get install libtool*\n.\/bootstrap.sh\n.\/configure\nmake\nsudo make install<\/code><\/pre>\n\n\n\n<p>yara\ub97c python\uc5d0\uc11c \uc0ac\uc6a9\ud560 \uc218 \uc788\ub3c4\ub85d \ub2e4\uc74c command\ub97c \ud1b5\ud574 yara-python \uc124\uce58:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>git clone --recursive https:\/\/github.com\/VirusTotal\/yara-python\ncd yara-python\npython3 setup.py build\nsudo python3 setup.py install<\/code><\/pre>\n\n\n\n<p>6) m2crypto<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>m2crypto<\/li>\n<\/ul>\n\n\n\n<p><strong>\uc554\ud638\ud654<\/strong>, \uc554\ud638 \ud574\ub3c5 \ubc0f \ub514\uc9c0\ud138 \uc11c\uba85 \ub4f1 \uc554\ud638\ud654 \uae30\ub2a5\uc5d0 \uc0ac\uc6a9\ub418\ub294 Python \ub77c\uc774\ube0c\ub7ec\ub9ac.<\/p>\n\n\n\n<p>SSL\/TLS \uc554\ud638\ud654 \ubc0f \ub514\uc9c0\ud138 \uc778\uc99d\uc11c \uad00\ub9ac\uc640 \uac19\uc740 \ub124\ud2b8\uc6cc\ud06c \ubcf4\uc548 \uc560\ud50c\ub9ac\ucf00\uc774\uc158\uc5d0 \uc0ac\uc6a9.<\/p>\n\n\n\n<p>\ub2e4\uc74c command\ub97c \ud1b5\ud574 m2crypto\ub97c \uc124\uce58:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>sudo pip install m2crypto<\/code><\/pre>\n\n\n\n<p>7) Volatility<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Volatility<\/li>\n<\/ul>\n\n\n\n<p>\uba54\ubaa8\ub9ac \ub364\ud504\uc5d0\uc11c malware\ub098 \ud574\ud0b9, \uae30\ud0c0 \ubcf4\uc548 \uc0ac\uace0 \uc99d\uac70\ub97c \ubd84\uc11d\ud558\ub294\ub370 \uc0ac\uc6a9\ub418\ub294&nbsp;<strong>\uba54\ubaa8\ub9ac<\/strong>&nbsp;\ud3ec\ub80c\uc2dd \ub3c4\uad6c.<\/p>\n\n\n\n<p>\uc2e4\ud589 \uc911\uc778 \ud504\ub85c\uc138\uc2a4, \uac1c\ubc29\ud615 \ub124\ud2b8\uc6cc\ud06c \uc5f0\uacb0 \ubc0f \ubcf4\uc548 \ubb38\uc81c\ub97c \ub098\ud0c0\ub0bc \uc218 \uc788\ub294 \uae30\ud0c0 \uc2dc\uc2a4\ud15c \ud65c\ub3d9\uc5d0 \ub300\ud55c \uc815\ubcf4 \ucd94\ucd9c\ud558\ub294\ub370<\/p>\n\n\n\n<p>\uc0ac\uc6a9.<\/p>\n\n\n\n<p>volatility\ub97c git clone\uc73c\ub85c \ubcf5\uc81c\ud558\uc5ec \ubc1b\uc544\uc624\uace0 \ud574\ub2f9 \ub514\ub809\ud130\ub9ac\ub85c \uc774\ub3d9 \ubc0f \uc124\uce58:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>sudo git clone https:\/\/github.com\/volatilityfoundation\/volatility.git\ncd volatility\npython3 setup.py build\nsudo python3 setup.py install<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\">\n<li>distorm3<\/li>\n<\/ul>\n\n\n\n<p>\ub9ac\ubc84\uc2a4 \uc5d4\uc9c0\ub2c8\uc5b4\ub9c1 \ubc0f malware \ubd84\uc11d\uc5d0 \uc0ac\uc6a9. \uc2e4\ud589 \ucf54\ub4dc\ub97c \uc5b4\uc148\ube14\ub9ac \uc5b8\uc5b4\ub85c \ub514\uc2a4\uc5b4\uc148\ube14\ud558\ub294\ub370 \uc0ac\uc6a9\ub418\ub294 \ub514\uc2a4\uc5b4\uc148\ube14\ub7ec<\/p>\n\n\n\n<p>\ub77c\uc774\ube0c\ub7ec\ub9ac\ub85c, \ud504\ub85c\uadf8\ub7a8\uc758 \uc791\ub3d9 \ubc29\uc2dd\uacfc \uae30\ub2a5\uc744 \ud30c\uc545\ud558\ub294\ub370 \uc774\uc6a9.<\/p>\n\n\n\n<p>distorm3\uc744 \ub2e4\uc6b4\ub85c\ub4dc\ud558\uace0 \uc555\ucd95 \ud574\uc81c:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>sudo apt-get install libboost-all-dev\nwget https:\/\/github.com\/gdabah\/distorm\/archive\/v3.4.4.tar.gz\ntar zxvf v3.4.4.tar.gz\nsudo rm -r v3.4.4.tar.gz\nmv distorm-3.4.4 distorm3<\/code><\/pre>\n\n\n\n<p>distorm3 \ub514\ub809\ud130\ub9ac\ub85c \uc774\ub3d9 \ud6c4 \uc124\uce58:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>cd distorm3\nsudo python3 setup.py build\nsudo python3 setup.py install<\/code><\/pre>\n\n\n\n<ol start=\"2\" class=\"wp-block-list\">\n<li>cuckoo \ucf54\uc5b4 \uc124\uce58<\/li>\n<\/ol>\n\n\n\n<p>\ub2e4\uc74c\uacfc \uac19\uc740 command\ub97c \ud1b5\ud574 cuckoo \ucf54\uc5b4 \uc124\uce58:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>sudo pip2.7 install cuckoo\nsudo pip2.7 install -U cuckoo\ncuckoo<\/code><\/pre>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\"\/>\n\n\n\n<ol start=\"3\" class=\"wp-block-list\">\n<li>sandbox \uad6c\uc131<\/li>\n<\/ol>\n\n\n\n<p>1) VirtualBox \uc124\uce58<\/p>\n\n\n\n<p>\u203b&nbsp;\uc218\ub3d9\uc73c\ub85c \uc124\uce58\uc2dc \ub2e4\uc74c\uacfc \uac19\uc774 command \uc785\ub825:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>wget -q https:\/\/www.virtualbox.org\/download\/oracle_vbox_2016.asc -O- | sudo apt-key add -\necho \"deb &#91;arch=amd64] http:\/\/download.virtualbox.org\/virtualbox\/debian focal contrib\" | sudo tee \/etc\/apt\/sources.list.d\/virtualbox.list\nsudo apt update\nsudo apt-get install virtualbox<\/code><\/pre>\n\n\n\n<p>2) \uac00\uc0c1\uba38\uc2e0 \uc0dd\uc131 \ubc0f \uad6c\uc131<\/p>\n\n\n\n<p>(1) \uac00\uc0c1\uba38\uc2e0 \ub2e4\uc6b4\ub85c\ub4dc \ubc0f \uc0dd\uc131<\/p>\n\n\n\n<figure class=\"wp-block-embed\"><div class=\"wp-block-embed__wrapper\">\nhttps:\/\/www.microsoft.com\/ko-kr\/software-download\/windows10ISO\n<\/div><\/figure>\n\n\n\n<p><a href=\"https:\/\/www.microsoft.com\/ko-kr\/software-download\/windows10ISO\">Windows 10 \ub514\uc2a4\ud06c \uc774\ubbf8\uc9c0 \ub2e4\uc6b4\ub85c\ub4dc(ISO \ud30c\uc77c)<br>\n\uc694\uccad\uc758 \uc720\ud6a8\uc131\uc744 \uac80\uc0ac\ud558\ub294 \uc911\uc785\ub2c8\ub2e4. \uc774 \uc791\uc5c5\uc740 \uba87 \ubd84 \uc815\ub3c4 \uac78\ub9b4 \uc218 \uc788\uc2b5\ub2c8\ub2e4. \ud398\uc774\uc9c0\ub97c \uc0c8\ub85c \uace0\uce58\uac70\ub098 \ub4a4\ub85c \uc774\ub3d9\ud558\uc9c0 \ub9c8\uc138\uc694. \uadf8\ub7ec\uba74 \uc694\uccad\uc774 \ucde8\uc18c\ub429\ub2c8\ub2e4.<br>\nwww.microsoft.com<\/a><\/p>\n\n\n\n<p>[Virtualbox] &#8211; [New]:<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/blog.kakaocdn.net\/dna\/yjDBn\/btsopupROBj\/AAAAAAAAAAAAAAAAAAAAADZew4WWOI_7r9G2htk8hGfzYc9-W4ARd9vjzUfDHnAx\/img.png?credential=yqXZFxpELC7KVnFOS48ylbz2pIh7yKj8&amp;expires=1753973999&amp;allow_ip=&amp;allow_referer=&amp;signature=uvtZg1ddi06dF%2BM0godF1dreSqg%3D\" alt=\"\"\/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>machine \uc774\ub984\uc740 cuckoo1\uc73c\ub85c \uc124\uc815.<\/p>\n\n\n\n<p>\ud544\uc790\ub294 Base Memory 4000MB, Processors 2, 50GB \ud560\ub2f9.<\/p>\n\n\n\n<p>\ub2e4\uc6b4\ub85c\ub4dc\ud55c \uc774\ubbf8\uc9c0 \ub514\uc2a4\ud06c\ub97c \uc0bd\uc785 \ud6c4 OK<\/p>\n\n\n\n<p>(2) python 2.7 \ubc0f pillow \ub77c\uc774\ube0c\ub7ec\ub9ac \uc124\uce58<\/p>\n\n\n\n<p>\uc0dd\uc131\ud55c cuckoo1\uc744 \ubd80\ud305\ud558\uace0 python 2.7 \ub2e4\uc6b4\ub85c\ub4dc \ubc0f \uc124\uce58:<\/p>\n\n\n\n<figure class=\"wp-block-embed\"><div class=\"wp-block-embed__wrapper\">\nhttps:\/\/www.python.org\/ftp\/python\/2.7.13\/python-2.7.13.msi\n<\/div><\/figure>\n\n\n\n<p>cmd\ub97c \uc5f4\uace0 \ub2e4\uc74c\uacfc \uac19\uc740 command\ub97c \uc785\ub825\ud558\uc5ec pillow \ub77c\uc774\ube0c\ub7ec\ub9ac \uc124\uce58:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>cd C:Python27Scripts\npip install pillow<\/code><\/pre>\n\n\n\n<p>3) \ubc29\ud654\ubcbd \ubc0f UAC \uc124\uc815<\/p>\n\n\n\n<p>(1) \ubc29\ud654\ubcbd OFF<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/blog.kakaocdn.net\/dna\/cFFWIN\/btsonwvILT4\/AAAAAAAAAAAAAAAAAAAAAGuOidtbqkeGl1M09NOFlQ7nB2n0UyKrKQ_XkD9r_3Kt\/img.png?credential=yqXZFxpELC7KVnFOS48ylbz2pIh7yKj8&amp;expires=1753973999&amp;allow_ip=&amp;allow_referer=&amp;signature=59hPpXKcSD%2BdYaiP4D%2ByAb4sx04%3D\" alt=\"\"\/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>(2)&nbsp; UAC(\uc0ac\uc6a9\uc790 \uacc4\uc815 \ucee8\ud2b8\ub864) OFF<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/blog.kakaocdn.net\/dna\/BpbiC\/btsorj84Ado\/AAAAAAAAAAAAAAAAAAAAABzuVZG1_PMuX2UJvbUGmfSDFwJp36t43OR2WeIo2rIo\/img.png?credential=yqXZFxpELC7KVnFOS48ylbz2pIh7yKj8&amp;expires=1753973999&amp;allow_ip=&amp;allow_referer=&amp;signature=DxFh8vk0JxGY5jzk6oHl5DumxEY%3D\" alt=\"\"\/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>4) \uac00\uc0c1\uba38\uc2e0 \ub124\ud2b8\uc6cc\ud06c \uad6c\uc131<\/p>\n\n\n\n<p>(1) Hostonly Network \uc124\uc815<\/p>\n\n\n\n<p>hostonly \uc5b4\ub311\ud130 \uc0dd\uc131 \ubc0f \uc124\uc815:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>sudo vboxmanage hostonlyif create\nsudo vboxmanage hostonlyif ipconfig vboxnet0 --ip 192.168.56.10<\/code><\/pre>\n\n\n\n<p>(2) iptables \uc124\uc815<\/p>\n\n\n\n<p>\uc124\uc815 \ud6c4 \uc800\uc7a5\ud558\ub824\uba74&nbsp; iptable \uc124\uc815\ud558\uae30 \uc804\uc5d0 \ub2e4\uc74c\uacfc \uac19\uc740 command :<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>sudo apt-get install iptables-persistent<\/code><\/pre>\n\n\n\n<p>\u203b \uc7ac\ubd80\ud305\uc2dc iptable \ucd08\uae30\ud654. \ub530\ub77c\uc11c \uc2a4\ud06c\ub9bd\ud2b8 \ud30c\uc77c\ub85c \uc800\uc7a5\ud558\uac70\ub098, \uba85\ub839\uc5b4\ub85c \uc124\uc815\ud55c iptable\uc744 \uc800\uc7a5.<\/p>\n\n\n\n<figure class=\"wp-block-embed\"><div class=\"wp-block-embed__wrapper\">\nhttps:\/\/cuckoo.readthedocs.io\/en\/latest\/installation\/host\/routing\n<\/div><\/figure>\n\n\n\n<p><a href=\"https:\/\/cuckoo.readthedocs.io\/en\/latest\/installation\/host\/routing\/\">Per-Analysis Network Routing \u2014 Cuckoo Sandbox v2.0.7 Book<br>\nPer-Analysis Network Routing Since Cuckoo 2.0-rc1 it is possible to feature per-analysis network routing. In other words, if you have one VM and three samples to analyze, it is possible to deny internet access for the first analysis, route the second analy<br>\ncuckoo.readthedocs.io<\/a><\/p>\n\n\n\n<p>\ub2e4\uc74c\uacfc \uac19\uc774 iptables \uc124\uc815:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>sudo iptables -t nat -A POSTROUTING -o ens33 -s 192.168.56.10\/24 -j MASQUERADE\nsudo iptables -P FORWARD DROP\nsudo iptables -A FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT\nsudo iptables -A FORWARD -s 192.168.56.10\/24 -j ACCEPT\nsudo iptables -A FORWARD -s 192.168.56.10\/24 -d 192.168.56.10\/24 -j ACCEPT\nsudo iptables -A FORWARD -j LOG\nsudo iptables -L -v<\/code><\/pre>\n\n\n\n<p>command\ub97c \uc785\ub825\ud558\uace0 \uc624\ud508\ud55c conf \ud30c\uc77c\uc5d0\uc11c net.ipv4.ip_forward = 1 \ubd80\ubd84\uc744 \ucc3e\uc544 \ud65c\uc131\ud654:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>sudo nano \/etc\/sysctl.conf<\/code><\/pre>\n\n\n\n<p>\uc124\uc815\ud55c iptables\uc744 \uc800\uc7a5:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>sudo sysctl -p \/etc\/sysctl.conf\nsudo netfilter-persistent save\nsudo cat \/etc\/iptables\/rules.v4<\/code><\/pre>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\uc124\uc815\ud55c ip\ub294 sandbox \ub0b4\uc5d0\uc11c static\uc73c\ub85c \ubcc0\uacbd<\/li>\n<\/ul>\n\n\n\n<p>5) \uacf5\uc720\ud3f4\ub354 \uc124\uc815 \ubc0f \uc2a4\ub0c5\uc0f7<\/p>\n\n\n\n<p>[Devices] &#8211; [Shared Folder] &#8211; [Shared Folders Settings&#8230;] \uc120\ud0dd \ud6c4<\/p>\n\n\n\n<p>\ub514\ub809\ud130\ub9ac \uacbd\ub85c\ub294 cuckoo \ud3f4\ub354\uc758 agent\ub85c \uc9c0\uc815, Auto-mount\u00b7Make-Permanent \uccb4\ud06c:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>.cuckoo \ud3f4\ub354\uac00 \ubcf4\uc774\uc9c0 \uc54a\uc744\uacbd\uc6b0 ctrl + H. cuckoo \uba85\ub839 \uc2e4\ud589\ud574\uc57c \uc0dd\uc131\ub418\ub294 \ud3f4\ub354.<\/li>\n<\/ul>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/blog.kakaocdn.net\/dna\/cQFJOH\/btscmKRyK0G\/AAAAAAAAAAAAAAAAAAAAAPbvhaIbupsF_EjoBIgxYyGa6dk5tTx9x4K0mJOStvXL\/img.png?credential=yqXZFxpELC7KVnFOS48ylbz2pIh7yKj8&amp;expires=1753973999&amp;allow_ip=&amp;allow_referer=&amp;signature=L4Cv8Uoj4%2FdMVDpDpjXi4O%2F2jiA%3D\" alt=\"\"\/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>VirtualBox\uc758 \uc0c1\ub2e8 \uba54\ub274 [Devices] &#8211; [Insert Guest Additions CD image&#8230;]<\/p>\n\n\n\n<p>\ub2e4\uc74c\uacfc \uac19\uc774 \ub098\ud0c0\ub098\uba74 \ud574\ub2f9 \ud30c\uc77c \ub2e4\uc6b4\ub85c\ub4dc \ud6c4 insert :<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/blog.kakaocdn.net\/dna\/bu2Y8Q\/btsbUQsrFNE\/AAAAAAAAAAAAAAAAAAAAACvtd81DEMh7Pj9lQ2Z0KSKvOec3i-wnE3IWoMwEa3dr\/img.png?credential=yqXZFxpELC7KVnFOS48ylbz2pIh7yKj8&amp;expires=1753973999&amp;allow_ip=&amp;allow_referer=&amp;signature=PvYOGkbto6Cn9RYYzHjkkHpUwp0%3D\" alt=\"\"\/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>CD \ub4dc\ub77c\uc774\ube0c\uc5d0\uc11c VirtualBox Guest Additions \uc124\uce58:<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/blog.kakaocdn.net\/dna\/cFNN4e\/btsbVe7KzgK\/AAAAAAAAAAAAAAAAAAAAAPf14A-YWghcQVO0i436BXYKsFg7sVWja2TyfV-LNhap\/img.png?credential=yqXZFxpELC7KVnFOS48ylbz2pIh7yKj8&amp;expires=1753973999&amp;allow_ip=&amp;allow_referer=&amp;signature=rSABjUPhbXM%2FmkTxfcmImTxkEto%3D\" alt=\"\"\/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>\uc7ac\ubd80\ud305 \ud6c4 \ub124\ud2b8\uc6cc\ud06c\uc5d0\uc11c \uacf5\uc720\ud3f4\ub354\uc758 \uc774\ub984\uc774 \ubcc0\uacbd\ub418\uba74 \uacf5\uc720\ud3f4\ub354 \uc124\uc815 \uc644\ub8cc.<\/p>\n\n\n\n<p>agent.py \ud30c\uc77c\uc744 \ubc14\ud0d5\ud654\uba74\uc73c\ub85c \ubcf5\uc0ac\ud558\uc5ec \uc2e4\ud589:<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/blog.kakaocdn.net\/dna\/QQkP3\/btsbTUIJvm1\/AAAAAAAAAAAAAAAAAAAAAPixXTPHOC3xyD2rD__ewMOv9MrtFWtvldaORVioXENi\/img.png?credential=yqXZFxpELC7KVnFOS48ylbz2pIh7yKj8&amp;expires=1753973999&amp;allow_ip=&amp;allow_referer=&amp;signature=XxZbsvOTqTO0ZIEFrNLNOT1%2FhZY%3D\" alt=\"\"\/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>ubuntu\uc5d0\uc11c \ub2e4\uc74c\uacfc \uac19\uc740 command \uc2e4\ud589\ud558\uc5ec \uc2a4\ub0c5\uc0f7 \uc124\uc815:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>VBoxManage snapshot \"cuckoo1\" take \"Snapshot1\" --pause\nVBoxManage controlvm \"cuckoo1\" poweroff\nVBoxManage snapshot \"cuckoo1\" restorecurrent<\/code><\/pre>\n\n\n\n<ol start=\"4\" class=\"wp-block-list\">\n<li>\uc6f9 \ub370\uc774\ud130\ubca0\uc774\uc2a4 \uad6c\uc131<\/li>\n<\/ol>\n\n\n\n<p>1) mongodb<\/p>\n\n\n\n<p>\ub2e4\uc74c command\ub97c \ud1b5\ud574 mongodb public key\ub97c \uac00\uc838\uc624\uae30:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>wget -qO - https:\/\/www.mongodb.org\/static\/pgp\/server-4.4.asc | sudo apt-key add -<\/code><\/pre>\n\n\n\n<p>mongodb \uc124\uce58:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>echo \"deb &#91; arch=amd64,arm64 ] https:\/\/repo.mongodb.org\/apt\/ubuntu focal\/mongodb-org\/4.4 multiverse\" | sudo tee \/etc\/apt\/sources.list.d\/mongodb-org-4.4.list\nsudo apt-get update\nsudo apt-get install -y mongodb-org<\/code><\/pre>\n\n\n\n<p>\u203b libssl1.1\ub85c \uc778\ud574 \uc5d0\ub7ec \ubc1c\uc0dd\uc2dc \ucc38\uace0:<\/p>\n\n\n\n<figure class=\"wp-block-embed\"><div class=\"wp-block-embed__wrapper\">\nhttps:\/\/jihyun-dev.tistory.com\/3\n<\/div><\/figure>\n\n\n\n<p><a href=\"https:\/\/jihyun-dev.tistory.com\/3\">Mongodb error: The following packages have umet dependencies<br>\n\uc6b0\ubd84\ud22c\uc5d0\uc11c mongodb \uc124\uce58\ud558\uae30 \uc704\ud574 \ub2e4\uc74c\uacfc \uac19\uc774 \uc785\ub825\ud588\uc744 \ub54c $ sudo apt-get install -y mongodb-org \ud574\ub2f9 \uc624\ub958\uac00 \ubc1c\uc0dd\ud558\ub294 \uacbd\uc6b0\uac00 \uc788\ub2e4. The following packages have unmet dependencies: mongodb-org-mongos : Depends: libssl1.1 (&gt;=<br>\njihyun-dev.tistory.com<\/a><\/p>\n\n\n\n<p>mongodb \ud65c\uc131\ud654 \ubc0f \uc2e4\ud589:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>sudo service mongod start\nsudo systemctl enable mongod.service<\/code><\/pre>\n\n\n\n<ol start=\"5\" class=\"wp-block-list\">\n<li>cuckoo \uc124\uc815 \ubc0f \uc2e4\ud589<\/li>\n<\/ol>\n\n\n\n<p>1) conf \ud30c\uc77c \uc124\uc815<\/p>\n\n\n\n<p>\ub2e4\uc74c command\ub97c \ud1b5\ud574 cuckoo,conf \ud30c\uc77c\uc744 \uc218\uc815:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>sudo nano .cuckoo\/conf\/cuckoo.conf<\/code><\/pre>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/blog.kakaocdn.net\/dna\/yjuc1\/btscfDsZ86k\/AAAAAAAAAAAAAAAAAAAAAOlbj7niGAi4LPD6yOFW779wjr3r2I1inHr9y7aAI3vT\/img.png?credential=yqXZFxpELC7KVnFOS48ylbz2pIh7yKj8&amp;expires=1753973999&amp;allow_ip=&amp;allow_referer=&amp;signature=HuZXGco48CvOjMAP6MUFbA4vGHM%3D\" alt=\"\"\/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>[resultserver]\uc758 ip\uc8fc\uc18c\ub97c \uc218\uc815. port\ub294 \uae30\ubcf8\uac12 2042\uc774\ub098 \ud544\uc694\uc2dc \uc218\uc815.<\/p>\n\n\n\n<p>reporting.conf \ud30c\uc77c \uc218\uc815:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>sudo nano .cuckoo\/conf\/reporting.conf<\/code><\/pre>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/blog.kakaocdn.net\/dna\/bDCHR4\/btsb2T4mMmg\/AAAAAAAAAAAAAAAAAAAAAATfEEFLlKGOD6eDN4VPvvrz4V6OVJChLGtGqUKhjCss\/img.png?credential=yqXZFxpELC7KVnFOS48ylbz2pIh7yKj8&amp;expires=1753973999&amp;allow_ip=&amp;allow_referer=&amp;signature=7uddD%2BEmJVT0hMZ19ZxWKUWalTk%3D\" alt=\"\"\/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>[mongodb]\uc758 enabled \uac12\uc744 yes\ub85c \ubcc0\uacbd\ud558\uc5ec db \uc5f0\uacb0. host \uc8fc\uc18c\uac12\uc740 cuckoo db\uc758 ip \uc8fc\uc18c\ub97c \uc785\ub825.<\/p>\n\n\n\n<p>db\uc5d0 \uc0dd\uc131\ud55c \uc0ac\uc6a9\uc790\uac00 \uc788\ub294 \uacbd\uc6b0 \uc0ac\uc6a9\uc790 \uacc4\uc815\uacfc \ube44\ubc00\ubc88\ud638 \uac12 \uc218\uc815<\/p>\n\n\n\n<p>virtualbox.conf \ud30c\uc77c \uc218\uc815:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>sudo nano .cuckoo\/conf\/virtualbox.conf<\/code><\/pre>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/blog.kakaocdn.net\/dna\/uXEik\/btscwLi2vr8\/AAAAAAAAAAAAAAAAAAAAAE9ulqve1-pltaQkzzLpvEHoMZldi2MBFqdywABuPYE3\/img.png?credential=yqXZFxpELC7KVnFOS48ylbz2pIh7yKj8&amp;expires=1753973999&amp;allow_ip=&amp;allow_referer=&amp;signature=Zu2bQtV3VGBrDCYdTVYmmUqJLd8%3D\" alt=\"\"\/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>mode\uc758 \uae30\ubcf8\uac12\uc740 headless. gui\ub85c \uc218\uc815.<\/p>\n\n\n\n<p>interface\uc640 machines\uc758 \uc774\ub984 \ud655\uc778.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/blog.kakaocdn.net\/dna\/dwM4R6\/btscwFb6sXV\/AAAAAAAAAAAAAAAAAAAAALRIe7PfdDccV4VoxHuj__qCcZFgOnYtD7efTcYd6Jz0\/img.png?credential=yqXZFxpELC7KVnFOS48ylbz2pIh7yKj8&amp;expires=1753973999&amp;allow_ip=&amp;allow_referer=&amp;signature=yesw2yHVxzlBYFf8uMaBgzWmRNE%3D\" alt=\"\"\/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>\uc0dd\uc131\ud55c \uc0cc\ub4dc\ubc15\uc2a4 cuckoo1\uc758 \uc124\uc815 \ud655\uc778 \ubc0f ip \uc218\uc815.<\/p>\n\n\n\n<p>\u2757tcpdump directory issue update\ub85c \uacbd\ub85c\uac00 usr\/bin\/tcpdump\uc5d0 \uc874\uc7ac\ud558\ub294\uacbd\uc6b0<\/p>\n\n\n\n<p>\uae30\uc874\uc758 cuckoo \uc124\uc815\uc5d0\uc11c\ub294 tcpdump\ub97c \ucc3e\uc9c0 \ubabb\ud574 \uc5d0\ub7ec \ubc1c\uc0dd\ud558\ubbc0\ub85c \uacbd\ub85c \uc218\uc815\ubc14\ub78c.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/blog.kakaocdn.net\/dna\/7u8jm\/btscwFpBMWc\/AAAAAAAAAAAAAAAAAAAAADWCz_mg8RIQkGzKv25s6SS3ZV2Sz-V09LULmqwnzemZ\/img.png?credential=yqXZFxpELC7KVnFOS48ylbz2pIh7yKj8&amp;expires=1753973999&amp;allow_ip=&amp;allow_referer=&amp;signature=O%2FKSXPmr1sJiM7nzNMl14CcEtCc%3D\" alt=\"\"\/><\/figure>\n\n\n\n<p><\/p>\n\n\n\n<p>2) cuckoo \uc11c\ubc84 \uc2e4\ud589<\/p>\n\n\n\n<p>\ub2e4\uc74c command\ub97c \ud1b5\ud574 cuckoo \uc11c\ubc84 \uc2e4\ud589:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>cuckoo -d\ncuckoo web -H 192.168.159.134 -p 8000<\/code><\/pre>\n\n\n\n<p>\uc8fc\uc18c \uc811\uc18d \uc2dc \ub2e4\uc74c\uacfc \uac19\uc740 UI:<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img decoding=\"async\" src=\"https:\/\/blog.kakaocdn.net\/dna\/czpeJX\/btsb6ZpGazf\/AAAAAAAAAAAAAAAAAAAAAPvHRhlhNdUZP9yDJwXtiq9aUcLwpzyMdXWlJGTtJlqs\/img.png?credential=yqXZFxpELC7KVnFOS48ylbz2pIh7yKj8&amp;expires=1753973999&amp;allow_ip=&amp;allow_referer=&amp;signature=O%2FMK1qJZcK50dyb3smy%2Fn7WH43M%3D\" alt=\"\"\/><\/figure>\n\n\n\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Cuckoo Sandbox \uad6c\ucd95 \uc21c\uc11c: \ud83c\udf1f&nbsp;\uae30\ubcf8 \ud328\ud0a4\uc9c0 \ubc0f \ub77c\uc774\ube0c\ub7ec\ub9ac \uc124\uce58 \ud83c\udf1f&nbsp;cuckoo \ucf54\uc5b4 \uc124\uce58 \ud83c\udf1f&nbsp;sandbox \uad6c\uc131 \ud83c\udf1f&nbsp;cuckoo \uc6f9&nbsp;\ub370\uc774\ud130\ubca0\uc774\uc2a4 \uad6c\uc131 \ud83c\udf1f&nbsp;cuckoo \uc124\uc815 \ubc0f \uc2e4\ud589 1) \uae30\ubcf8 \ud328\ud0a4\uc9c0 \ubc0f \ub77c\uc774\ube0c\ub7ec\ub9ac \uc124\uce58 \ud604\uc7ac \ubc84\uc804 22.04 \uae30\uc900\uc73c\ub85c \uad6c\ucd95\uc2dc python2.7, python3 \ud63c\uc6a9 \uc124\uce58 \ud544\uc694. pip 2\ubc84\uc804\uc744 \uc124\uce58\ud558\uae30 \uc704\ud574 \ub2e4\uc74c\uacfc \uac19\uc740 command: \uc720\ub2c8\ubc84\uc2a4 \ub9ac\ud3ec\uc9c0\ud1a0\ub9ac \ud65c\uc131\ud654 \ud6c4, curl \uc2a4\ud06c\ub9bd\ud2b8\ub85c \ub2e4\uc6b4\ub85c\ub4dc\ud558\uc5ec pip\ub97c \uc124\uce58. \ub098\uba38\uc9c0 \ub77c\uc774\ube0c\ub7ec\ub9ac [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[51],"tags":[143,141,140],"class_list":["post-103","post","type-post","status-publish","format-standard","hentry","category-security","tag-cuckoo-sandbox","tag-security","tag-140"],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/hed-g.me\/index.php?rest_route=\/wp\/v2\/posts\/103","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/hed-g.me\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/hed-g.me\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/hed-g.me\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/hed-g.me\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=103"}],"version-history":[{"count":1,"href":"https:\/\/hed-g.me\/index.php?rest_route=\/wp\/v2\/posts\/103\/revisions"}],"predecessor-version":[{"id":157,"href":"https:\/\/hed-g.me\/index.php?rest_route=\/wp\/v2\/posts\/103\/revisions\/157"}],"wp:attachment":[{"href":"https:\/\/hed-g.me\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=103"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/hed-g.me\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=103"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/hed-g.me\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=103"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}