After several months of work, we finally released Cuckoo Sandbox 0.6.
This release represents an important step forward in the growth of the project; several new features have been introduced, along with extensive work to improve the overall stability and quality of the sandbox and the results it's now able to produce. Some of this closes down a few of the last milestones we had left in our plan for the Magnificent7 program, some others were designed and introduced as a result of our constant experimentation and tinkering with the latest malware out there.
The core focus of this release is the addition of a completely new mechanism for the exchange of results between the controller and the analysis machines. Mark and Jurriaan worked restlessly on what we now call netlog. Fundamentally it consists in a custom socket server called ResultServer that listens on the controller for incoming connections from the guests, which are now able to send back behavioral logs, dumped files, screenshots and memory dumps in real-time.
read more......https://community.rapid7.com/community/open_source/magnificent7/blog/2013/04/16/fooling-malware-like-a-boss-with-cuckoo-sandbox