SYMBOL INDEX (1903 symbols across 216 files) FILE: agent/agent.py class Agent (line 28) | class Agent(object): method __init__ (line 41) | def __init__(self): method _initialize (line 52) | def _initialize(self): method get_status (line 78) | def get_status(self): method get_error (line 86) | def get_error(self): method add_malware (line 94) | def add_malware(self, data, name): method add_config (line 126) | def add_config(self, options): method add_analyzer (line 160) | def add_analyzer(self, data): method execute (line 183) | def execute(self): method complete (line 203) | def complete(self, success=True, error="", results=""): function FakeGetFQDN (line 229) | def FakeGetFQDN(name=""): FILE: analyzer/android/analyzer.py class Analyzer (line 25) | class Analyzer(object): method __init__ (line 26) | def __init__(self): method complete (line 30) | def complete(self): method get_options (line 34) | def get_options(self): method prepare (line 65) | def prepare(self): method run (line 81) | def run(self): FILE: analyzer/android/lib/api/adb.py function install_sample (line 14) | def install_sample(path): function execute_sample (line 26) | def execute_sample(package, activity): function dump_droidmon_logs (line 41) | def dump_droidmon_logs(package): function execute_browser (line 65) | def execute_browser(url): function take_screenshot (line 80) | def take_screenshot(filename): FILE: analyzer/android/lib/api/screenshot.py class Screenshot (line 21) | class Screenshot: method have_pil (line 24) | def have_pil(self): method equal_old (line 30) | def equal_old(self, img1, img2): method equal (line 52) | def equal(self, img1, img2): FILE: analyzer/android/lib/common/abstracts.py class Package (line 6) | class Package(object): method __init__ (line 9) | def __init__(self, options={}): method set_pids (line 14) | def set_pids(self, pids): method start (line 20) | def start(self): method check (line 27) | def check(self): method finish (line 33) | def finish(self): class Auxiliary (line 39) | class Auxiliary(object): FILE: analyzer/android/lib/common/constants.py function _rand_string (line 10) | def _rand_string(a, b): FILE: analyzer/android/lib/common/exceptions.py class CuckooError (line 6) | class CuckooError(Exception): class CuckooPackageError (line 9) | class CuckooPackageError(Exception): FILE: analyzer/android/lib/common/results.py function upload_to_host (line 16) | def upload_to_host(file_path, dump_path): class NetlogConnection (line 34) | class NetlogConnection(object): method __init__ (line 35) | def __init__(self, proto=""): method connect (line 41) | def connect(self): method send (line 54) | def send(self, data, retry=True): method close (line 73) | def close(self): class NetlogFile (line 79) | class NetlogFile(NetlogConnection): method __init__ (line 80) | def __init__(self, filepath): class NetlogHandler (line 85) | class NetlogHandler(logging.Handler, NetlogConnection): method __init__ (line 86) | def __init__(self): method emit (line 91) | def emit(self, record): FILE: analyzer/android/lib/common/utils.py function send_file (line 8) | def send_file(name, data): FILE: analyzer/android/lib/core/config.py class Config (line 8) | class Config: method __init__ (line 9) | def __init__(self, cfg): FILE: analyzer/android/lib/core/packages.py function choose_package (line 6) | def choose_package(file_type, file_name): FILE: analyzer/android/lib/core/startup.py function create_folders (line 14) | def create_folders(): function init_logging (line 25) | def init_logging(): FILE: analyzer/android/modules/auxiliary/screenshots.py class Screenshots (line 18) | class Screenshots(Auxiliary, Thread): method __init__ (line 21) | def __init__(self): method stop (line 25) | def stop(self): method run (line 29) | def run(self): FILE: analyzer/android/modules/packages/apk.py class Apk (line 13) | class Apk(Package): method __init__ (line 15) | def __init__(self, options={}): method start (line 20) | def start(self, path): method check (line 24) | def check(self): method finish (line 27) | def finish(self): FILE: analyzer/android/modules/packages/default_browser.py class default_browser (line 9) | class default_browser(Package): method __init__ (line 11) | def __init__(self, options={}): method start (line 14) | def start(self, target): method check (line 17) | def check(self): method finish (line 20) | def finish(self): FILE: analyzer/darwin/analyzer.py class Macalyzer (line 21) | class Macalyzer(object): method __init__ (line 31) | def __init__(self, host, configuration=None): method bootstrap (line 35) | def bootstrap(self): method run (line 40) | def run(self): method _complete (line 56) | def _complete(self): method _detect_target (line 65) | def _detect_target(self): method _setup_analysis_package (line 71) | def _setup_analysis_package(self): method _analysis (line 92) | def _analysis(self, package): method _upload_file (line 96) | def _upload_file(self, filepath): function _create_result_folders (line 116) | def _create_result_folders(): function _setup_logging (line 126) | def _setup_logging(): FILE: analyzer/darwin/lib/common/config.py class Config (line 7) | class Config: method __init__ (line 8) | def __init__(self, cfg): method get_options (line 27) | def get_options(self): FILE: analyzer/darwin/lib/common/hashing.py function hash_file (line 8) | def hash_file(method, path): FILE: analyzer/darwin/lib/common/rand.py function random_string (line 4) | def random_string(minimum, maximum=None): function random_integer (line 11) | def random_integer(digits): FILE: analyzer/darwin/lib/common/results.py function upload_to_host (line 14) | def upload_to_host(file_path, dump_path): class NetlogConnection (line 32) | class NetlogConnection(object): method __init__ (line 33) | def __init__(self, proto=""): method connect (line 39) | def connect(self): method send (line 55) | def send(self, data, retry=True): method close (line 73) | def close(self): class NetlogFile (line 80) | class NetlogFile(NetlogConnection): method __init__ (line 81) | def __init__(self, filepath): class NetlogHandler (line 86) | class NetlogHandler(logging.Handler, NetlogConnection): method __init__ (line 87) | def __init__(self): method emit (line 92) | def emit(self, record): FILE: analyzer/darwin/lib/core/filetimes.py function dt_to_filetime (line 36) | def dt_to_filetime(dt, delta_from_utc): FILE: analyzer/darwin/lib/core/host.py class CuckooHost (line 17) | class CuckooHost(object): method __init__ (line 41) | def __init__(self, host_ip, host_port): method send_api (line 46) | def send_api(self, thing): method _create_socket (line 89) | def _create_socket(self): method _send_api_description (line 97) | def _send_api_description(self, lookup_idx, thing): method _send_new_process (line 122) | def _send_new_process(self, thing): method _prepare_args (line 163) | def _prepare_args(self, thing): method _verify_is_success (line 171) | def _verify_is_success(self, thing): method _api_category (line 184) | def _api_category(self, thing): method _api_args_description (line 190) | def _api_args_description(self, thing): method _load_human_readable_info (line 203) | def _load_human_readable_info(self): function _proc_name_from_pid (line 214) | def _proc_name_from_pid(pid): function _filetime_from_timestamp (line 225) | def _filetime_from_timestamp(timestamp): function _description_file_path (line 233) | def _description_file_path(): FILE: analyzer/darwin/lib/core/osx.py function set_wallclock (line 9) | def set_wallclock(clock_str, **kwargs): FILE: analyzer/darwin/lib/core/packages.py function choose_package_class (line 12) | def choose_package_class(file_type, file_name, suggestion=None): function _found_target_class (line 40) | def _found_target_class(module, name): function _guess_package_name (line 48) | def _guess_package_name(file_type, file_name): class Package (line 61) | class Package(object): method __init__ (line 67) | def __init__(self, target, host, **kwargs): method prepare (line 84) | def prepare(self): method start (line 88) | def start(self): method apicalls_analysis (line 99) | def apicalls_analysis(self): method handle_files (line 111) | def handle_files(self, call): method open_file (line 127) | def open_file(self, filepath): method move_file (line 130) | def move_file(self, frompath, topath): method copy_file (line 136) | def copy_file(self, frompath, topath): method remove_file (line 140) | def remove_file(self, filepath): function _string_to_bool (line 145) | def _string_to_bool(raw): FILE: analyzer/darwin/lib/dtrace/apicalls.py function apicalls (line 19) | def apicalls(target, **kwargs): function _dtrace_command_line (line 50) | def _dtrace_command_line(target, **kwargs): function _parse_entry (line 81) | def _parse_entry(entry): function _stringify_args (line 95) | def _stringify_args(args): FILE: analyzer/darwin/lib/dtrace/autoprobes.py function generate_probes (line 11) | def generate_probes(definitions, output_path, overwrite=True): function read_definitions (line 26) | def read_definitions(fromfile): function read_types (line 35) | def read_types(infile): function dump_probes (line 40) | def dump_probes(probes, tofile): function probe_from_definition (line 48) | def probe_from_definition(definition, types): function entry_probe_from_definition (line 60) | def entry_probe_from_definition(df): function return_probe_from_definition (line 70) | def return_probe_from_definition(df, types): function typedefs_for_custom_structs (line 88) | def typedefs_for_custom_structs(defs, types): function arguments_section (line 119) | def arguments_section(args, types): function arguments_format_string (line 129) | def arguments_format_string(args, types): function retval_section (line 137) | def retval_section(retval_type, types): function printf_format_for_type (line 144) | def printf_format_for_type(t, types): function printf_format_for_struct (line 154) | def printf_format_for_struct(t, types): function serialize_argument_at_idx (line 167) | def serialize_argument_at_idx(idx, all_args, accessor, types): function serialize_type (line 173) | def serialize_type(name, accessor, types): function serialize_atomic_type (line 185) | def serialize_atomic_type(argtype, cast, accessor): function serialize_struct_type (line 199) | def serialize_struct_type(struct_type, accessor, types): function serialize_type_with_template (line 215) | def serialize_type_with_template(oftype, accessor, types): function dereference_type (line 225) | def dereference_type(t): function type_description (line 235) | def type_description(name, types): function push_on_stack_section (line 242) | def push_on_stack_section(args): function pop_from_stack_section (line 255) | def pop_from_stack_section(args): FILE: analyzer/darwin/lib/dtrace/common.py function sanitize_path (line 9) | def sanitize_path(raw_path): function path_for_script (line 13) | def path_for_script(script): function current_directory (line 17) | def current_directory(): function filelines (line 20) | def filelines(source_file): FILE: analyzer/darwin/lib/dtrace/dtruss.py function dtruss (line 18) | def dtruss(target, **kwargs): function _parse_syscall (line 86) | def _parse_syscall(string): FILE: analyzer/darwin/lib/dtrace/ipconnections.py function ipconnections (line 17) | def ipconnections(target, **kwargs): function _parse_single_entry (line 55) | def _parse_single_entry(entry): FILE: analyzer/darwin/modules/packages/app.py class App (line 10) | class App(Package): method prepare (line 13) | def prepare(self): FILE: analyzer/darwin/modules/packages/bash.py class Bash (line 8) | class Bash(Package): method prepare (line 11) | def prepare(self): FILE: analyzer/darwin/modules/packages/macho.py class Macho (line 9) | class Macho(Package): method prepare (line 12) | def prepare(self): FILE: analyzer/darwin/modules/packages/zip.py class Zip (line 17) | class Zip(Package): method prepare (line 21) | def prepare(self): method start (line 58) | def start(self): method _extract (line 65) | def _extract(self, filename, password): method _extract_nested_archives (line 86) | def _extract_nested_archives(self, archive, where, password): function _prepare_archive_at_path (line 92) | def _prepare_archive_at_path(filename): function _is_overwritten (line 116) | def _is_overwritten(zip_path): function _random_extension (line 125) | def _random_extension(length=5): function _fileinfo (line 129) | def _fileinfo(target): FILE: analyzer/linux/analyzer.py function add_pids (line 33) | def add_pids(pids): function dump_files (line 44) | def dump_files(): class Analyzer (line 49) | class Analyzer: method __init__ (line 56) | def __init__(self): method prepare (line 60) | def prepare(self): method complete (line 86) | def complete(self): method run (line 94) | def run(self): FILE: analyzer/linux/lib/api/process.py class Process (line 11) | class Process: method __init__ (line 16) | def __init__(self, pid=0): method is_alive (line 21) | def is_alive(self): method get_parent_pid (line 28) | def get_parent_pid(self): method get_proc_status (line 31) | def get_proc_status(self): method execute (line 40) | def execute(self, cmd): FILE: analyzer/linux/lib/common/abstracts.py class Package (line 8) | class Package(object): method __init__ (line 12) | def __init__(self, options={}): method set_pids (line 17) | def set_pids(self, pids): method start (line 23) | def start(self): method check (line 29) | def check(self): method execute (line 33) | def execute(self, cmd): method package_files (line 46) | def package_files(self): method finish (line 53) | def finish(self): method get_pids (line 65) | def get_pids(self): class Auxiliary (line 68) | class Auxiliary(object): method get_pids (line 71) | def get_pids(self): FILE: analyzer/linux/lib/common/exceptions.py class CuckooError (line 5) | class CuckooError(Exception): class CuckooPackageError (line 8) | class CuckooPackageError(Exception): FILE: analyzer/linux/lib/common/hashing.py function sha256_file (line 9) | def sha256_file(path): function hash_file (line 12) | def hash_file(method, path): FILE: analyzer/linux/lib/common/results.py function upload_to_host (line 15) | def upload_to_host(file_path, dump_path): class NetlogConnection (line 33) | class NetlogConnection(object): method __init__ (line 34) | def __init__(self, proto=""): method connect (line 40) | def connect(self): method send (line 56) | def send(self, data, retry=True): method close (line 74) | def close(self): class NetlogFile (line 81) | class NetlogFile(NetlogConnection): method __init__ (line 82) | def __init__(self, filepath): class NetlogHandler (line 87) | class NetlogHandler(logging.Handler, NetlogConnection): method __init__ (line 88) | def __init__(self): method emit (line 93) | def emit(self, record): FILE: analyzer/linux/lib/common/utils.py function random_string (line 8) | def random_string(minimum, maximum=None): function random_integer (line 15) | def random_integer(digits): FILE: analyzer/linux/lib/core/config.py class Config (line 7) | class Config: method __init__ (line 8) | def __init__(self, cfg): method get (line 27) | def get(self, name, default=None): method get_options (line 32) | def get_options(self): FILE: analyzer/linux/lib/core/startup.py function create_folders (line 13) | def create_folders(): function init_logging (line 24) | def init_logging(): FILE: analyzer/linux/modules/auxiliary/lkm.py class LKM (line 15) | class LKM(Auxiliary): method __init__ (line 18) | def __init__(self): method start (line 22) | def start(self): method get_pids (line 42) | def get_pids(self): method stop (line 62) | def stop(self): FILE: analyzer/linux/modules/auxiliary/stap.py class STAP (line 17) | class STAP(Auxiliary): method __init__ (line 21) | def __init__(self): method start (line 25) | def start(self): method start_strace (line 67) | def start_strace(self): method get_pids (line 76) | def get_pids(self): method stop (line 81) | def stop(self): FILE: analyzer/linux/modules/packages/generic.py class Generic (line 9) | class Generic(Package): method __init__ (line 13) | def __init__(self, *args, **kwargs): method start (line 17) | def start(self, path): method get_pids (line 21) | def get_pids(self): FILE: analyzer/windows/analyzer.py class Files (line 42) | class Files(object): method __init__ (line 45) | def __init__(self): method is_protected_filename (line 50) | def is_protected_filename(self, file_name): method add_pid (line 56) | def add_pid(self, filepath, pid, verbose=True): method add_file (line 65) | def add_file(self, filepath, pid=None): method dump_file (line 77) | def dump_file(self, filepath): method delete_file (line 109) | def delete_file(self, filepath, pid=None): method move_file (line 118) | def move_file(self, oldfilepath, newfilepath, pid=None): method dump_files (line 126) | def dump_files(self): class ProcessList (line 131) | class ProcessList(object): method __init__ (line 132) | def __init__(self): method add_pid (line 136) | def add_pid(self, pid, track=True): method add_pids (line 148) | def add_pids(self, pids): method has_pid (line 156) | def has_pid(self, pid, notrack=True): method remove_pid (line 166) | def remove_pid(self, pid): class CommandPipeHandler (line 174) | class CommandPipeHandler(object): method __init__ (line 182) | def __init__(self, analyzer): method _handle_debug (line 186) | def _handle_debug(self, data): method _handle_info (line 190) | def _handle_info(self, data): method _handle_warning (line 194) | def _handle_warning(self, data): method _handle_critical (line 198) | def _handle_critical(self, data): method _handle_loaded (line 202) | def _handle_loaded(self, data): method _handle_getpids (line 221) | def _handle_getpids(self, data): method _inject_process (line 225) | def _inject_process(self, process_id, thread_id, mode): method _handle_process (line 286) | def _handle_process(self, data): method _handle_process2 (line 296) | def _handle_process2(self, data): method _handle_file_new (line 312) | def _handle_file_new(self, data): method _handle_file_del (line 316) | def _handle_file_del(self, data): method _handle_file_move (line 323) | def _handle_file_move(self, data): method _handle_kill (line 335) | def _handle_kill(self, data): method _handle_dumpmem (line 344) | def _handle_dumpmem(self, data): method _handle_dumpreqs (line 352) | def _handle_dumpreqs(self, data): method _handle_track (line 372) | def _handle_track(self, data): method dispatch (line 387) | def dispatch(self, data): class Analyzer (line 417) | class Analyzer(object): method __init__ (line 426) | def __init__(self): method get_pipe_path (line 442) | def get_pipe_path(self, name): method prepare (line 453) | def prepare(self): method stop (line 523) | def stop(self): method complete (line 529) | def complete(self): method run (line 541) | def run(self): FILE: analyzer/windows/lib/api/process.py function spCreateProcessW (line 27) | def spCreateProcessW(application_name, command_line, process_attributes, function subprocess_checkcall (line 97) | def subprocess_checkcall(args, env=None): function subprocess_checkoutput (line 103) | def subprocess_checkoutput(args, env=None): class Process (line 108) | class Process(object): method __init__ (line 118) | def __init__(self, pid=None, tid=None, process_name=None): method set_config (line 129) | def set_config(config): method get_system_info (line 133) | def get_system_info(self): method open_process (line 138) | def open_process(self): method open_thread (line 142) | def open_thread(self): method exit_code (line 146) | def exit_code(self): method get_filepath (line 158) | def get_filepath(self): method is_alive (line 190) | def is_alive(self): method get_parent_pid (line 196) | def get_parent_pid(self): method _encode_args (line 225) | def _encode_args(self, args): method is32bit (line 239) | def is32bit(self, pid=None, process_name=None, path=None): method execute (line 278) | def execute(self, path, args=None, dll=None, free=False, curdir=None, method terminate (line 402) | def terminate(self): method inject (line 418) | def inject(self, dll=None, apc=False, track=True, mode=None): method drop_config (line 486) | def drop_config(self, track=True, mode=None, trigger=None): method dump_memory (line 524) | def dump_memory(self, addr=None, length=None): FILE: analyzer/windows/lib/api/screenshot.py class Screenshot (line 22) | class Screenshot: method _draw_rectangle (line 25) | def _draw_rectangle(self, img, xy): method have_pil (line 35) | def have_pil(self): method equal (line 41) | def equal(self, img1, img2, skip_area=None): method take (line 75) | def take(self): FILE: analyzer/windows/lib/common/abstracts.py class Package (line 15) | class Package(object): method __init__ (line 20) | def __init__(self, options={}, analyzer=None): method set_pids (line 32) | def set_pids(self, pids): method start (line 38) | def start(self, target): method check (line 44) | def check(self): method enum_paths (line 48) | def enum_paths(self): method get_path (line 74) | def get_path(self, application): method get_path_glob (line 86) | def get_path_glob(self, application): method move_curdir (line 99) | def move_curdir(self, filepath): method init_regkeys (line 109) | def init_regkeys(self, regkeys): method execute (line 131) | def execute(self, path, args, mode=None, maximize=False, env=None, method package_files (line 171) | def package_files(self): method finish (line 178) | def finish(self): class Auxiliary (line 189) | class Auxiliary(object): method __init__ (line 190) | def __init__(self, options={}, analyzer=None): method init (line 194) | def init(self): method start (line 197) | def start(self): method stop (line 200) | def stop(self): FILE: analyzer/windows/lib/common/decide.py function dump_memory (line 8) | def dump_memory(pid): FILE: analyzer/windows/lib/common/defines.py class STARTUPINFO (line 109) | class STARTUPINFO(Structure): class PROCESS_INFORMATION (line 131) | class PROCESS_INFORMATION(Structure): class LUID (line 139) | class LUID(Structure): class LUID_AND_ATTRIBUTES (line 145) | class LUID_AND_ATTRIBUTES(Structure): class TOKEN_PRIVILEGES (line 151) | class TOKEN_PRIVILEGES(Structure): class MEMORY_BASIC_INFORMATION (line 157) | class MEMORY_BASIC_INFORMATION(Structure): class PROC_STRUCT (line 168) | class PROC_STRUCT(Structure): class SYSTEM_INFO_UNION (line 174) | class SYSTEM_INFO_UNION(Union): class SYSTEM_INFO (line 180) | class SYSTEM_INFO(Structure): class SYSTEMTIME (line 194) | class SYSTEMTIME(Structure): class UNICODE_STRING (line 207) | class UNICODE_STRING(Structure): FILE: analyzer/windows/lib/common/exceptions.py class CuckooError (line 6) | class CuckooError(Exception): class CuckooPackageError (line 9) | class CuckooPackageError(Exception): class CuckooDisableModule (line 12) | class CuckooDisableModule(CuckooError): FILE: analyzer/windows/lib/common/hashing.py function hash_file (line 9) | def hash_file(method, path): FILE: analyzer/windows/lib/common/rand.py function random_string (line 4) | def random_string(minimum, maximum=None): function random_integer (line 11) | def random_integer(digits): FILE: analyzer/windows/lib/common/registry.py function rename_regkey (line 59) | def rename_regkey(skey, ssubkey, dsubkey): function regkey_exists (line 82) | def regkey_exists(rootkey, subkey): function set_regkey (line 90) | def set_regkey(rootkey, subkey, name, type_, value): function set_regkey_full (line 112) | def set_regkey_full(regkey, type_, value): function del_regkey (line 124) | def del_regkey(rootkey, regkey): function query_value (line 127) | def query_value(rootkey, subkey, name): FILE: analyzer/windows/lib/common/results.py function upload_to_host (line 17) | def upload_to_host(file_path, dump_path, pids=[]): class NetlogConnection (line 36) | class NetlogConnection(object): method __init__ (line 37) | def __init__(self, proto=""): method connect (line 43) | def connect(self): method send (line 58) | def send(self, data, retry=True): method close (line 77) | def close(self): class NetlogFile (line 85) | class NetlogFile(NetlogConnection): method init (line 86) | def init(self, dump_path, filepath=None, pids=[]): class NetlogHandler (line 97) | class NetlogHandler(logging.Handler, NetlogConnection): method __init__ (line 98) | def __init__(self): method emit (line 103) | def emit(self, record): FILE: analyzer/windows/lib/core/config.py class Config (line 8) | class Config: method __init__ (line 9) | def __init__(self, cfg): method parse_options (line 34) | def parse_options(self, options): FILE: analyzer/windows/lib/core/driver.py class Driver (line 15) | class Driver(object): method __init__ (line 16) | def __init__(self, driver_name, install_name): method install (line 21) | def install(self): method copy_driver (line 33) | def copy_driver(self): method set_regkey (line 58) | def set_regkey(self, key, type_, value): method del_regkeys (line 65) | def del_regkeys(self): method load_driver (line 75) | def load_driver(self): FILE: analyzer/windows/lib/core/ioctl.py class Ioctl (line 23) | class Ioctl(object): method __init__ (line 24) | def __init__(self, pipepath): method invoke (line 27) | def invoke(self, ctlcode, value, outlength=0x1000): class Zer0m0nIoctl (line 61) | class Zer0m0nIoctl(Ioctl): method invoke (line 74) | def invoke(self, action, buf): method addpid (line 82) | def addpid(self, pid): method cmdpipe (line 85) | def cmdpipe(self, pipe): method channel (line 88) | def channel(self, pipe): method dumpmem (line 91) | def dumpmem(self, pid): method yarald (line 94) | def yarald(self, rulepath): method getpids (line 97) | def getpids(self): method hidepid (line 101) | def hidepid(self, pid): method dumpint (line 104) | def dumpint(self, ms): method resultserver (line 107) | def resultserver(self, ip, port): FILE: analyzer/windows/lib/core/packages.py function has_com_exports (line 6) | def has_com_exports(exports): function choose_package (line 20) | def choose_package(file_type, file_name, exports): FILE: analyzer/windows/lib/core/pipe.py class PipeForwarder (line 25) | class PipeForwarder(threading.Thread): method __init__ (line 31) | def __init__(self, pipe_handle, destination): method run (line 37) | def run(self): method stop (line 111) | def stop(self): class PipeDispatcher (line 114) | class PipeDispatcher(threading.Thread): method __init__ (line 118) | def __init__(self, pipe_handle, dispatcher): method _read_message (line 124) | def _read_message(self, buf): method run (line 142) | def run(self): method stop (line 161) | def stop(self): class PipeServer (line 164) | class PipeServer(threading.Thread): method __init__ (line 168) | def __init__(self, pipe_handler, pipe_name, message=False, **kwargs): method run (line 177) | def run(self): method stop (line 206) | def stop(self): function disconnect_pipes (line 215) | def disconnect_pipes(): FILE: analyzer/windows/lib/core/privileges.py function grant_privilege (line 12) | def grant_privilege(privilege): FILE: analyzer/windows/lib/core/startup.py function init_logging (line 15) | def init_logging(): function disconnect_logger (line 32) | def disconnect_logger(): function set_clock (line 36) | def set_clock(clock): FILE: analyzer/windows/modules/auxiliary/dbgview.py class DbgView (line 20) | class DbgView(Auxiliary): method start (line 22) | def start(self): method stop (line 45) | def stop(self): FILE: analyzer/windows/modules/auxiliary/disguise.py class Disguise (line 19) | class Disguise(Auxiliary): method change_productid (line 68) | def change_productid(self): method patch_scsi_identifiers (line 80) | def patch_scsi_identifiers(self): method patch_bios (line 103) | def patch_bios(self): method patch_acpi (line 109) | def patch_acpi(self): method patch_processor (line 141) | def patch_processor(self): method patch_manufacturer (line 157) | def patch_manufacturer(self): method patch_hdd_path (line 167) | def patch_hdd_path(self): method start (line 171) | def start(self): FILE: analyzer/windows/modules/auxiliary/dumptls.py class DumpTLSMasterSecrets (line 13) | class DumpTLSMasterSecrets(Auxiliary): method start (line 15) | def start(self): FILE: analyzer/windows/modules/auxiliary/human.py function click (line 24) | def click(hwnd): function foreach_child (line 29) | def foreach_child(hwnd, lparam): function get_office_window (line 106) | def get_office_window(hwnd, lparam): function foreach_window (line 117) | def foreach_window(hwnd, lparam): function move_mouse (line 124) | def move_mouse(): function click_mouse (line 136) | def click_mouse(): class Human (line 145) | class Human(threading.Thread, Auxiliary): method __init__ (line 148) | def __init__(self, options={}, analyzer=None): method stop (line 153) | def stop(self): method run (line 156) | def run(self): FILE: analyzer/windows/modules/auxiliary/installcert.py class InstallCertificate (line 14) | class InstallCertificate(Auxiliary): method start (line 18) | def start(self): FILE: analyzer/windows/modules/auxiliary/procmon.py class Procmon (line 13) | class Procmon(Auxiliary): method start (line 15) | def start(self): method stop (line 50) | def stop(self): FILE: analyzer/windows/modules/auxiliary/reboot.py class Reboot (line 14) | class Reboot(Auxiliary): method start (line 17) | def start(self): method _handle_regkey_written (line 34) | def _handle_regkey_written(self, event): method _handle_create_process (line 38) | def _handle_create_process(self, event): FILE: analyzer/windows/modules/auxiliary/recentfiles.py class RecentFiles (line 19) | class RecentFiles(Auxiliary): method get_path (line 33) | def get_path(self): method start (line 54) | def start(self): FILE: analyzer/windows/modules/auxiliary/screenshots.py class Screenshots (line 24) | class Screenshots(threading.Thread, Auxiliary): method __init__ (line 27) | def __init__(self, options={}, analyzer=None): method stop (line 32) | def stop(self): method run (line 36) | def run(self): FILE: analyzer/windows/modules/auxiliary/zer0m0n.py class LoadZer0m0n (line 15) | class LoadZer0m0n(Auxiliary): method start (line 18) | def start(self): FILE: analyzer/windows/modules/packages/applet.py class Applet (line 10) | class Applet(Package): method make_html (line 17) | def make_html(self, path, class_name): method start (line 33) | def start(self, path): FILE: analyzer/windows/modules/packages/bin.py class Shellcode (line 8) | class Shellcode(Package): method start (line 11) | def start(self, path): FILE: analyzer/windows/modules/packages/com.py class ComDll (line 10) | class ComDll(Package): method start (line 16) | def start(self, path): FILE: analyzer/windows/modules/packages/cpl.py class CPL (line 8) | class CPL(Package): method start (line 14) | def start(self, path): FILE: analyzer/windows/modules/packages/dll.py class Dll (line 12) | class Dll(Package): method start (line 18) | def start(self, path): FILE: analyzer/windows/modules/packages/doc.py class DOC (line 10) | class DOC(Package): method start (line 69) | def start(self, path): FILE: analyzer/windows/modules/packages/exe.py class Exe (line 11) | class Exe(Package): method start (line 14) | def start(self, path): FILE: analyzer/windows/modules/packages/ff.py class Firefox (line 8) | class Firefox(Package): method start (line 14) | def start(self, url): FILE: analyzer/windows/modules/packages/generic.py class Generic (line 9) | class Generic(Package): method start (line 17) | def start(self, path): FILE: analyzer/windows/modules/packages/hta.py class HTA (line 9) | class HTA(Package): method start (line 15) | def start(self, path): FILE: analyzer/windows/modules/packages/hwp.py class HWP (line 7) | class HWP(Package): method start (line 13) | def start(self, path): FILE: analyzer/windows/modules/packages/ie.py class IE (line 15) | class IE(Package): method setup_proxy (line 115) | def setup_proxy(self, proxy_host): method start (line 130) | def start(self, target): FILE: analyzer/windows/modules/packages/jar.py class Jar (line 8) | class Jar(Package): method start (line 14) | def start(self, path): FILE: analyzer/windows/modules/packages/js.py class Javascript (line 13) | class Javascript(Package): method start (line 19) | def start(self, path): FILE: analyzer/windows/modules/packages/jse.py class JScript (line 12) | class JScript(Package): method start (line 18) | def start(self, path): FILE: analyzer/windows/modules/packages/msi.py class Msi (line 8) | class Msi(Package): method start (line 15) | def start(self, path): FILE: analyzer/windows/modules/packages/pdf.py class PDF (line 15) | class PDF(Package): method start (line 58) | def start(self, path): FILE: analyzer/windows/modules/packages/ppt.py class PPT (line 9) | class PPT(Package): method start (line 58) | def start(self, path): FILE: analyzer/windows/modules/packages/ps1.py class PS1 (line 12) | class PS1(Package): method start (line 20) | def start(self, path): FILE: analyzer/windows/modules/packages/pub.py class PUB (line 11) | class PUB(Package): method start (line 67) | def start(self, path): FILE: analyzer/windows/modules/packages/python.py class Python (line 10) | class Python(Package): method start (line 23) | def start(self, path): FILE: analyzer/windows/modules/packages/reboot.py class Reboot (line 11) | class Reboot(Package): method _handle_create_process (line 14) | def _handle_create_process(self, filepath, command_line, source): method start (line 17) | def start(self, path): FILE: analyzer/windows/modules/packages/vbs.py class VBS (line 13) | class VBS(Package): method start (line 19) | def start(self, path): FILE: analyzer/windows/modules/packages/wsf.py class WSF (line 12) | class WSF(Package): method start (line 18) | def start(self, path): FILE: analyzer/windows/modules/packages/xls.py class XLS (line 10) | class XLS(Package): method start (line 59) | def start(self, path): FILE: analyzer/windows/modules/packages/zip.py class Zip (line 17) | class Zip(Package): method extract_zip (line 20) | def extract_zip(self, zip_path, extract_path, password): method is_overwritten (line 53) | def is_overwritten(self, zip_path): method get_infos (line 68) | def get_infos(self, zip_path): method start (line 79) | def start(self, path): FILE: cuckoo.py function cuckoo_init (line 38) | def cuckoo_init(quiet=False, debug=False, artwork=False, test=False, ml=... function cuckoo_main (line 92) | def cuckoo_main(max_analysis_count=0): FILE: data/html/js/functions.js function showHide (line 1) | function showHide(id, lbl) { FILE: data/src/binpackage/execsc.c function main (line 5) | int main (int argc, char ** argv) { FILE: distributed/distributed/api.py function list_machines (line 11) | def list_machines(url): function node_status (line 15) | def node_status(url): function submit_task (line 22) | def submit_task(url, task): function fetch_tasks (line 48) | def fetch_tasks(url, status): function store_report (line 53) | def store_report(url, task_id, report_format, dirpath): function delete_task (line 69) | def delete_task(url, task_id): function fetch_pcap (line 73) | def fetch_pcap(url, task_id, filepath): FILE: distributed/distributed/app.py function create_app (line 18) | def create_app(): FILE: distributed/distributed/db.py class Serializer (line 14) | class Serializer(object): method to_dict (line 16) | def to_dict(self): class StringList (line 22) | class StringList(db.TypeDecorator): method process_bind_param (line 26) | def process_bind_param(self, value, dialect): method process_result_value (line 29) | def process_result_value(self, value, dialect): class JsonType (line 32) | class JsonType(db.TypeDecorator): method process_bind_param (line 36) | def process_bind_param(self, value, dialect): method process_result_value (line 39) | def process_result_value(self, value, dialect): class Node (line 42) | class Node(db.Model): method __init__ (line 51) | def __init__(self, name, url, mode, enabled=True): class Machine (line 57) | class Machine(db.Model): method __init__ (line 65) | def __init__(self, name, platform, tags): class Task (line 70) | class Task(db.Model, Serializer): method __init__ (line 112) | def __init__(self, path=None, filename=None, package=None, timeout=None, class NodeStatus (line 135) | class NodeStatus(db.Model, Serializer): method __init__ (line 143) | def __init__(self, name, timestamp, status): class AlembicVersion (line 148) | class AlembicVersion(db.Model): method __init__ (line 153) | def __init__(self, version_num): FILE: distributed/distributed/exception.py class InvalidReport (line 5) | class InvalidReport(Exception): FILE: distributed/distributed/views/api.py function json_error (line 19) | def json_error(status_code, message, *args): function node_url (line 24) | def node_url(ip=None, url=None): function node_get (line 31) | def node_get(name=None): function node_post (line 67) | def node_post(): function node_put (line 97) | def node_put(name): function node_delete (line 116) | def node_delete(name): function task_list (line 126) | def task_list(): function task_post (line 186) | def task_post(): function task_get (line 217) | def task_get(task_id): function task_delete (line 244) | def task_delete(task_id): function report_get (line 273) | def report_get(task_id, report_format="json"): function pcap_get (line 292) | def pcap_get(task_id): function status_get (line 311) | def status_get(): FILE: distributed/instance.py function scheduler (line 20) | def scheduler(): function status_caching (line 48) | def status_caching(): function handle_node (line 76) | def handle_node(instance): FILE: distributed/migration/env.py function run_migrations (line 17) | def run_migrations(): FILE: distributed/migration/versions/151400d38e03_node_status_timestamp_index.py function upgrade (line 16) | def upgrade(): function downgrade (line 19) | def downgrade(): FILE: distributed/migration/versions/166078eb1311_change_node_id_to_name.py function upgrade (line 17) | def upgrade(): function downgrade (line 31) | def downgrade(): FILE: distributed/migration/versions/2aa59981b59d_node_task_not_unique.py function upgrade (line 16) | def upgrade(): function downgrade (line 20) | def downgrade(): FILE: distributed/migration/versions/37c08c9655bb_initial_database.py function upgrade (line 17) | def upgrade(): function downgrade (line 61) | def downgrade(): FILE: distributed/migration/versions/3cc1509b7fdc_node_status.py function upgrade (line 17) | def upgrade(): function downgrade (line 28) | def downgrade(): FILE: distributed/migration/versions/3d1d8fd2cdbb_timestamps.py function upgrade (line 17) | def upgrade(): function downgrade (line 23) | def downgrade(): FILE: distributed/migration/versions/4b86bc0d40aa_node_mode.py function upgrade (line 17) | def upgrade(): function downgrade (line 22) | def downgrade(): FILE: distributed/migration/versions/4d0a2590e997_node_task_index.py function upgrade (line 16) | def upgrade(): function downgrade (line 19) | def downgrade(): FILE: distributed/migration/versions/69ecf07a99b_finished_to_status.py function upgrade (line 17) | def upgrade(): function downgrade (line 26) | def downgrade(): FILE: examples/cuckooml.py function init_cuckooml (line 35) | def init_cuckooml(): class ML (line 174) | class ML(object): method __init__ (line 392) | def __init__(self, context="standalone"): method __log_bin (line 403) | def __log_bin(self, value, base=3): method __normalise_string (line 411) | def __normalise_string(self, string): method __simplify_string (line 418) | def __simplify_string(self, string, distinguish_voyels=False): method __n_grams (line 445) | def __n_grams(self, string, n=3, reorder=False): method __handle_string (line 465) | def __handle_string(self, string): method extract_labels (line 478) | def extract_labels(self, labels): method load_labels (line 482) | def load_labels(self, labels): method extract_simple_features (line 487) | def extract_simple_features(self, simple_features): method load_simple_features (line 507) | def load_simple_features(self, simple_features): method export_simple_dataset (line 513) | def export_simple_dataset(self, filename="simple_dataset.csv"): method simple_feature_category (line 527) | def simple_feature_category(self, category="properties"): method extract_features (line 537) | def extract_features(self, features, include_API_calls=False, include_... method load_features (line 691) | def load_features(self, features, include_API_calls=False, include_API... method export_dataset (line 696) | def export_dataset(self, filename="dataset.csv"): method feature_category (line 710) | def feature_category(self, category="static", complement=False): method filter_dataset (line 759) | def filter_dataset(self, dataset=None, feature_coverage=0.1, method detect_abnormal_behaviour (line 780) | def detect_abnormal_behaviour(self, count_dataset=None, figures=True): method visualise_data (line 829) | def visualise_data(self, data=None, labels=None, learning_rate=200, method save_dataset (line 853) | def save_dataset(self, filename="custom_dataset.csv", features=None, \ method cluster_dbscan (line 873) | def cluster_dbscan(self, features=None, eps=20.0, min_samples=5, dry=F... method cluster_hdbscan (line 906) | def cluster_hdbscan(self, features=None, min_samples=1, \ method save_clustering_results (line 948) | def save_clustering_results(self, loader, save_location=""): method anomaly_detection (line 976) | def anomaly_detection(self, samples=None, labels=None, method compare_sample (line 1025) | def compare_sample(self, sample, amend=False): method assess_clustering (line 1060) | def assess_clustering(self, clustering, labels, data=None, method clustering_label_distribution (line 1107) | def clustering_label_distribution(self, clustering, labels, plot=False): class Loader (line 1147) | class Loader(object): method __init__ (line 1150) | def __init__(self): method load_binaries (line 1155) | def load_binaries(self, directory): method update_binaries (line 1165) | def update_binaries(self, elements, root, locations): method save_binaries (line 1177) | def save_binaries(self, alternative_location=""): method get_labels (line 1196) | def get_labels(self): method get_features (line 1203) | def get_features(self): method get_simple_features (line 1210) | def get_simple_features(self): class Instance (line 1218) | class Instance(object): method __init__ (line 1223) | def __init__(self): method load_json (line 1234) | def load_json(self, json_file, name="unknown"): method label_sample (line 1262) | def label_sample(self, external_labels=None, label_type="family"): method update (line 1285) | def update(self, element, location): method save_json (line 1297) | def save_json(self, root_dir): method extract_features (line 1302) | def extract_features(self): method extract_features_static (line 1307) | def extract_features_static(self): method extract_features_dynamic (line 1316) | def extract_features_dynamic(self): method feature_static_metadata (line 1324) | def feature_static_metadata(self): method feature_static_signature (line 1351) | def feature_static_signature(self): method feature_static_heuristic (line 1367) | def feature_static_heuristic(self): method feature_static_packer (line 1372) | def feature_static_packer(self): method feature_static_pef (line 1378) | def feature_static_pef(self): method feature_static_imports (line 1415) | def feature_static_imports(self): method feature_dynamic_imports (line 1435) | def feature_dynamic_imports(self): method feature_dynamic_filesystem (line 1453) | def feature_dynamic_filesystem(self): method feature_dynamic_network (line 1527) | def feature_dynamic_network(self): method feature_dynamic_registry (line 1578) | def feature_dynamic_registry(self): method feature_dynamic_windowsapi (line 1589) | def feature_dynamic_windowsapi(self): method extract_basic_features (line 1600) | def extract_basic_features(self): FILE: examples/instance.py class Instance (line 13) | class Instance(object): method __init__ (line 18) | def __init__(self): method load_json (line 31) | def load_json(self, json_file, name="unknown"): method label_sample (line 60) | def label_sample(self, external_labels=None, label_type="family"): method update (line 87) | def update(self, element, location): method save_json (line 100) | def save_json(self, root_dir): method extract_features (line 106) | def extract_features(self): method extract_features_static (line 112) | def extract_features_static(self): method extract_features_dynamic (line 123) | def extract_features_dynamic(self): method feature_static_metadata (line 132) | def feature_static_metadata(self): method feature_static_signature (line 159) | def feature_static_signature(self): method feature_static_heuristic (line 175) | def feature_static_heuristic(self): method feature_static_packer (line 181) | def feature_static_packer(self): method feature_static_pef (line 188) | def feature_static_pef(self): method feature_static_imports (line 226) | def feature_static_imports(self): method feature_static_string (line 246) | def feature_static_string(self): method feature_dynamic_imports (line 251) | def feature_dynamic_imports(self): method feature_dynamic_filesystem (line 272) | def feature_dynamic_filesystem(self): method feature_dynamic_network (line 346) | def feature_dynamic_network(self): method feature_dynamic_registry (line 398) | def feature_dynamic_registry(self): method feature_dynamic_windowsapi (line 410) | def feature_dynamic_windowsapi(self): method extract_basic_features (line 422) | def extract_basic_features(self): FILE: examples/loader.py class Loader (line 12) | class Loader(object): method __init__ (line 14) | def __init__(self): method load_binaries_dir (line 20) | def load_binaries_dir(self, directory): method update_binaries (line 31) | def update_binaries(self, elements, root, locations): method save_binaries (line 44) | def save_binaries(self, alternative_location=""): method get_labels (line 64) | def get_labels(self): method get_features (line 72) | def get_features(self): method get_simple_features (line 80) | def get_simple_features(self): FILE: examples/ml.py class ML (line 23) | class ML(object): method __init__ (line 241) | def __init__(self, context="standalone"): method __log_bin (line 252) | def __log_bin(self, value, base=3): method __normalise_string (line 260) | def __normalise_string(self, string): method __simplify_string (line 267) | def __simplify_string(self, string, distinguish_voyels=False): method __n_grams (line 294) | def __n_grams(self, string, n=3, reorder=False): method __handle_string (line 314) | def __handle_string(self, string): method extract_labels (line 327) | def extract_labels(self, labels): method load_labels (line 331) | def load_labels(self, labels): method extract_simple_features (line 336) | def extract_simple_features(self, simple_features): method load_simple_features (line 356) | def load_simple_features(self, simple_features): method export_simple_dataset (line 362) | def export_simple_dataset(self, filename="simple_dataset.csv"): method simple_feature_category (line 376) | def simple_feature_category(self, category="properties"): method extract_features (line 386) | def extract_features(self, features, include_API_calls=False, include_... method load_features (line 540) | def load_features(self, features, include_API_calls=False, include_API... method export_dataset (line 545) | def export_dataset(self, filename="dataset.csv"): method feature_category (line 559) | def feature_category(self, category="static", complement=False): method filter_dataset (line 608) | def filter_dataset(self, dataset=None, feature_coverage=0.1, method detect_abnormal_behaviour (line 629) | def detect_abnormal_behaviour(self, count_dataset=None, figures=True): method visualise_data (line 678) | def visualise_data(self, data=None, labels=None, learning_rate=200, method save_dataset (line 702) | def save_dataset(self, filename="custom_dataset.csv", features=None, \ method cluster_dbscan (line 726) | def cluster_dbscan(self, features=None, eps=20.0, min_samples=5, dry=F... method cluster_hdbscan (line 759) | def cluster_hdbscan(self, features=None, min_samples=1, \ method save_clustering_results (line 801) | def save_clustering_results(self, loader, save_location=""): method anomaly_detection (line 829) | def anomaly_detection(self, samples=None, labels=None, method compare_sample (line 878) | def compare_sample(self, sample, amend=False): method assess_clustering (line 913) | def assess_clustering(self, clustering, labels, data=None, method clustering_label_distribution (line 960) | def clustering_label_distribution(self, clustering, labels, plot=False): FILE: examples/rundetectiontest.py class RunProcessing (line 30) | class RunProcessing(object): method __init__ (line 38) | def __init__(self, task): method process (line 45) | def process(self, module, results): method run (line 107) | def run(self): class RunDetection (line 145) | class RunDetection(object): method __init__ (line 153) | def __init__(self, results): method process (line 163) | def process(self, module): method run (line 228) | def run(self): function import_package (line 261) | def import_package(package): function import_plugin (line 266) | def import_plugin(name): function load_plugins (line 275) | def load_plugins(module): # 导入插件 function register_plugin (line 293) | def register_plugin(group, name): function list_plugins (line 298) | def list_plugins(group=None): function init_modules (line 304) | def init_modules(machinery=True): FILE: lib/cuckoo/common/abstracts.py class Auxiliary (line 42) | class Auxiliary(object): method __init__ (line 51) | def __init__(self): method set_task (line 56) | def set_task(self, task): method set_machine (line 62) | def set_machine(self, machine): method set_options (line 68) | def set_options(self, options): method start (line 74) | def start(self): method stop (line 80) | def stop(self): class Machinery (line 86) | class Machinery(object): method __init__ (line 93) | def __init__(self): method pcap_path (line 104) | def pcap_path(self, task_id): method set_options (line 109) | def set_options(self, options): method initialize (line 117) | def initialize(self, module_name): method _get_resultserver_port (line 129) | def _get_resultserver_port(self): method _initialize (line 138) | def _initialize(self, module_name): method _initialize_check (line 203) | def _initialize_check(self): method machines (line 237) | def machines(self): method availables (line 245) | def availables(self): method acquire (line 253) | def acquire(self, machine_id=None, platform=None, tags=None): method release (line 269) | def release(self, label=None): method running (line 277) | def running(self): method shutdown (line 285) | def shutdown(self): method set_status (line 301) | def set_status(self, label, status): method start (line 310) | def start(self, label, task): method stop (line 320) | def stop(self, label=None): method _list (line 329) | def _list(self): method dump_memory (line 337) | def dump_memory(self, label, path): method _wait_status (line 345) | def _wait_status(self, label, state): class LibVirtMachinery (line 373) | class LibVirtMachinery(Machinery): method __init__ (line 389) | def __init__(self): method initialize (line 395) | def initialize(self, module): method _initialize_check (line 404) | def _initialize_check(self): method start (line 422) | def start(self, label, task): method stop (line 477) | def stop(self, label): method shutdown (line 506) | def shutdown(self): method dump_memory (line 513) | def dump_memory(self, label, path): method _status (line 534) | def _status(self, label): method _connect (line 581) | def _connect(self): method _disconnect (line 597) | def _disconnect(self, conn): method _fetch_machines (line 608) | def _fetch_machines(self): method _lookup (line 619) | def _lookup(self, label): method _list (line 637) | def _list(self): method _version_check (line 652) | def _version_check(self): method _get_snapshot (line 663) | def _get_snapshot(self, label): class Processing (line 704) | class Processing(object): method __init__ (line 709) | def __init__(self): method set_options (line 717) | def set_options(self, options): method set_task (line 725) | def set_task(self, task): method set_baseline (line 733) | def set_baseline(self, baseline_path): method set_path (line 739) | def set_path(self, analysis_path): method set_results (line 765) | def set_results(self, results): method run (line 771) | def run(self): class Instance (line 779) | class Instance(object): method __init__ (line 786) | def __init__(self): method load_json (line 798) | def load_json(self, json_file, name="unknown"): method load_binaries (line 828) | def load_binaries(self, data_path, first_n_byte = 2 ** 20): method label_sample (line 844) | def label_sample(self, external_labels=None, label_type="family"): method update (line 869) | def update(self, element, location): method save_json (line 883) | def save_json(self, root_dir): method extract_features (line 890) | def extract_features(self): method extract_features_static (line 895) | def extract_features_static(self): method extract_features_dynamic (line 905) | def extract_features_dynamic(self): method feature_static_metadata (line 913) | def feature_static_metadata(self): method feature_static_signature (line 940) | def feature_static_signature(self): method feature_static_heuristic (line 956) | def feature_static_heuristic(self): method feature_static_packer (line 961) | def feature_static_packer(self): method feature_static_pef (line 968) | def feature_static_pef(self): method feature_static_imports (line 1006) | def feature_static_imports(self): method feature_static_string (line 1026) | def feature_static_string(self): method feature_dynamic_imports (line 1030) | def feature_dynamic_imports(self): method feature_dynamic_filesystem (line 1048) | def feature_dynamic_filesystem(self): method feature_dynamic_network (line 1121) | def feature_dynamic_network(self): method feature_dynamic_registry (line 1172) | def feature_dynamic_registry(self): method feature_dynamic_windowsapi (line 1183) | def feature_dynamic_windowsapi(self): method extract_basic_features (line 1194) | def extract_basic_features(self): class Detection (line 1208) | class Detection(object): method __init__ (line 1215) | def __init__(self): method set_options (line 1228) | def set_options(self, options): method set_path (line 1236) | def set_path(self, analysis_path): method set_task (line 1246) | def set_task(self, task): method load_instance (line 1253) | def load_instance(self, results): method get_features (line 1264) | def get_features(self): method load_binaries_dir (line 1278) | def load_binaries_dir(self, directory): method update_binaries (line 1291) | def update_binaries(self, elements, root, locations): method save_binaries (line 1303) | def save_binaries(self, alternative_location=""): method get_labels (line 1322) | def get_labels(self): method get_simple_features (line 1329) | def get_simple_features(self): method run (line 1336) | def run(self): class Signature (line 1344) | class Signature(object): method __init__ (line 1372) | def __init__(self, caller): method _check_value (line 1386) | def _check_value(self, pattern, subject, regex=False, all=False): method get_results (line 1422) | def get_results(self, key=None, default=None): method get_processes (line 1431) | def get_processes(self, name=None): method get_process_by_pid (line 1441) | def get_process_by_pid(self, pid=None): method get_summary (line 1451) | def get_summary(self, key=None, default=[]): method get_summary_generic (line 1456) | def get_summary_generic(self, pid, actions): method get_files (line 1472) | def get_files(self, pid=None, actions=None): method get_dll_loaded (line 1490) | def get_dll_loaded(self, pid=None): method get_keys (line 1499) | def get_keys(self, pid=None, actions=None): method check_file (line 1515) | def check_file(self, pattern, regex=False, actions=None, pid=None, method check_dll_loaded (line 1539) | def check_dll_loaded(self, pattern, regex=False, actions=None, pid=None, method check_key (line 1555) | def check_key(self, pattern, regex=False, actions=None, pid=None, method get_mutexes (line 1578) | def get_mutexes(self, pid=None): method check_mutex (line 1587) | def check_mutex(self, pattern, regex=False, all=False): method get_command_lines (line 1600) | def get_command_lines(self): method get_wmi_queries (line 1604) | def get_wmi_queries(self): method get_net_generic (line 1608) | def get_net_generic(self, subtype): method get_net_hosts (line 1615) | def get_net_hosts(self): method get_net_domains (line 1619) | def get_net_domains(self): method get_net_http (line 1623) | def get_net_http(self): method get_net_http_ex (line 1627) | def get_net_http_ex(self): method get_net_udp (line 1632) | def get_net_udp(self): method get_net_icmp (line 1636) | def get_net_icmp(self): method get_net_irc (line 1640) | def get_net_irc(self): method get_net_smtp (line 1644) | def get_net_smtp(self): method get_virustotal (line 1648) | def get_virustotal(self): method get_volatility (line 1652) | def get_volatility(self, module=None): method get_apkinfo (line 1657) | def get_apkinfo(self, section=None, default={}): method get_droidmon (line 1662) | def get_droidmon(self, section=None, default={}): method get_googleplay (line 1667) | def get_googleplay(self, section=None, default={}): method check_ip (line 1672) | def check_ip(self, pattern, regex=False, all=False): method check_domain (line 1685) | def check_domain(self, pattern, regex=False, all=False): method check_url (line 1702) | def check_url(self, pattern, regex=False, all=False): method init (line 1719) | def init(self): method mark_call (line 1722) | def mark_call(self, *args, **kwargs): method mark_ioc (line 1741) | def mark_ioc(self, category, ioc, description=None): method mark_vol (line 1755) | def mark_vol(self, plugin, **kwargs): method mark (line 1765) | def mark(self, **kwargs): method has_marks (line 1773) | def has_marks(self, count=None): method on_call (line 1779) | def on_call(self, call, process): method on_signature (line 1794) | def on_signature(self, signature): method on_process (line 1802) | def on_process(self, process): method on_complete (line 1809) | def on_complete(self): method results (line 1813) | def results(self): class Report (line 1823) | class Report(object): method __init__ (line 1827) | def __init__(self): method _get_analysis_path (line 1833) | def _get_analysis_path(self, subpath): method set_path (line 1836) | def set_path(self, analysis_path): method set_options (line 1853) | def set_options(self, options): method set_task (line 1860) | def set_task(self, task): method run (line 1867) | def run(self): class BehaviorHandler (line 1874) | class BehaviorHandler(object): method __init__ (line 1881) | def __init__(self, behavior_analysis): method handles_path (line 1884) | def handles_path(self, logpath): method parse (line 1889) | def parse(self, logpath): method handle_event (line 1894) | def handle_event(self, event): method run (line 1898) | def run(self): class ProtocolHandler (line 1903) | class ProtocolHandler(object): method __init__ (line 1905) | def __init__(self, handler, version=None): method init (line 1909) | def init(self): method close (line 1912) | def close(self): FILE: lib/cuckoo/common/colors.py function color (line 10) | def color(text, color_code): function black (line 25) | def black(text): function red (line 28) | def red(text): function green (line 31) | def green(text): function yellow (line 34) | def yellow(text): function blue (line 37) | def blue(text): function magenta (line 40) | def magenta(text): function cyan (line 43) | def cyan(text): function white (line 46) | def white(text): function bold (line 49) | def bold(text): FILE: lib/cuckoo/common/compare.py function behavior_categories_percent (line 14) | def behavior_categories_percent(calls): function combine_behavior_percentages (line 22) | def combine_behavior_percentages(stats): function iter_task_process_logfiles (line 45) | def iter_task_process_logfiles(tid): function helper_percentages_storage (line 53) | def helper_percentages_storage(tid1, tid2): function helper_percentages_mongo (line 68) | def helper_percentages_mongo(results_db, tid1, tid2, ignore_categories=[... FILE: lib/cuckoo/common/config.py class Config (line 14) | class Config(): method __init__ (line 21) | def __init__(self, file_name="cuckoo", cfg=None): method get (line 53) | def get(self, section): function parse_options (line 67) | def parse_options(options): function emit_options (line 78) | def emit_options(options): FILE: lib/cuckoo/common/dns.py function set_timeout (line 28) | def set_timeout(value): function set_timeout_value (line 32) | def set_timeout_value(value): function with_timeout (line 39) | def with_timeout(func, args=(), kwargs={}): function resolve_thread (line 65) | def resolve_thread(name): function gethostbyname (line 68) | def gethostbyname(name): function resolve_cares (line 77) | def resolve_cares(name): class Resultholder (line 106) | class Resultholder: function resolve (line 132) | def resolve(name): FILE: lib/cuckoo/common/exceptions.py class CuckooCriticalError (line 7) | class CuckooCriticalError(Exception): class CuckooStartupError (line 10) | class CuckooStartupError(CuckooCriticalError): class CuckooDatabaseError (line 13) | class CuckooDatabaseError(CuckooCriticalError): class CuckooDependencyError (line 16) | class CuckooDependencyError(CuckooCriticalError): class CuckooOperationalError (line 19) | class CuckooOperationalError(Exception): class CuckooMachineError (line 22) | class CuckooMachineError(CuckooOperationalError): class CuckooAnalysisError (line 25) | class CuckooAnalysisError(CuckooOperationalError): class CuckooProcessingError (line 28) | class CuckooProcessingError(CuckooOperationalError): class CuckooDetectionError (line 31) | class CuckooDetectionError(CuckooOperationalError): class CuckooReportError (line 34) | class CuckooReportError(CuckooOperationalError): class CuckooGuestError (line 37) | class CuckooGuestError(CuckooOperationalError): class CuckooResultError (line 40) | class CuckooResultError(CuckooOperationalError): FILE: lib/cuckoo/common/irc.py class ircMessage (line 19) | class ircMessage(object): method __init__ (line 32) | def __init__(self): method _unpack (line 39) | def _unpack(self, buf): method getClientMessages (line 69) | def getClientMessages(self, buf): method getClientMessagesFilter (line 87) | def getClientMessagesFilter(self, buf, filters): method getServerMessages (line 105) | def getServerMessages(self, buf): method getServerMessagesFilter (line 124) | def getServerMessagesFilter(self, buf, filters): method isthereIRC (line 141) | def isthereIRC(self, buf): FILE: lib/cuckoo/common/logo.py function logo (line 13) | def logo(): FILE: lib/cuckoo/common/netlog.py function pointer_converter_32bit (line 36) | def pointer_converter_32bit(v): function pointer_converter_64bit (line 39) | def pointer_converter_64bit(v): function default_converter_32bit (line 42) | def default_converter_32bit(v): function default_converter_64bit (line 51) | def default_converter_64bit(v): class BsonParser (line 63) | class BsonParser(ProtocolHandler): method init (line 85) | def init(self): method resolve_flags (line 101) | def resolve_flags(self, apiname, argdict, flags): method determine_unserializers (line 131) | def determine_unserializers(self, arginfo): method __iter__ (line 153) | def __iter__(self): FILE: lib/cuckoo/common/objects.py class Dictionary (line 69) | class Dictionary(dict): method __getattr__ (line 72) | def __getattr__(self, key): class URL (line 78) | class URL: method __init__ (line 81) | def __init__(self, url): class File (line 85) | class File(object): method __init__ (line 106) | def __init__(self, file_path): method get_name (line 118) | def get_name(self): method valid (line 126) | def valid(self): method get_data (line 131) | def get_data(self): method get_chunks (line 138) | def get_chunks(self): method calc_hashes (line 148) | def calc_hashes(self): method file_data (line 171) | def file_data(self): method get_size (line 176) | def get_size(self): method get_crc32 (line 183) | def get_crc32(self): method get_md5 (line 192) | def get_md5(self): method get_sha1 (line 201) | def get_sha1(self): method get_sha256 (line 210) | def get_sha256(self): method get_sha512 (line 219) | def get_sha512(self): method get_ssdeep (line 229) | def get_ssdeep(self): method get_type (line 246) | def get_type(self): method get_content_type (line 280) | def get_content_type(self): method get_exported_functions (line 311) | def get_exported_functions(self): method get_imported_functions (line 334) | def get_imported_functions(self): method get_apk_entry (line 361) | def get_apk_entry(self): method _yara_encode_string (line 407) | def _yara_encode_string(self, s): method _yara_matches_177 (line 418) | def _yara_matches_177(self, matches): method get_yara (line 436) | def get_yara(self, category="binaries"): method get_urls (line 490) | def get_urls(self): method get_all (line 506) | def get_all(self): FILE: lib/cuckoo/common/utils.py function create_folders (line 52) | def create_folders(root=".", folders=[]): function create_folder (line 62) | def create_folder(root=".", folder=None): function delete_folder (line 77) | def delete_folder(folder): function convert_char (line 95) | def convert_char(c): function is_printable (line 106) | def is_printable(s): function convert_to_printable (line 113) | def convert_to_printable(s): function datetime_to_iso (line 123) | def datetime_to_iso(timestamp): function get_filename_from_path (line 131) | def get_filename_from_path(path): function store_temp_file (line 140) | def store_temp_file(filedata, filename, path=None): class TimeoutServer (line 177) | class TimeoutServer(xmlrpclib.ServerProxy): method __init__ (line 185) | def __init__(self, *args, **kwargs): method _set_timeout (line 190) | def _set_timeout(self, timeout): class TimeoutTransport (line 197) | class TimeoutTransport(xmlrpclib.Transport): method __init__ (line 198) | def __init__(self, *args, **kwargs): method make_connection (line 202) | def make_connection(self, *args, **kwargs): class Singleton (line 208) | class Singleton(type): method __call__ (line 215) | def __call__(cls, *args, **kwargs): class ThreadSingleton (line 220) | class ThreadSingleton(type): method __call__ (line 224) | def __call__(cls, *args, **kwargs): function to_unicode (line 229) | def to_unicode(s): function cleanup_value (line 274) | def cleanup_value(v): function classlock (line 281) | def classlock(f): class SuperLock (line 297) | class SuperLock(object): method __init__ (line 298) | def __init__(self): method __enter__ (line 302) | def __enter__(self): method __exit__ (line 306) | def __exit__(self, type, value, traceback): function hash_file (line 310) | def hash_file(method, filepath): function md5_file (line 326) | def md5_file(filepath): function sha1_file (line 329) | def sha1_file(filepath): function guid_name (line 334) | def guid_name(guid): function exception_message (line 347) | def exception_message(): function jsbeautify (line 401) | def jsbeautify(javascript): function htmlprettify (line 416) | def htmlprettify(html): function json_default (line 427) | def json_default(obj): function json_hook (line 435) | def json_hook(obj): function json_encode (line 442) | def json_encode(obj, **kwargs): function json_decode (line 446) | def json_decode(x): function versiontuple (line 450) | def versiontuple(v): FILE: lib/cuckoo/common/virustotal.py class VirusTotalResourceNotScanned (line 24) | class VirusTotalResourceNotScanned(CuckooOperationalError): class VirusTotalAPI (line 27) | class VirusTotalAPI(object): method __init__ (line 284) | def __init__(self, apikey, timeout, scan=0): method _request_json (line 295) | def _request_json(self, url, **kwargs): method _get_report (line 309) | def _get_report(self, url, resource, summary=False): method url_report (line 373) | def url_report(self, url, summary=False): method file_report (line 380) | def file_report(self, filepath, summary=False): method url_scan (line 388) | def url_scan(self, url): method file_scan (line 397) | def file_scan(self, filepath): method detect_platform (line 407) | def detect_platform(self, tokens): method clean_tokens (line 482) | def clean_tokens(self, tokens): method normalize (line 576) | def normalize(self, variant): FILE: lib/cuckoo/common/whitelist.py function is_whitelisted_domain (line 13) | def is_whitelisted_domain(domain): FILE: lib/cuckoo/core/database.py class Machine (line 60) | class Machine(Base): method __repr__ (line 81) | def __repr__(self): method to_dict (line 84) | def to_dict(self): method to_json (line 101) | def to_json(self): method is_analysis (line 108) | def is_analysis(self): method __init__ (line 117) | def __init__(self, name, label, ip, platform, options, interface, class Tag (line 129) | class Tag(Base): method __repr__ (line 136) | def __repr__(self): method __init__ (line 139) | def __init__(self, name): class Guest (line 142) | class Guest(Base): method __repr__ (line 161) | def __repr__(self): method to_dict (line 164) | def to_dict(self): method to_json (line 178) | def to_json(self): method __init__ (line 185) | def __init__(self, name, label, manager): class Sample (line 190) | class Sample(Base): method __repr__ (line 206) | def __repr__(self): method to_dict (line 209) | def to_dict(self): method to_json (line 219) | def to_json(self): method __init__ (line 226) | def __init__(self, md5, crc32, sha1, sha256, sha512, class Error (line 239) | class Error(Base): method to_dict (line 247) | def to_dict(self): method to_json (line 257) | def to_json(self): method __init__ (line 264) | def __init__(self, message, task_id): method __repr__ (line 268) | def __repr__(self): class Task (line 271) | class Task(Base): method duration (line 310) | def duration(self): method options (line 316) | def options(self): method options (line 322) | def options(self, value): method to_dict (line 325) | def to_dict(self): method to_json (line 349) | def to_json(self): method __init__ (line 356) | def __init__(self, target=None): method __repr__ (line 359) | def __repr__(self): class AlembicVersion (line 362) | class AlembicVersion(Base): class Database (line 368) | class Database(object): method __init__ (line 376) | def __init__(self, dsn=None, schema_check=True, echo=False): method __del__ (line 449) | def __del__(self): method _connect_database (line 453) | def _connect_database(self, connection_string): method _get_or_create (line 476) | def _get_or_create(self, session, model, **kwargs): method drop (line 487) | def drop(self): method clean_machines (line 495) | def clean_machines(self): method add_machine (line 512) | def add_machine(self, name, label, ip, platform, options, tags, interf... method set_status (line 554) | def set_status(self, task_id, status): method set_route (line 582) | def set_route(self, task_id, route): method fetch (line 604) | def fetch(self, machine=None, service=True): method guest_start (line 632) | def guest_start(self, task_id, name, label, manager): method guest_get_status (line 657) | def guest_get_status(self, task_id): method guest_set_status (line 675) | def guest_set_status(self, task_id, status): method guest_remove (line 695) | def guest_remove(self, guest_id): method guest_stop (line 710) | def guest_stop(self, guest_id): method list_machines (line 731) | def list_machines(self, locked=False): method lock_machine (line 750) | def lock_machine(self, label=None, platform=None, tags=None): method unlock_machine (line 808) | def unlock_machine(self, label): method count_machines_available (line 838) | def count_machines_available(self): method get_available_machines (line 854) | def get_available_machines(self): method set_machine_status (line 870) | def set_machine_status(self, label, status): method add_error (line 899) | def add_error(self, message, task_id): method add (line 919) | def add(self, obj, timeout=0, package="", options="", priority=1, method add_path (line 1021) | def add_path(self, file_path, timeout=0, package="", options="", method add_url (line 1054) | def add_url(self, url, timeout=0, package="", options="", priority=1, method add_baseline (line 1084) | def add_baseline(self, timeout=0, owner="", machine="", memory=False): method add_service (line 1096) | def add_service(self, timeout, owner, tags): method reschedule (line 1108) | def reschedule(self, task_id, priority=None): method list_tasks (line 1153) | def list_tasks(self, limit=None, details=True, category=None, owner=None, method count_tasks (line 1203) | def count_tasks(self, status=None): method view_task (line 1223) | def view_task(self, task_id, details=True): method delete_task (line 1246) | def delete_task(self, task_id): method view_sample (line 1266) | def view_sample(self, sample_id): method find_sample (line 1289) | def find_sample(self, md5=None, sha256=None): method count_samples (line 1312) | def count_samples(self): method view_machine (line 1325) | def view_machine(self, name): method view_machine_by_label (line 1345) | def view_machine_by_label(self, label): method view_errors (line 1365) | def view_errors(self, task_id): method processing_get_task (line 1381) | def processing_get_task(self, instance): FILE: lib/cuckoo/core/guest.py function analyzer_zipfile (line 33) | def analyzer_zipfile(platform, monitor): class OldGuestManager (line 78) | class OldGuestManager(object): method __init__ (line 87) | def __init__(self, vm_id, ip, platform, task_id): method wait (line 104) | def wait(self, status): method upload_analyzer (line 137) | def upload_analyzer(self, monitor): method start_analysis (line 158) | def start_analysis(self, options, monitor): method wait_for_completion (line 216) | def wait_for_completion(self): class GuestManager (line 256) | class GuestManager(object): method __init__ (line 260) | def __init__(self, vmid, ipaddr, platform, task_id): method get (line 282) | def get(self, method, *args, **kwargs): method post (line 302) | def post(self, method, *args, **kwargs): method wait_available (line 321) | def wait_available(self): method query_environ (line 341) | def query_environ(self): method determine_analyzer_path (line 345) | def determine_analyzer_path(self): method determine_system_drive (line 363) | def determine_system_drive(self): method determine_temp_path (line 367) | def determine_temp_path(self): method upload_analyzer (line 372) | def upload_analyzer(self, monitor): method add_config (line 385) | def add_config(self, options): method start_analysis (line 402) | def start_analysis(self, options, monitor): method wait_for_completion (line 516) | def wait_for_completion(self): method server (line 557) | def server(self): FILE: lib/cuckoo/core/plugins.py function enumerate_plugins (line 30) | def enumerate_plugins(dirpath, module_prefix, namespace, class_, attribu... function import_package (line 60) | def import_package(package): function import_plugin (line 65) | def import_plugin(name): function load_plugins (line 74) | def load_plugins(module): # 导入插件 function register_plugin (line 92) | def register_plugin(group, name): function list_plugins (line 102) | def list_plugins(group=None): class RunAuxiliary (line 108) | class RunAuxiliary(object): method __init__ (line 111) | def __init__(self, task, machine): method start (line 117) | def start(self): method stop (line 156) | def stop(self): class RunProcessing (line 168) | class RunProcessing(object): method __init__ (line 176) | def __init__(self, task): method process (line 184) | def process(self, module, results): method run (line 247) | def run(self): class RunDetection (line 286) | class RunDetection(object): method __init__ (line 294) | def __init__(self, task, results): method process (line 303) | def process(self, module): method run (line 368) | def run(self): class RunSignatures (line 406) | class RunSignatures(object): method __init__ (line 409) | def __init__(self, results): method _should_enable_signature (line 427) | def _should_enable_signature(self, signature): method check_signature_version (line 449) | def check_signature_version(self, signature): method call_signature (line 510) | def call_signature(self, signature, handler, *args, **kwargs): method init_api_sigs (line 525) | def init_api_sigs(self, apiname, category): method yield_calls (line 539) | def yield_calls(self, proc): method run (line 554) | def run(self): class RunReporting (line 590) | class RunReporting(object): method __init__ (line 598) | def __init__(self, task, results): method process (line 606) | def process(self, module): method run (line 653) | def run(self): FILE: lib/cuckoo/core/resultserver.py class Disconnect (line 33) | class Disconnect(Exception): class ResultServer (line 36) | class ResultServer(SocketServer.ThreadingTCPServer, object): method __init__ (line 47) | def __init__(self, *args, **kwargs): method add_task (line 92) | def add_task(self, task, machine): method del_task (line 97) | def del_task(self, task, machine): method register_handler (line 108) | def register_handler(self, handler): method get_ctx_for_ip (line 116) | def get_ctx_for_ip(self, ip): method build_storage_path (line 125) | def build_storage_path(self, ip): class ResultHandler (line 133) | class ResultHandler(SocketServer.BaseRequestHandler): method setup (line 139) | def setup(self): method finish (line 154) | def finish(self): method wait_sock_or_end (line 162) | def wait_sock_or_end(self): method seek (line 175) | def seek(self, pos): method read (line 178) | def read(self, length): method read_any (line 195) | def read_any(self): method read_newline (line 203) | def read_newline(self, strip=False): method negotiate_protocol (line 213) | def negotiate_protocol(self): method handle (line 236) | def handle(self): method open_process_log (line 266) | def open_process_log(self, event): method create_folders (line 293) | def create_folders(self): class FileUpload (line 303) | class FileUpload(ProtocolHandler): method init (line 307) | def init(self): method __iter__ (line 315) | def __iter__(self): method close (line 395) | def close(self): class LogHandler (line 399) | class LogHandler(ProtocolHandler): method init (line 404) | def init(self): method __iter__ (line 409) | def __iter__(self): method close (line 428) | def close(self): method _open (line 432) | def _open(self): FILE: lib/cuckoo/core/rooter.py function rooter (line 23) | def rooter(command, *args, **kwargs): FILE: lib/cuckoo/core/scheduler.py class AnalysisManager (line 36) | class AnalysisManager(threading.Thread): method __init__ (line 45) | def __init__(self, task_id, error_queue): method init_storage (line 62) | def init_storage(self): method check_file (line 86) | def check_file(self): method store_file (line 97) | def store_file(self): method store_task_info (line 132) | def store_task_info(self): method acquire_machine (line 140) | def acquire_machine(self): method build_options (line 175) | def build_options(self): method route_network (line 215) | def route_network(self): method unroute_network (line 258) | def unroute_network(self): method wait_finish (line 266) | def wait_finish(self): method guest_manage (line 275) | def guest_manage(self, options): method launch_analysis (line 304) | def launch_analysis(self): method process_results (line 445) | def process_results(self): method run (line 487) | def run(self): class Scheduler (line 536) | class Scheduler(object): method __init__ (line 545) | def __init__(self, maxcount=None): method initialize (line 552) | def initialize(self): method stop (line 633) | def stop(self): method start (line 639) | def start(self): FILE: lib/cuckoo/core/startup.py function check_python_version (line 39) | def check_python_version(): function check_working_directory (line 49) | def check_working_directory(): function check_configs (line 64) | def check_configs(): function create_structure (line 85) | def create_structure(): function check_version (line 100) | def check_version(): class DatabaseHandler (line 140) | class DatabaseHandler(logging.Handler): method emit (line 145) | def emit(self, record): class ConsoleHandler (line 150) | class ConsoleHandler(logging.StreamHandler): method emit (line 153) | def emit(self, record): function init_logging (line 168) | def init_logging(): function init_console_logging (line 186) | def init_console_logging(): function init_tasks (line 196) | def init_tasks(): function delete_file (line 217) | def delete_file(*rel_path): function init_modules (line 232) | def init_modules(machinery=True): function init_yara (line 274) | def init_yara(): function init_binaries (line 317) | def init_binaries(): function init_rooter (line 337) | def init_rooter(): function init_routing (line 384) | def init_routing(): function cuckoo_clean (line 467) | def cuckoo_clean(): function drop_privileges (line 538) | def drop_privileges(username): FILE: modules/auxiliary/mitm.py class MITM (line 19) | class MITM(Auxiliary): method __init__ (line 22) | def __init__(self): method start (line 26) | def start(self): method stop (line 103) | def stop(self): FILE: modules/auxiliary/services.py class Services (line 18) | class Services(Auxiliary): method start_service (line 23) | def start_service(self, service): method stop_service (line 33) | def stop_service(self, task_id): method start (line 37) | def start(self): method stop (line 70) | def stop(self): FILE: modules/auxiliary/sniffer.py class Sniffer (line 17) | class Sniffer(Auxiliary): method __init__ (line 21) | def __init__(self): method start (line 25) | def start(self): method stop (line 109) | def stop(self): FILE: modules/detection/apistats.py class Apistats (line 14) | class Apistats(Detection): method load_features (line 17) | def load_features(self, key): method load_model (line 32) | def load_model(self): method predict (line 45) | def predict(self): method run (line 53) | def run(self): FILE: modules/detection/malconv.py class MalConv (line 21) | class MalConv(Detection): method load_model (line 27) | def load_model(self): method run (line 42) | def run(self): class PreMalConv (line 77) | class PreMalConv(nn.Module): method __init__ (line 82) | def __init__(self, input_length=2 ** 20, window_size=500): method forward (line 97) | def forward(self, x): class ExeDataset (line 120) | class ExeDataset(Dataset): method __init__ (line 124) | def __init__(self, fp_list, data_path, label_list = None, first_n_byte... method __len__ (line 145) | def __len__(self): method __getitem__ (line 151) | def __getitem__(self, idx): FILE: modules/detection/model.py class MalConv (line 12) | class MalConv(nn.Module): method __init__ (line 14) | def __init__(self,input_length=2000000,window_size=500): method forward (line 36) | def forward(self,x): class PreMalConv (line 56) | class PreMalConv(nn.Module): method __init__ (line 72) | def __init__(self, input_length=2 ** 20, window_size=500): method forward (line 89) | def forward(self, x): class ExeDataset (line 111) | class ExeDataset(Dataset): method __init__ (line 115) | def __init__(self, fp_list, data_path, label_list = None, first_n_byte... method __len__ (line 122) | def __len__(self): method __getitem__ (line 128) | def __getitem__(self, idx): FILE: modules/detection/strings.py class Strings_ngram (line 19) | class Strings_ngram(Detection): method load_features (line 22) | def load_features(self, key): method load_model (line 38) | def load_model(self): method predict (line 51) | def predict(self): method run (line 62) | def run(self): FILE: modules/machinery/avd.py class Avd (line 20) | class Avd(Machinery): method _initialize_check (line 23) | def _initialize_check(self): method start (line 67) | def start(self, label, task): method stop (line 80) | def stop(self, label): method _list (line 88) | def _list(self): method _status (line 94) | def _status(self, label): method duplicate_reference_machine (line 101) | def duplicate_reference_machine(self, label): method delete_old_emulator (line 131) | def delete_old_emulator(self, label): method replace_content_in_file (line 146) | def replace_content_in_file(self, fileName, contentToReplace, replacem... method start_emulator (line 161) | def start_emulator(self, label, task): method stop_emulator (line 198) | def stop_emulator(self, label): method wait_for_device_ready (line 220) | def wait_for_device_ready(self, label): method port_forward (line 280) | def port_forward(self, label): method start_agent (line 288) | def start_agent(self, label): method check_adb_recognize_emulator (line 296) | def check_adb_recognize_emulator(self, label): method restart_adb_server (line 313) | def restart_adb_server(self): method get_task_id (line 327) | def get_task_id(self, label): class OSCommand (line 335) | class OSCommand(object): method executeAsyncCommand (line 339) | def executeAsyncCommand(commandAndArgs): method executeCommand (line 343) | def executeCommand(commandAndArgs): FILE: modules/machinery/esx.py class ESX (line 13) | class ESX(LibVirtMachinery): method _initialize_check (line 16) | def _initialize_check(self): method _auth_callback (line 31) | def _auth_callback(self, credentials, user_data): method _connect (line 42) | def _connect(self): method _global_connect (line 48) | def _global_connect(self): method _disconnect (line 56) | def _disconnect(self, conn): method __del__ (line 60) | def __del__(self): FILE: modules/machinery/kvm.py class KVM (line 8) | class KVM(LibVirtMachinery): FILE: modules/machinery/physical.py class Physical (line 31) | class Physical(Machinery): method _initialize_check (line 39) | def _initialize_check(self): method _get_machine (line 65) | def _get_machine(self, label): method start (line 77) | def start(self, label, task): method stop (line 94) | def stop(self, label): method _list (line 123) | def _list(self): method _status (line 134) | def _status(self, label): method fog_query (line 176) | def fog_query(self, uri, data={}): method fog_init (line 190) | def fog_init(self): method fog_queue_task (line 225) | def fog_queue_task(self, hostname): method wake_on_lan (line 231) | def wake_on_lan(self, hostname): FILE: modules/machinery/qemu.py class QEMU (line 96) | class QEMU(Machinery): method __init__ (line 104) | def __init__(self): method _initialize_check (line 108) | def _initialize_check(self): method start (line 124) | def start(self, label, task): method stop (line 180) | def stop(self, label): method _status (line 210) | def _status(self, name): FILE: modules/machinery/virtualbox.py class VirtualBox (line 20) | class VirtualBox(Machinery): method _initialize_check (line 30) | def _initialize_check(self): method start (line 48) | def start(self, label, task): method dump_pcap (line 109) | def dump_pcap(self, label, task): method stop (line 136) | def stop(self, label): method _list (line 174) | def _list(self): method _status (line 204) | def _status(self, label): method dump_memory (line 247) | def dump_memory(self, label, path): FILE: modules/machinery/vmware.py class VMware (line 20) | class VMware(Machinery): method _initialize_check (line 26) | def _initialize_check(self): method _check_vmx (line 51) | def _check_vmx(self, vmx_path): method _check_snapshot (line 64) | def _check_snapshot(self, vmx_path, snapshot): method start (line 89) | def start(self, vmx_path, task): method stop (line 124) | def stop(self, vmx_path): method _revert (line 146) | def _revert(self, vmx_path, snapshot): method _is_running (line 166) | def _is_running(self, vmx_path): method _snapshot_from_vmx (line 188) | def _snapshot_from_vmx(self, vmx_path): method dump_memory (line 196) | def dump_memory(self, vmx_path, path): FILE: modules/machinery/vsphere.py class vSphere (line 28) | class vSphere(Machinery): method __init__ (line 37) | def __init__(self): method _initialize (line 44) | def _initialize(self, module_name): method _initialize_check (line 53) | def _initialize_check(self): method start (line 117) | def start(self, label, task): method stop (line 132) | def stop(self, label): method dump_memory (line 145) | def dump_memory(self, label, path): method _list (line 161) | def _list(self): method _status (line 169) | def _status(self, label): method _get_virtual_machines (line 184) | def _get_virtual_machines(self, conn): method _get_virtual_machine_by_label (line 200) | def _get_virtual_machine_by_label(self, conn, label): method _get_snapshot_by_name (line 206) | def _get_snapshot_by_name(self, vm, name): method _get_snapshot_power_state (line 214) | def _get_snapshot_power_state(self, vm, name): method _create_snapshot (line 221) | def _create_snapshot(self, vm, name): method _delete_snapshot (line 234) | def _delete_snapshot(self, vm, name): method _revert_snapshot (line 249) | def _revert_snapshot(self, vm, name): method _download_snapshot (line 264) | def _download_snapshot(self, conn, vm, name, path): method _stop_virtual_machine (line 302) | def _stop_virtual_machine(self, vm): method _wait_task (line 311) | def _wait_task(self, task): method _traverseSnapshots (line 328) | def _traverseSnapshots(self, root): FILE: modules/machinery/xenserver.py class XenServerMachinery (line 25) | class XenServerMachinery(Machinery): method _initialize_check (line 36) | def _initialize_check(self): method session (line 71) | def session(self): method _make_xenapi_session (line 78) | def _make_xenapi_session(self, tid=None): method _get_vm_ref (line 99) | def _get_vm_ref(self, uuid): method _get_vm_record (line 105) | def _get_vm_record(self, ref): method _get_vm_power_state (line 111) | def _get_vm_power_state(self, ref): method _check_vm (line 117) | def _check_vm(self, uuid): method _check_snapshot (line 139) | def _check_snapshot(self, vm_uuid, snapshot_uuid): method _check_disks_reset (line 164) | def _check_disks_reset(self, vm): method _snapshot_from_vm_uuid (line 190) | def _snapshot_from_vm_uuid(self, uuid): method _is_halted (line 197) | def _is_halted(self, vm): method start (line 203) | def start(self, label, task): method stop (line 241) | def stop(self, label=None): method _list (line 256) | def _list(self): method _status (line 270) | def _status(self, label): FILE: modules/processing/analysisinfo.py class AnalysisInfo (line 19) | class AnalysisInfo(Processing): method run (line 22) | def run(self): class MetaInfo (line 62) | class MetaInfo(Processing): method run (line 65) | def run(self): FILE: modules/processing/apkinfo.py class ApkInfo (line 29) | class ApkInfo(Processing): method check_size (line 32) | def check_size(self, file_list): method _apk_files (line 44) | def _apk_files(self, apk): method run (line 57) | def run(self): method get_methods (line 112) | def get_methods(self, vmx): FILE: modules/processing/baseline.py class Baseline (line 15) | class Baseline(Processing): method deep_tuple (line 19) | def deep_tuple(self, o, bl=None): method normalize (line 36) | def normalize(self, plugin, o): method memory (line 42) | def memory(self, baseline, report): method store_baseline (line 77) | def store_baseline(self, machine, baseline): method run (line 86) | def run(self): FILE: modules/processing/behavior.py class Summary (line 19) | class Summary(BehaviorHandler): method __init__ (line 25) | def __init__(self, *args, **kwargs): method handle_event (line 29) | def handle_event(self, event): method run (line 32) | def run(self): class Anomaly (line 37) | class Anomaly(BehaviorHandler): method __init__ (line 46) | def __init__(self, *args, **kwargs): method handle_event (line 50) | def handle_event(self, call): method run (line 73) | def run(self): class ProcessTree (line 77) | class ProcessTree(BehaviorHandler): method __init__ (line 83) | def __init__(self, *args, **kwargs): method handle_event (line 87) | def handle_event(self, process): method run (line 105) | def run(self): class GenericBehavior (line 113) | class GenericBehavior(BehaviorHandler): method __init__ (line 119) | def __init__(self, *args, **kwargs): method handle_process_event (line 123) | def handle_process_event(self, process): method handle_generic_event (line 136) | def handle_generic_event(self, event): method run (line 144) | def run(self): class ApiStats (line 151) | class ApiStats(BehaviorHandler): method __init__ (line 156) | def __init__(self, *args, **kwargs): method handle_event (line 160) | def handle_event(self, event): method run (line 163) | def run(self): class PlatformInfo (line 166) | class PlatformInfo(BehaviorHandler): class BehaviorAnalysis (line 179) | class BehaviorAnalysis(Processing): method _enum_logs (line 226) | def _enum_logs(self): method run (line 252) | def run(self): FILE: modules/processing/buffer.py class DroppedBuffer (line 12) | class DroppedBuffer(Processing): method run (line 15) | def run(self): FILE: modules/processing/cuckooml.py function init_cuckooml (line 33) | def init_cuckooml(): class ML (line 173) | class ML(object): method __init__ (line 391) | def __init__(self, context="standalone"): method __log_bin (line 403) | def __log_bin(self, value, base=3): method __normalise_string (line 414) | def __normalise_string(self, string): method __simplify_string (line 422) | def __simplify_string(self, string, distinguish_voyels=False): method __n_grams (line 450) | def __n_grams(self, string, n=3, reorder=False): method __handle_string (line 471) | def __handle_string(self, string): method extract_labels (line 485) | def extract_labels(self, labels): method load_labels (line 490) | def load_labels(self, labels): method extract_simple_features (line 495) | def extract_simple_features(self, simple_features): method load_simple_features (line 516) | def load_simple_features(self, simple_features): method export_simple_dataset (line 523) | def export_simple_dataset(self, filename="simple_dataset.csv"): method simple_feature_category (line 539) | def simple_feature_category(self, category="properties"): method extract_features (line 550) | def extract_features(self, features, include_API_calls=False, \ method load_features (line 706) | def load_features(self, features, include_API_calls=False, \ method export_dataset (line 713) | def export_dataset(self, filename="dataset.csv"): method feature_category (line 729) | def feature_category(self, category="static", complement=False): method filter_dataset (line 779) | def filter_dataset(self, dataset=None, feature_coverage=0.1, method detect_abnormal_behaviour (line 801) | def detect_abnormal_behaviour(self, count_dataset=None, figures=True): method visualise_data (line 852) | def visualise_data(self, data=None, labels=None, learning_rate=200, method save_dataset (line 877) | def save_dataset(self, filename="custom_dataset.csv", features=None, \ method cluster_dbscan (line 898) | def cluster_dbscan(self, features=None, eps=20.0, min_samples=5, dry=F... method cluster_hdbscan (line 932) | def cluster_hdbscan(self, features=None, min_samples=1, \ method save_clustering_results (line 975) | def save_clustering_results(self, loader, save_location=""): method anomaly_detection (line 1004) | def anomaly_detection(self, samples=None, labels=None, method compare_sample (line 1054) | def compare_sample(self, sample, amend=False): method assess_clustering (line 1090) | def assess_clustering(self, clustering, labels, data=None, method clustering_label_distribution (line 1137) | def clustering_label_distribution(self, clustering, labels, plot=False): class Loader (line 1177) | class Loader(object): method __init__ (line 1180) | def __init__(self): method load_binaries (line 1186) | def load_binaries(self, directory): method update_binaries (line 1197) | def update_binaries(self, elements, root, locations): method save_binaries (line 1210) | def save_binaries(self, alternative_location=""): method get_labels (line 1230) | def get_labels(self): method get_features (line 1238) | def get_features(self): method get_simple_features (line 1246) | def get_simple_features(self): class Instance (line 1254) | class Instance(object): method __init__ (line 1259) | def __init__(self): method load_json (line 1271) | def load_json(self, json_file, name="unknown"): method label_sample (line 1300) | def label_sample(self, external_labels=None, label_type="family"): method update (line 1325) | def update(self, element, location): method save_json (line 1338) | def save_json(self, root_dir): method extract_features (line 1344) | def extract_features(self): method extract_features_static (line 1350) | def extract_features_static(self): method extract_features_dynamic (line 1360) | def extract_features_dynamic(self): method feature_static_metadata (line 1369) | def feature_static_metadata(self): method feature_static_signature (line 1397) | def feature_static_signature(self): method feature_static_heuristic (line 1414) | def feature_static_heuristic(self): method feature_static_packer (line 1420) | def feature_static_packer(self): method feature_static_pef (line 1427) | def feature_static_pef(self): method feature_static_imports (line 1465) | def feature_static_imports(self): method feature_dynamic_imports (line 1486) | def feature_dynamic_imports(self): method feature_dynamic_filesystem (line 1505) | def feature_dynamic_filesystem(self): method feature_dynamic_network (line 1579) | def feature_dynamic_network(self): method feature_dynamic_registry (line 1631) | def feature_dynamic_registry(self): method feature_dynamic_windowsapi (line 1643) | def feature_dynamic_windowsapi(self): method extract_basic_features (line 1655) | def extract_basic_features(self): FILE: modules/processing/debug.py class Debug (line 14) | class Debug(Processing): method run (line 17) | def run(self): FILE: modules/processing/droidmon.py class Droidmon (line 15) | class Droidmon(Processing): method __init__ (line 18) | def __init__(self): method _handle_android_os_SystemProperties_get (line 60) | def _handle_android_os_SystemProperties_get(self, api_call): method _handle_javax_crypto_spec_SecretKeySpec_javax_crypto_spec_SecretKeySpec (line 63) | def _handle_javax_crypto_spec_SecretKeySpec_javax_crypto_spec_SecretKe... method _handle_javax_crypto_Cipher_doFinal (line 74) | def _handle_javax_crypto_Cipher_doFinal(self, api_call): method _handle_java_lang_reflect_Method_invoke (line 81) | def _handle_java_lang_reflect_Method_invoke(self, api_call): method _handle_dalvik_system_BaseDexClassLoader_findResource (line 89) | def _handle_dalvik_system_BaseDexClassLoader_findResource(self, api_ca... method _handle_android_app_Activity_startActivity (line 92) | def _handle_android_app_Activity_startActivity(self, api_call): method _handle_java_lang_Runtime_exec (line 95) | def _handle_java_lang_Runtime_exec(self, api_call): method _handle_java_lang_ProcessBuilder_start (line 102) | def _handle_java_lang_ProcessBuilder_start(self, api_call): method _handle_libcore_io_IoBridge_open (line 106) | def _handle_libcore_io_IoBridge_open(self, api_call): method _handle_android_app_ActivityThread_handleReceiver (line 109) | def _handle_android_app_ActivityThread_handleReceiver(self, api_call): method _handle_android_app_ContextImpl_registerReceiver (line 112) | def _handle_android_app_ContextImpl_registerReceiver(self, api_call): method _handle_android_telephony_TelephonyManager_getDeviceId (line 118) | def _handle_android_telephony_TelephonyManager_getDeviceId(self, api_c... method _handle_android_telephony_TelephonyManager_getNetworkOperatorName (line 121) | def _handle_android_telephony_TelephonyManager_getNetworkOperatorName(... method _handle_android_telephony_TelephonyManager_getSubscriberId (line 124) | def _handle_android_telephony_TelephonyManager_getSubscriberId(self, a... method _handle_android_telephony_TelephonyManager_getLine1Number (line 127) | def _handle_android_telephony_TelephonyManager_getLine1Number(self, ap... method _handle_android_telephony_TelephonyManager_getNetworkOperator (line 130) | def _handle_android_telephony_TelephonyManager_getNetworkOperator(self... method _handle_android_telephony_TelephonyManager_getSimOperatorName (line 133) | def _handle_android_telephony_TelephonyManager_getSimOperatorName(self... method _handle_android_telephony_TelephonyManager_getSimCountryIso (line 136) | def _handle_android_telephony_TelephonyManager_getSimCountryIso(self, ... method _handle_android_telephony_TelephonyManager_getSimSerialNumber (line 139) | def _handle_android_telephony_TelephonyManager_getSimSerialNumber(self... method _handle_android_telephony_TelephonyManager_getNetworkCountryIso (line 142) | def _handle_android_telephony_TelephonyManager_getNetworkCountryIso(se... method _handle_android_telephony_TelephonyManager_getDeviceSoftwareVersion (line 145) | def _handle_android_telephony_TelephonyManager_getDeviceSoftwareVersio... method _handle_android_net_wifi_WifiInfo_getMacAddress (line 148) | def _handle_android_net_wifi_WifiInfo_getMacAddress(self, api_call): method _handle_android_app_SharedPreferencesImpl_EditorImpl_putInt (line 151) | def _handle_android_app_SharedPreferencesImpl_EditorImpl_putInt(self, ... method _handle_android_app_SharedPreferencesImpl_EditorImpl_putString (line 154) | def _handle_android_app_SharedPreferencesImpl_EditorImpl_putString(sel... method _handle_android_app_SharedPreferencesImpl_EditorImpl_putFloat (line 157) | def _handle_android_app_SharedPreferencesImpl_EditorImpl_putFloat(self... method _handle_android_app_SharedPreferencesImpl_EditorImpl_putBoolean (line 160) | def _handle_android_app_SharedPreferencesImpl_EditorImpl_putBoolean(se... method _handle_android_app_SharedPreferencesImpl_EditorImpl_putLong (line 163) | def _handle_android_app_SharedPreferencesImpl_EditorImpl_putLong(self,... method _handle_android_content_ContentResolver_query (line 166) | def _handle_android_content_ContentResolver_query(self, api_call): method _handle_android_content_ContentValues_put (line 169) | def _handle_android_content_ContentValues_put(self, api_call): method _handle_javax_crypto_Mac_doFinal (line 172) | def _handle_javax_crypto_Mac_doFinal(self, api_call): method _handle_android_util_Base64_encodeToString (line 175) | def _handle_android_util_Base64_encodeToString(self, api_call): method _handle_android_util_Base64_encode (line 178) | def _handle_android_util_Base64_encode(self, api_call): method _handle_android_app_ApplicationPackageManager_setComponentEnabledSetting (line 181) | def _handle_android_app_ApplicationPackageManager_setComponentEnabledS... method _handle_android_location_Location_getLatitude (line 196) | def _handle_android_location_Location_getLatitude(self, api_call): method _handle_android_location_Location_getLongitude (line 199) | def _handle_android_location_Location_getLongitude(self, api_call): method _handle_android_app_ApplicationPackageManager_getInstalledPackages (line 202) | def _handle_android_app_ApplicationPackageManager_getInstalledPackages... method _handle_dalvik_system_BaseDexClassLoader_findLibrary (line 205) | def _handle_dalvik_system_BaseDexClassLoader_findLibrary(self, api_call): method _handle_android_telephony_SmsManager_sendTextMessage (line 208) | def _handle_android_telephony_SmsManager_sendTextMessage(self, api_call): method _handle_android_util_Base64_decode (line 214) | def _handle_android_util_Base64_decode(self, api_call): method _handle_android_telephony_TelephonyManager_listen (line 217) | def _handle_android_telephony_TelephonyManager_listen(self, api_call): method _handle_android_content_ContentResolver_registerContentObserver (line 230) | def _handle_android_content_ContentResolver_registerContentObserver(se... method _handle_android_content_ContentResolver_insert (line 233) | def _handle_android_content_ContentResolver_insert(self, api_call): method _handle_android_accounts_AccountManager_getAccountsByType (line 236) | def _handle_android_accounts_AccountManager_getAccountsByType(self, ap... method _handle_dalvik_system_BaseDexClassLoader_findResources (line 240) | def _handle_dalvik_system_BaseDexClassLoader_findResources(self, api_c... method _handle_android_accounts_AccountManager_getAccounts (line 243) | def _handle_android_accounts_AccountManager_getAccounts(self, api_call): method _handle_android_telephony_SmsManager_sendMultipartTextMessage (line 246) | def _handle_android_telephony_SmsManager_sendMultipartTextMessage(self... method _handle_android_content_ContentResolver_delete (line 252) | def _handle_android_content_ContentResolver_delete(self, api_call): method _handle_android_media_AudioRecord_startRecording (line 255) | def _handle_android_media_AudioRecord_startRecording(self, api_call): method _handle_android_media_MediaRecorder_start (line 258) | def _handle_android_media_MediaRecorder_start(self, api_call): method _handle_android_content_BroadcastReceiver_abortBroadcast (line 261) | def _handle_android_content_BroadcastReceiver_abortBroadcast(self, api... method _handle_dalvik_system_DexFile_loadDex (line 264) | def _handle_dalvik_system_DexFile_loadDex(self, api_call): method _handle_dalvik_system_DexClass_dalvik_system_DexClassLoader (line 267) | def _handle_dalvik_system_DexClass_dalvik_system_DexClassLoader(self, ... method _handle_dalvik_system_DexFile_dalvik_system_DexFile (line 270) | def _handle_dalvik_system_DexFile_dalvik_system_DexFile(self, api_call): method _handle_dalvik_system_PathClassLoader_dalvik_system_PathClassLoader (line 273) | def _handle_dalvik_system_PathClassLoader_dalvik_system_PathClassLoade... method _handle_android_app_ActivityManager_killBackgroundProcesses (line 276) | def _handle_android_app_ActivityManager_killBackgroundProcesses(self, ... method _handle_android_os_Process_killProcess (line 279) | def _handle_android_os_Process_killProcess(self, api_call): method _handle_android_net_ConnectivityManager_setMobileDataEnabled (line 282) | def _handle_android_net_ConnectivityManager_setMobileDataEnabled(self,... method _handle_org_apache_http_impl_client_AbstractHttpClient_execute (line 285) | def _handle_org_apache_http_impl_client_AbstractHttpClient_execute(sel... method _handle_java_net_URL_openConnection (line 294) | def _handle_java_net_URL_openConnection(self, api_call): method _handle_dalvik_system_DexFile_loadClass (line 307) | def _handle_dalvik_system_DexFile_loadClass(self, api_call): method _handle_java_io_FileOutputStream_write (line 310) | def _handle_java_io_FileOutputStream_write(self, api_call): method _handle_java_io_FileInputStream_read (line 316) | def _handle_java_io_FileInputStream_read(self, api_call): method get_pair (line 321) | def get_pair(self, api_call): method lib_pairs (line 331) | def lib_pairs(self, api_call, key): method keyCleaner (line 342) | def keyCleaner(self, d): method run (line 356) | def run(self): FILE: modules/processing/dropped.py class Dropped (line 13) | class Dropped(Processing): method run (line 16) | def run(self): FILE: modules/processing/dumptls.py class TLSMasterSecrets (line 12) | class TLSMasterSecrets(Processing): method run (line 20) | def run(self): FILE: modules/processing/googleplay.py class GooglePlay (line 30) | class GooglePlay(Processing): method run (line 33) | def run(self): FILE: modules/processing/memory.py class VolatilityAPI (line 42) | class VolatilityAPI(object): method __init__ (line 49) | def __init__(self, memdump, osprofile=None): method get_dtb (line 61) | def get_dtb(self): method init_config (line 72) | def init_config(self): method pslist (line 124) | def pslist(self): method psxview (line 148) | def psxview(self): method callbacks (line 173) | def callbacks(self): method idt (line 200) | def idt(self): method gdt (line 230) | def gdt(self): method ssdt (line 279) | def ssdt(self): method timers (line 355) | def timers(self): method messagehooks (line 388) | def messagehooks(self): method getsids (line 435) | def getsids(self): method privs (line 469) | def privs(self): method malfind (line 505) | def malfind(self, dump_dir=None): method yarascan (line 533) | def yarascan(self): method apihooks (line 570) | def apihooks(self): method dlllist (line 602) | def dlllist(self): method handles (line 630) | def handles(self): method ldrmodules (line 651) | def ldrmodules(self): method mutantscan (line 710) | def mutantscan(self): method devicetree (line 741) | def devicetree(self): method svcscan (line 801) | def svcscan(self): method modscan (line 825) | def modscan(self): method imageinfo (line 846) | def imageinfo(self): method sockscan (line 865) | def sockscan(self): method netscan (line 886) | def netscan(self): class VolatilityManager (line 909) | class VolatilityManager(object): method __init__ (line 936) | def __init__(self, memfile, osprofile=None): method get_osprofile (line 960) | def get_osprofile(self): method run (line 964) | def run(self): method mask_filter (line 1003) | def mask_filter(self, old): method find_taint (line 1023) | def find_taint(self, res): method cleanup (line 1029) | def cleanup(self): class Memory (line 1038) | class Memory(Processing): method run (line 1041) | def run(self): FILE: modules/processing/network.py class Pcap (line 69) | class Pcap(object): method __init__ (line 75) | def __init__(self, filepath): method _dns_gethostbyname (line 117) | def _dns_gethostbyname(self, name): method _is_private_ip (line 129) | def _is_private_ip(self, ip): method _add_hosts (line 171) | def _add_hosts(self, connection): method _tcp_dissect (line 205) | def _tcp_dissect(self, conn, data): method _udp_dissect (line 226) | def _udp_dissect(self, conn, data): method _check_icmp (line 237) | def _check_icmp(self, icmp_data): method _icmp_dissect (line 248) | def _icmp_dissect(self, conn, data): method _check_dns (line 274) | def _check_dns(self, udpdata): method _add_dns (line 286) | def _add_dns(self, udpdata): method _add_domain (line 396) | def _add_domain(self, domain): method _check_http (line 418) | def _check_http(self, tcpdata): method _add_http (line 435) | def _add_http(self, tcpdata, dport): method _https_identify (line 487) | def _https_identify(self, conn, data): method _reassemble_smtp (line 532) | def _reassemble_smtp(self, conn, data): method _process_smtp (line 543) | def _process_smtp(self): method _check_irc (line 550) | def _check_irc(self, tcpdata): method _add_irc (line 563) | def _add_irc(self, tcpdata): method run (line 583) | def run(self): class Pcap2 (line 715) | class Pcap2(object): method __init__ (line 720) | def __init__(self, pcap_path, tlsmaster, network_path): method run (line 733) | def run(self): class NetworkAnalysis (line 775) | class NetworkAnalysis(Processing): method run (line 781) | def run(self): method get_tlsmaster (line 834) | def get_tlsmaster(self): function iplayer_from_raw (line 847) | def iplayer_from_raw(raw, linktype=1): function conn_from_flowtuple (line 863) | def conn_from_flowtuple(ft): function batch_sort (line 873) | def batch_sort(input_iterator, output_path, buffer_size=32000, output_cl... class SortCap (line 907) | class SortCap(object): method __init__ (line 911) | def __init__(self, path, linktype=1): method write (line 918) | def write(self, p): method __iter__ (line 923) | def __iter__(self): method close (line 930) | def close(self): method next (line 935) | def next(self): function sort_pcap (line 956) | def sort_pcap(inpath, outpath): function flowtuple_from_raw (line 962) | def flowtuple_from_raw(raw, linktype=1): function payload_from_raw (line 983) | def payload_from_raw(raw, linktype=1): function next_connection_packets (line 991) | def next_connection_packets(piter, linktype=1): function packets_for_stream (line 1011) | def packets_for_stream(fobj, offset): FILE: modules/processing/platform/linux.py class FilteredProcessLog (line 17) | class FilteredProcessLog(list): method __init__ (line 18) | def __init__(self, eventstream, **kwfilters): method __iter__ (line 22) | def __iter__(self): method __nonzero__ (line 31) | def __nonzero__(self): class LinuxSystemTap (line 34) | class LinuxSystemTap(BehaviorHandler): method __init__ (line 39) | def __init__(self, *args, **kwargs): method _check_for_probelkm (line 49) | def _check_for_probelkm(self): method handles_path (line 59) | def handles_path(self, path): method parse (line 64) | def parse(self, path): method run (line 90) | def run(self): class StapParser (line 97) | class StapParser(object): method __init__ (line 100) | def __init__(self, fd): method __iter__ (line 103) | def __iter__(self): FILE: modules/processing/platform/windows.py class MonitorProcessLog (line 16) | class MonitorProcessLog(list): method __init__ (line 20) | def __init__(self, eventstream): method init (line 25) | def init(self): method _api_COleScript_Compile (line 30) | def _api_COleScript_Compile(self, event): method _api_CWindow_AddTimeoutCode (line 35) | def _api_CWindow_AddTimeoutCode(self, event): method _api_CElement_put_innerHTML (line 39) | def _api_CElement_put_innerHTML(self, event): method _api_CDocument_write (line 43) | def _api_CDocument_write(self, event): method _api_CIFrameElement_CreateElement (line 48) | def _api_CIFrameElement_CreateElement(self, event): method _remember_service_name (line 56) | def _remember_service_name(self, event): method _add_service_name (line 70) | def _add_service_name(self, event): method _vbe6_newobject (line 81) | def _vbe6_newobject(self, event): method _api_vbe6_StringConcat (line 91) | def _api_vbe6_StringConcat(self, event): method _api_vbe6_Import (line 94) | def _api_vbe6_Import(self, event): method _api_vbe6_GetIDFromName (line 100) | def _api_vbe6_GetIDFromName(self, event): method _api_vbe6_Invoke (line 111) | def _api_vbe6_Invoke(self, event): method _api_pdf_eval (line 126) | def _api_pdf_eval(self, event): method _api_pdf_unescape (line 131) | def _api_pdf_unescape(self, event): method _api_modifier (line 150) | def _api_modifier(self, event): method __iter__ (line 162) | def __iter__(self): method __nonzero__ (line 192) | def __nonzero__(self): class WindowsMonitor (line 208) | class WindowsMonitor(BehaviorHandler): method __init__ (line 212) | def __init__(self, *args, **kwargs): method handles_path (line 218) | def handles_path(self, path): method parse (line 223) | def parse(self, path): method run (line 259) | def run(self): function NT_SUCCESS (line 266) | def NT_SUCCESS(value): class BehaviorReconstructor (line 269) | class BehaviorReconstructor(object): method __init__ (line 271) | def __init__(self): method process_apicall (line 274) | def process_apicall(self, event): method _api_CreateDirectoryW (line 282) | def _api_CreateDirectoryW(self, return_value, arguments, flags): method _api_RemoveDirectoryA (line 287) | def _api_RemoveDirectoryA(self, return_value, arguments, flags): method _api_MoveFileWithProgressW (line 292) | def _api_MoveFileWithProgressW(self, return_value, arguments, flags): method _api_CopyFileA (line 296) | def _api_CopyFileA(self, return_value, arguments, flags): method _api_DeleteFileA (line 303) | def _api_DeleteFileA(self, return_value, arguments, flags): method _api_FindFirstFileExA (line 309) | def _api_FindFirstFileExA(self, return_value, arguments, flags): method _api_LdrLoadDll (line 314) | def _api_LdrLoadDll(self, return_value, arguments, flags): method _api_NtCreateFile (line 317) | def _api_NtCreateFile(self, return_value, arguments, flags): method _api_NtReadFile (line 336) | def _api_NtReadFile(self, return_value, arguments, flags): method _api_NtWriteFile (line 341) | def _api_NtWriteFile(self, return_value, arguments, flags): method _api_GetFileAttributesW (line 346) | def _api_GetFileAttributesW(self, return_value, arguments, flags): method _api_RegOpenKeyExA (line 353) | def _api_RegOpenKeyExA(self, return_value, arguments, flags): method _api_RegDeleteKeyA (line 360) | def _api_RegDeleteKeyA(self, return_value, arguments, flags): method _api_RegQueryValueExA (line 368) | def _api_RegQueryValueExA(self, return_value, arguments, flags): method _api_RegSetValueExA (line 374) | def _api_RegSetValueExA(self, return_value, arguments, flags): method _api_NtClose (line 380) | def _api_NtClose(self, return_value, arguments, flags): method _api_URLDownloadToFileW (line 385) | def _api_URLDownloadToFileW(self, return_value, arguments, flags): method _api_InternetConnectA (line 392) | def _api_InternetConnectA(self, return_value, arguments, flags): method _api_InternetOpenUrlA (line 397) | def _api_InternetOpenUrlA(self, return_value, arguments, flags): method _api_DnsQuery_A (line 402) | def _api_DnsQuery_A(self, return_value, arguments, flags): method _api_connect (line 412) | def _api_connect(self, return_value, arguments, flags): method _api_NtCreateMutant (line 417) | def _api_NtCreateMutant(self, return_value, arguments, flags): method _api_CreateProcessInternalW (line 425) | def _api_CreateProcessInternalW(self, return_value, arguments, flags): method _api_ShellExecuteExW (line 430) | def _api_ShellExecuteExW(self, return_value, arguments, flags): method _api_system (line 437) | def _api_system(self, return_value, arguments, flags): method _api_IWbemServices_ExecQuery (line 442) | def _api_IWbemServices_ExecQuery(self, return_value, arguments, flags): method _api_IWbemServices_ExecQueryAsync (line 445) | def _api_IWbemServices_ExecQueryAsync(self, return_value, arguments, f... method _api_CoCreateInstance (line 450) | def _api_CoCreateInstance(self, return_value, arguments, flags): method _api_CoCreateInstanceEx (line 456) | def _api_CoCreateInstanceEx(self, return_value, arguments, flags): method _api_CoGetClassObject (line 464) | def _api_CoGetClassObject(self, return_value, arguments, flags): method _api_Ssl3GenerateKeyMaterial (line 472) | def _api_Ssl3GenerateKeyMaterial(self, return_value, arguments, flags): method _api_PRF (line 482) | def _api_PRF(self, return_value, arguments, flags): FILE: modules/processing/procmemory.py class ProcessMemory (line 42) | class ProcessMemory(Processing): method read_dump (line 44) | def read_dump(self, filepath): method create_idapy (line 66) | def create_idapy(self, process): method _fixup_pe_header (line 100) | def _fixup_pe_header(self, pe): method dump_images (line 122) | def dump_images(self, process, drop_dlls=False): method run (line 185) | def run(self): FILE: modules/processing/screenshots.py class Screenshots (line 15) | class Screenshots(Processing): method run (line 18) | def run(self): FILE: modules/processing/snort.py class Snort (line 18) | class Snort(Processing): method run (line 30) | def run(self): FILE: modules/processing/static.py class PortableExecutable (line 55) | class PortableExecutable(object): method __init__ (line 58) | def __init__(self, file_path): method _get_filetype (line 63) | def _get_filetype(self, data): method _get_peid_signatures (line 89) | def _get_peid_signatures(self): method _get_imported_symbols (line 102) | def _get_imported_symbols(self): method _get_exported_symbols (line 127) | def _get_exported_symbols(self): method _get_sections (line 145) | def _get_sections(self): method _get_resources (line 166) | def _get_resources(self): method _get_versioninfo (line 204) | def _get_versioninfo(self): method _get_imphash (line 233) | def _get_imphash(self): method _get_timestamp (line 243) | def _get_timestamp(self): method _get_pdb_path (line 256) | def _get_pdb_path(self): method _get_signature (line 269) | def _get_signature(self): method run (line 318) | def run(self): class WindowsScriptFile (line 345) | class WindowsScriptFile(object): method __init__ (line 411) | def __init__(self, filepath): method decode (line 414) | def decode(self, source, start="#:~^", end="^#~:"): method run (line 443) | def run(self): class OfficeDocument (line 470) | class OfficeDocument(object): method __init__ (line 487) | def __init__(self, filepath): method get_macros (line 490) | def get_macros(self): method deobfuscate (line 514) | def deobfuscate(self, code): method run (line 528) | def run(self): class Static (line 542) | class Static(Processing): method run (line 552) | def run(self): method _get_keys (line 585) | def _get_keys(self): FILE: modules/processing/strings.py class Strings (line 13) | class Strings(Processing): method run (line 16) | def run(self): FILE: modules/processing/suricata.py class Suricata (line 26) | class Suricata(Processing): method process_pcap_socket (line 41) | def process_pcap_socket(self): method process_pcap_binary (line 89) | def process_pcap_binary(self): method parse_eve_json (line 119) | def parse_eve_json(self): method parse_files (line 199) | def parse_files(self): method run (line 254) | def run(self): FILE: modules/processing/targetinfo.py class TargetInfo (line 12) | class TargetInfo(Processing): method run (line 15) | def run(self): FILE: modules/processing/virustotal.py class VirusTotal (line 18) | class VirusTotal(Processing): method run (line 26) | def run(self): method scan_file (line 66) | def scan_file(self, filepath, summary=False): method scan_url (line 85) | def scan_url(self, url, summary=False): method should_scan_file (line 99) | def should_scan_file(self, filetype): FILE: modules/reporting/elasticsearch.py class ElasticSearch (line 27) | class ElasticSearch(Report): method connect (line 30) | def connect(self): method do_index (line 52) | def do_index(self, obj): method process_behavior (line 68) | def process_behavior(self, results, paginate=100): method run (line 96) | def run(self, results): FILE: modules/reporting/jsondump.py function default (line 16) | def default(obj): class JsonDump (line 23) | class JsonDump(Report): method erase_calls (line 26) | def erase_calls(self, results): method restore_calls (line 38) | def restore_calls(self, results): method run (line 47) | def run(self, results): FILE: modules/reporting/moloch.py class Moloch (line 16) | class Moloch(Report): method run (line 19) | def run(self, results): FILE: modules/reporting/mongodb.py class MongoDB (line 23) | class MongoDB(Report): method connect (line 29) | def connect(self): method store_file (line 47) | def store_file(self, file_obj, filename=""): method run (line 76) | def run(self, results): FILE: modules/reporting/reporthtml.py class ReportHTML (line 23) | class ReportHTML(Report): method run (line 26) | def run(self, results): FILE: oldweb/analysis/forms.py class CommentForm (line 10) | class CommentForm(forms.ModelForm): class Meta (line 11) | class Meta: class TagForm (line 15) | class TagForm(forms.ModelForm): class Meta (line 16) | class Meta: FILE: oldweb/analysis/templatetags/analysis_tags.py function mongo_id (line 4) | def mongo_id(value): function is_dict (line 15) | def is_dict(value): function get_item (line 20) | def get_item(dictionary, key): function filter_key_if_has (line 24) | def filter_key_if_has(l, key): function custom_length (line 32) | def custom_length(dictionary, keys): function volsort (line 42) | def volsort(l): function isdeadip (line 57) | def isdeadip(ipaddr, analysis): function sigsort (line 68) | def sigsort(l): function ensurelist (line 91) | def ensurelist(o): function sizeof_fmt (line 97) | def sizeof_fmt(num): function process_name (line 106) | def process_name(pid, analysis): FILE: oldweb/analysis/views.py function index (line 38) | def index(request): function pending (line 74) | def pending(request): function chunk (line 87) | def chunk(request, task_id, pid, pagenum): function filtered_chunk (line 131) | def filtered_chunk(request, task_id, pid, category): function search_behavior (line 182) | def search_behavior(request, task_id): function report (line 250) | def report(request, task_id): function latest_report (line 297) | def latest_report(request): function file (line 302) | def file(request, category, object_id): function moloch (line 335) | def moloch(request, **kwargs): function full_memory_dump_file (line 361) | def full_memory_dump_file(request, analysis_number): function _search_helper (line 373) | def _search_helper(obj, k, value): function search (line 391) | def search(request): function remove (line 440) | def remove(request, task_id): function pcapstream (line 506) | def pcapstream(request, task_id, conntuple): function export_analysis (line 555) | def export_analysis(request, task_id): function export (line 592) | def export(request, task_id): function import_analysis (line 638) | def import_analysis(request): FILE: oldweb/compare/views.py function left (line 19) | def left(request, left_id): function hash (line 55) | def hash(request, left_id, right_hash): function both (line 93) | def both(request, left_id, right_id): FILE: oldweb/dashboard/views.py function timestamp (line 19) | def timestamp(dt): function index (line 26) | def index(request): FILE: oldweb/static/js/jquery.js function s (line 2) | function s(a){var b=a.length,c=n.type(a);return"function"===c||n.isWindo... function gb (line 2) | function gb(a,b,d,e){var f,h,j,k,l,o,r,s,w,x;if((b?b.ownerDocument||b:v)... function hb (line 2) | function hb(){var a=[];function b(c,e){return a.push(c+" ")>d.cacheLengt... function ib (line 2) | function ib(a){return a[u]=!0,a} function jb (line 2) | function jb(a){var b=n.createElement("div");try{return!!a(b)}catch(c){re... function kb (line 2) | function kb(a,b){var c=a.split("|"),e=a.length;while(e--)d.attrHandle[c[... function lb (line 2) | function lb(a,b){var c=b&&a,d=c&&1===a.nodeType&&1===b.nodeType&&(~b.sou... function mb (line 2) | function mb(a){return function(b){var c=b.nodeName.toLowerCase();return"... function nb (line 2) | function nb(a){return function(b){var c=b.nodeName.toLowerCase();return(... function ob (line 2) | function ob(a){return ib(function(b){return b=+b,ib(function(c,d){var e,... function pb (line 2) | function pb(a){return a&&"undefined"!=typeof a.getElementsByTagName&&a} function qb (line 2) | function qb(){} function rb (line 2) | function rb(a){for(var b=0,c=a.length,d="";c>b;b++)d+=a[b].value;return d} function sb (line 2) | function sb(a,b,c){var d=b.dir,e=c&&"parentNode"===d,f=x++;return b.firs... function tb (line 2) | function tb(a){return a.length>1?function(b,c,d){var e=a.length;while(e-... function ub (line 2) | function ub(a,b,c){for(var d=0,e=b.length;e>d;d++)gb(a,b[d],c);return c} function vb (line 2) | function vb(a,b,c,d,e){for(var f,g=[],h=0,i=a.length,j=null!=b;i>h;h++)(... function wb (line 2) | function wb(a,b,c,d,e,f){return d&&!d[u]&&(d=wb(d)),e&&!e[u]&&(e=wb(e,f)... function xb (line 2) | function xb(a){for(var b,c,e,f=a.length,g=d.relative[a[0].type],h=g||d.r... function yb (line 2) | function yb(a,b){var c=b.length>0,e=a.length>0,f=function(f,g,h,i,k){var... function x (line 2) | function x(a,b,c){if(n.isFunction(b))return n.grep(a,function(a,d){retur... function D (line 2) | function D(a,b){while((a=a[b])&&1!==a.nodeType);return a} function G (line 2) | function G(a){var b=F[a]={};return n.each(a.match(E)||[],function(a,c){b... function I (line 2) | function I(){l.removeEventListener("DOMContentLoaded",I,!1),a.removeEven... function K (line 2) | function K(){Object.defineProperty(this.cache={},0,{get:function(){retur... function P (line 2) | function P(a,b,c){var d;if(void 0===c&&1===a.nodeType)if(d="data-"+b.rep... function Z (line 3) | function Z(){return!0} function $ (line 3) | function $(){return!1} function _ (line 3) | function _(){try{return l.activeElement}catch(a){}} function jb (line 3) | function jb(a,b){return n.nodeName(a,"table")&&n.nodeName(11!==b.nodeTyp... function kb (line 3) | function kb(a){return a.type=(null!==a.getAttribute("type"))+"/"+a.type,a} function lb (line 3) | function lb(a){var b=gb.exec(a.type);return b?a.type=b[1]:a.removeAttrib... function mb (line 3) | function mb(a,b){for(var c=0,d=a.length;d>c;c++)L.set(a[c],"globalEval",... function nb (line 3) | function nb(a,b){var c,d,e,f,g,h,i,j;if(1===b.nodeType){if(L.hasData(a)&... function ob (line 3) | function ob(a,b){var c=a.getElementsByTagName?a.getElementsByTagName(b||... function pb (line 3) | function pb(a,b){var c=b.nodeName.toLowerCase();"input"===c&&T.test(a.ty... function sb (line 3) | function sb(b,c){var d,e=n(c.createElement(b)).appendTo(c.body),f=a.getD... function tb (line 3) | function tb(a){var b=l,c=rb[a];return c||(c=sb(a,b),"none"!==c&&c||(qb=(... function xb (line 3) | function xb(a,b,c){var d,e,f,g,h=a.style;return c=c||wb(a),c&&(g=c.getPr... function yb (line 3) | function yb(a,b){return{get:function(){return a()?void delete this.get:(... function g (line 3) | function g(){f.style.cssText="-webkit-box-sizing:border-box;-moz-box-siz... function Fb (line 3) | function Fb(a,b){if(b in a)return b;var c=b[0].toUpperCase()+b.slice(1),... function Gb (line 3) | function Gb(a,b,c){var d=Ab.exec(b);return d?Math.max(0,d[1]-(c||0))+(d[... function Hb (line 3) | function Hb(a,b,c,d,e){for(var f=c===(d?"border":"content")?4:"width"===... function Ib (line 3) | function Ib(a,b,c){var d=!0,e="width"===b?a.offsetWidth:a.offsetHeight,f... function Jb (line 3) | function Jb(a,b){for(var c,d,e,f=[],g=0,h=a.length;h>g;g++)d=a[g],d.styl... function Kb (line 3) | function Kb(a,b,c,d,e){return new Kb.prototype.init(a,b,c,d,e)} function Sb (line 3) | function Sb(){return setTimeout(function(){Lb=void 0}),Lb=n.now()} function Tb (line 3) | function Tb(a,b){var c,d=0,e={height:a};for(b=b?1:0;4>d;d+=2-b)c=R[d],e[... function Ub (line 3) | function Ub(a,b,c){for(var d,e=(Rb[b]||[]).concat(Rb["*"]),f=0,g=e.lengt... function Vb (line 3) | function Vb(a,b,c){var d,e,f,g,h,i,j,k,l=this,m={},o=a.style,p=a.nodeTyp... function Wb (line 3) | function Wb(a,b){var c,d,e,f,g;for(c in a)if(d=n.camelCase(c),e=b[d],f=a... function Xb (line 3) | function Xb(a,b,c){var d,e,f=0,g=Qb.length,h=n.Deferred().always(functio... function qc (line 4) | function qc(a){return function(b,c){"string"!=typeof b&&(c=b,b="*");var ... function rc (line 4) | function rc(a,b,c,d){var e={},f=a===mc;function g(h){var i;return e[h]=!... function sc (line 4) | function sc(a,b){var c,d,e=n.ajaxSettings.flatOptions||{};for(c in b)voi... function tc (line 4) | function tc(a,b,c){var d,e,f,g,h=a.contents,i=a.dataTypes;while("*"===i[... function uc (line 4) | function uc(a,b,c,d){var e,f,g,h,i,j={},k=a.dataTypes.slice();if(k[1])fo... function x (line 4) | function x(a,b,f,h){var j,r,s,u,w,x=b;2!==t&&(t=2,g&&clearTimeout(g),c=v... function Ac (line 4) | function Ac(a,b,c,d){var e;if(n.isArray(b))n.each(b,function(b,e){c||wc.... function Jc (line 4) | function Jc(a){return n.isWindow(a)?a:9===a.nodeType&&a.defaultView} FILE: oldweb/static/js/lightbox.js function LightboxOptions (line 15) | function LightboxOptions() { function Lightbox (line 35) | function Lightbox(options) { function addToAlbum (line 135) | function addToAlbum($link) { function postResize (line 253) | function postResize() { FILE: oldweb/submission/views.py function force_int (line 23) | def force_int(value): function dropped_filepath (line 31) | def dropped_filepath(task_id, sha1): function render_index (line 48) | def render_index(request, kwargs={}): function index (line 88) | def index(request, task_id=None, sha1=None): function status (line 235) | def status(request, task_id): function resubmit (line 250) | def resubmit(request, task_id): function submit_dropped (line 275) | def submit_dropped(request, task_id, sha1): FILE: oldweb/web/headers.py class CuckooHeaders (line 14) | class CuckooHeaders(object): method process_response (line 17) | def process_response(self, request, response): FILE: utils/api.py function json_error (line 37) | def json_error(status_code, message): function custom_headers (line 44) | def custom_headers(response): function tasks_create_file (line 57) | def tasks_create_file(): function tasks_create_url (line 100) | def tasks_create_url(): function tasks_list (line 146) | def tasks_list(limit=None, offset=None): function tasks_view (line 186) | def tasks_view(task_id): function tasks_reschedule (line 217) | def tasks_reschedule(task_id, priority=None): function tasks_delete (line 235) | def tasks_delete(task_id): function tasks_report (line 260) | def tasks_report(task_id, report_format="json"): function task_screenshots (line 323) | def task_screenshots(task_id=0, screenshot=None): function rereport (line 350) | def rereport(task_id): function files_view (line 367) | def files_view(md5=None, sha256=None, sample_id=None): function files_get (line 388) | def files_get(sha256): function pcap_get (line 400) | def pcap_get(task_id): function machines_list (line 418) | def machines_list(): function machines_view (line 431) | def machines_view(name=None): function cuckoo_status (line 444) | def cuckoo_status(): function memorydumps_list (line 510) | def memorydumps_list(task_id): function memorydumps_get (line 528) | def memorydumps_get(task_id, pid=None): function vpn_status (line 548) | def vpn_status(): FILE: utils/community.py function download_archive (line 23) | def download_archive(): function extract_archive (line 34) | def extract_archive(data): function installdir (line 48) | def installdir(src, dst, force, rewrite, origin=[]): function install (line 102) | def install(enabled, force, rewrite, archive): function main (line 138) | def main(): FILE: utils/db_migration/env.py function run_migrations_offline (line 33) | def run_migrations_offline(): function run_migrations_online (line 47) | def run_migrations_online(): FILE: utils/db_migration/versions/from_0_6_to_1_1.py function upgrade (line 43) | def upgrade(): function mongo_upgrade (line 258) | def mongo_upgrade(): function downgrade (line 311) | def downgrade(): FILE: utils/db_migration/versions/from_1_1_to_1_2-added_states.py function _perform (line 43) | def _perform(upgrade): function upgrade (line 225) | def upgrade(): function downgrade (line 228) | def downgrade(): FILE: utils/db_migration/versions/from_1_1_to_1_2-extend_file_type.py function _perform (line 29) | def _perform(upgrade): function upgrade (line 108) | def upgrade(): function downgrade (line 111) | def downgrade(): FILE: utils/db_migration/versions/from_1_2_to_1_3-add_task_owner.py function upgrade (line 21) | def upgrade(): function downgrade (line 25) | def downgrade(): FILE: utils/db_migration/versions/from_1_2_to_2_0-guest_status.py function upgrade (line 21) | def upgrade(): function downgrade (line 24) | def downgrade(): FILE: utils/db_migration/versions/from_1_2_to_2_0-machine_options.py function upgrade (line 21) | def upgrade(): function downgrade (line 24) | def downgrade(): FILE: utils/db_migration/versions/from_1_2_to_2_0-processing-column.py function upgrade (line 21) | def upgrade(): function downgrade (line 24) | def downgrade(): FILE: utils/db_migration/versions/from_1_2_to_2_0-taken-route.py function upgrade (line 21) | def upgrade(): function downgrade (line 24) | def downgrade(): FILE: utils/dnsserve.py function dns_serve (line 16) | def dns_serve(args): FILE: utils/machine.py function update_conf (line 17) | def update_conf(machinery, args, action=None): function main (line 68) | def main(): FILE: utils/process.py function process (line 30) | def process(target=None, copy_path=None, task=None, report=False, auto=F... function process_wrapper (line 45) | def process_wrapper(*args, **kwargs): function init_worker (line 52) | def init_worker(): function autoprocess (line 55) | def autoprocess(parallel=1): function main (line 156) | def main(): FILE: utils/process2.py function process (line 24) | def process(target=None, copy_path=None, task=None): function instance (line 35) | def instance(instance): function main (line 76) | def main(): FILE: utils/rooter.py function run (line 17) | def run(*args): function nic_available (line 23) | def nic_available(interface): function rt_available (line 33) | def rt_available(rt_table): function vpn_status (line 43) | def vpn_status(): function vpn_enable (line 53) | def vpn_enable(name): function vpn_disable (line 57) | def vpn_disable(name): function forward_drop (line 61) | def forward_drop(): function enable_nat (line 65) | def enable_nat(interface): function disable_nat (line 70) | def disable_nat(interface): function init_rttable (line 75) | def init_rttable(rt_table, interface): function flush_rttable (line 87) | def flush_rttable(rt_table): function forward_enable (line 94) | def forward_enable(src, dst, ipaddr): function forward_disable (line 103) | def forward_disable(src, dst, ipaddr): function srcroute_enable (line 112) | def srcroute_enable(rt_table, ipaddr): function srcroute_disable (line 117) | def srcroute_disable(rt_table, ipaddr): FILE: utils/smtp_sinkhole.py class SmtpSink (line 13) | class SmtpSink(SMTPServer): method process_message (line 19) | def process_message(self, peer, mailfrom, rcpttos, data): FILE: utils/stats.py function timestamp (line 16) | def timestamp(dt): function main (line 20) | def main(): FILE: utils/submit.py function main (line 27) | def main(): FILE: utils/vpncheck.py function get_ip_address (line 20) | def get_ip_address(interface):