000032796 - Does RSA Security Analytics Malware Analysis support Cuckoo sandbox?

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000032796
Applies ToRSA Product Set: Security Analytics
RSA Product/Service Type: Malware Analysis
Platform: CentOS
Platform (Other): Cuckoo Sandbox
O/S Version: EL6
IssueSecurity Analytics Malware Analysis contains what seems to be a configuration file for Cuckoo, /var/lib/rsamalware/spectrum/conf/cuckooSandboxConfig.xml, but there is no option to configure it through the UI.
CauseCuckoo sandbox is currently not supported by Malware Analysis.
The file was added during the planning stage but currently there is no ETA for supporting Cuckoo sandbox.
ResolutionThreatGrid and GFI sandbox are the only two solutions that Malware Analysis currently supports.
NotesCustomers may try integrating Cuckoo sandbox using the instructions found on RSA Link, but this solution is not officially supported by RSA.