Skip to content

nicpenning/PowerCuckoo

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

70 Commits
images
images
 
 
LICENSE
LICENSE
 
 
PowerCuckoo.ps1
PowerCuckoo.ps1
 
 
README.md
README.md
 
 

Repository files navigation

PowerCuckoo

Using PowerShell on Windows with Outlook to interact with Cuckoo

What's this?

  • Customizable script that reads Outlook email using the Outlook ComObject to read, parse, and send emails to Cuckoo for analysis.

Requirements:

  • Windows 7+
  • Outlook 2010+ (Running)
  • PowerShell
  • Cuckoo 2.0+ (API running)

Setup

  • Download PowerCuckoo.ps1
  • Open Outlook
  • Run ./PowerCuckoo.ps1

What works:

  • Tested on Windows 10 with Office 365 (Version 1901)
  • Reading a specific email folder to look for URLs or Attachments and submits them!
  • Warning: Becareful using the built-in Junk Email folder, for it may distort URLs/Attachments for analysis!

Usage:

TODO:

  • Add Auto-Setup/Install
  • Create EWS version
  • Add SSL/TLS Support
  • Add Alerting/Reporting

If you would like to join our Teams channel please send a request to this address: 7d98f163.Yamsec401.onmicrosoft.com@amer.teams.ms

About

Using PowerShell to interact with Cuckoo

Resources

Readme

License

MIT license
Activity

Stars

2 stars

Watchers

2 watching

Forks

1 fork
Report repository

Releases 4

Fixed API Auth Bug Latest
Nov 22, 2019
+ 3 releases

Packages

No packages published

Languages