This document provides a high-level view of the changes introduced in malboxes by release. For a detailed view of what has changed, refer to the commit history on GitHub.
- Enhancements
-
-
Experimental profiles feature gained shortcut creation support. See
profile-example.jsfor syntax. (#85) -
Experimental profiles registry changes now happen after package installation. This enables registry changes to alter program configuration. (#86)
-
Experimental profiles registry changes now create missing registry paths by default (#84)
-
Added configuration parameters for keyboard locale and proxy settings (#72, #78)
-
Chocolatey will force the proxy configuration if set (#74)
-
Custom provisioners can be defined in profiles configuration (#73)
-
Removed
fiddler4chocolatey package (#89)
-
- Bug fixes
BlackHat USA Arsenal 2017 edition!
- Enhancements
-
-
New templates: Windows 7 64-bit: win7_64_analyst (#42)
-
Experimental profiles features: a separate configuration from OS templates that enables to add new installed packages, files and registry changes (#51)
-
Support for trial versions of Windows 7 Enterprise x86 and x64
-
Initial support for vSphere (ESXi / vCenter) on the back-end (#30, #68)
-
Better out of the box support of Fedora, CentOS and RedHat as host (#53)
-
Use user cache directories for packer. This avoids caching in memory-backed locations to prevent unnecessary memory pressure during builds or free space issues on low RAM systems (#45)
-
Default timeout for WinRM is 60m (from 30m) to allow slower machines the time to go through Windows' install process
-
Increased default disk size to 20GB
-
Added a --force flag to overwrite pre-existing packer artifacts or vagrant boxes (#46)
-
debug: Passes -on-error=abort to packer to allow investigation of failures (#35)
-
Documentation improvements
-
- Bug fixes
-
Released on: 2017-07-25
-
Released by: @obilodeau
-
Release beer: Sierra Nevada Hop Hunter IPA
Action: issues created and resolved | full diff
Thanks to the following people who contributed to this release:
The #RSAC gift release!
- Enhancements
-
-
Updated Windows 10 to Anniversary Edition (#21)
-
pip installsupport and documentation (#5) -
Config:
ida_pathwill upload IDA Remote Debugger and open appropriate ports (#8) -
Config:
tools_pathwill upload all of this Path’s content intoC:\Tools(#8) -
Config:
usernameandpasswordsupport (#11) -
Config: Added
windows_defender,windows_updates,disk_sizeandchoco_packagesoptions (#11, #14) -
Provides
fiddler4instead offiddler -
Provides
npcapinstead ofwinpcapwhich works with Windows 10 (#2, #26) -
Added
--debugand--skipcommand-line flags (#20) -
Added tests
-
- Bug fixes
NorthSec 2016 edition
First proof of concept release of malboxes.
We can build Windows 7 and Windows 10 virtual machines with useful malware analysis tools pre-installed. Without a license key it will use the evaluation version of Windows 10 which is automatically downloaded.
Released by @obilodeau on 2016-05-17.
Announced live at the NorthSec conference. Here are the slides (PDF) and here is the video.