Peekaboo Extended Email Attachment Behavior Observation Owl
- PeekabooAV is an Anti Virus software
- It gets email attachments from AMaViSd, checks them, uses Cuckoo for behavioral checks, and evaluates and rates fully automatic
- PeekabooAV is written in Python, multi-threaded, scalable, has a very powerful ruleset, and is easy to extend and personalize
- It is able to detect: malware by its behavior, exploitation of zero days, and targeted attacks
For news and announcements follow us on twitter @peekabooAV.
- Python 2.7
- Cuckoo 2.0
- Our AMaViSd Fork
Clone the repository
git clone https://github.com/scVENUS/PeekabooAV.gitInstall dependencies
pip install -r requirements.txtCompile chown2me
cd bin/
make chown2me
sudo setcap cap_chown+ep chown2meInstall PeekabooAV
python setup.py installTake a look at peekaboo.conf.sample and ruleset.conf.sample.
Runs the unit tests
python test.py Now, you can run PeekabooAV with
peekaboo -c /path/to/your/peekaboo.confNote: If you have your PeekabooAV configuration file named peekaboo.conf
and put it in the base directory of the repository you can omit the -c option.
Also, for detailed command line options run
peekaboo --helpYou can now run PeekabooAV without installing it using the peekaboo_debug.py script.
python peekaboo_debug.py -c /path/to/your/peekaboo.confNote: peekaboo_debug.py provides the same command line options like peekaboo.
They can be displayed by running
python peekaboo_debug.py --helpPlease read CONTRIBUTING.md for details on our code of conduct, and the process for submitting pull requests to us.
We use SemVer for versioning. For the versions available, see the tags on this repository.
- Felix Bauer - Security Analyst and Project Leader - @Jack28
- Sebastian Deiss - Technical Lead - @SebastianDeiss
This project is licensed under the GPL 3 license - see the LICENSE.txt file for details.