v3.0.2

3.0.2 (2021-12-24)

Documentations

• README: add instructions to improve anti-sandbox execution (92e226f)
• README: harden network by NATting to dirty NIC instead of using host-only network (f8ff918)

v3.0.1

3.0.1 (2021-12-11)

Documentations

• README: add instructions how to disable CAPEv2 cronjobs (5934561)

v3.0.0

3.0.0 (2021-12-07)

⚠ BREAKING CHANGES

• saltstack: zabbix-agent-formula has been removed
• saltstack: podman-formula has been removed
• saltstack: nginx-formula has been removed
• saltstack: filebeat-formula has been removed

Features

• capev2/CAPEv2: update commit (f99120a)
• capev2/doomedraven-tools: update commit (afe9784)

Code Refactoring

• saltstack: remove filebeat-formula (366a166)
• saltstack: remove nginx-formula (7aa48d0)
• saltstack: remove podman-formula (2c8db26)
• saltstack: remove zabbix-agent-formula (8c3a7c8)

Documentations

• README: add imagehash python module installation (a0d039a)
• README: add win7_sp1_64bit tag in /opt/CAPEv2/conf/kvm.conf (5279a34)
• README: add instructions for MISP integrations (799fb70)
• README: add instructions to clean failed tasks (2a0337f)
• README: add notes on memory usage for memory.conf (a24c030)
• README: change ${USER} to %USERNAME% for cmd (e1530fa)
• README: change turn off to shutdown after taking snapshot (2ea0d66)
• README: change guest name from cuckoo1 to win7-64-01 (a142d78)
• README: default vagrant to Libvirt provider (e5b25cb)
• README: disable tor by default (d0d6c4f)
• README: disable Flare CAPA analysis on CAPE payload to reduce host's memory usage during processing caused by ransomware (41114bb)
• README: enable antiransomware in /opt/CAPEv2/conf/processing.conf (f097d4c)
• README: improve libvirt static DHCP configurations for the cuckoo1 VM (ebaa925)
• README: in /opt/CAPEv2/conf/kvm.conf, configure tags after ip (1656d1f)
• README: move timezone setting instruction at the end of CAPEv2 installation because the timezone got reset to UTC by the installation scripts after finished installations (28bbd47)
• README: remove /var/log/capev2 logging (8f2162f)
• README: remove $ sign to simplify copy/paste (b53e412)
• README: remove resultserver_ip from /opt/CAPEv2/conf/kvm.conf because of CAPEv2 new changes (eb55c6f)
• README: remove deprecated display_browser_martians, display_office_martians, display_shrike, expanded_dashboard, display_et_portal, display_pt_portal, and zipped_downloadsections from/opt/CAPEv2/conf/auxiliary.conf` (f85c0ef)

v2.0.0

2.0.0 (2021-03-09)

⚠ BREAKING CHANGES

• submodule: Pillar format for pillar/zabbix-agent.sls.example has changed.

Features

• submodule: Update capev2/doomedraven-tools (6af702a)
• submodule: Update filebeat-formula to v1.1.1 (09d7c19)
• submodule: Update zabbix-agent-formula to v2.0.1 (b30c92d)

Fixes

• salt: Remove Filebeat from salt/top.sls (c312676)

Documentations

• README: Add USER=cape; before executing cape2.sh (3e1e4a1)
• README: Add instruction to deploy Filebeat (33f7ed8)
• README: Add instruction to view CAPEv2 web page after finished setup (36dbba2)
• README: After finished Firefox installation, set Firefox as default browser (1959688)
• README: CAPEv2 services need to be stopped during agent installations (4c33482)
• README: Fix memory_dump = on mistake in /opt/CAPEv2/conf/kvm.conf and /opt/CAPEv2/conf/cuckoo.conf (3098a8b)

v1.3.0

1.3.0 (2021-03-07)

Features

• https: Add https state to configure NGINX for CAPEv2 HTTPS (64892d3)
• nginx: Add state nginx_log_permission to allow filebeat container to read logs (2bea3c0)
• submodule: Add filebeat-formula v1.1.0 (4eceaf5)
• submodule: Add nginx-formula v1.0.1 (80af7a7)
• submodule: Add podman-formula v2.2.1 (f117f9b)
• submodule: Add zabbix-agent-formula v1.0.0 (b62ad2a)
• submodule: Update capev2/CAPEv2 (37ad0d3)
• submodule: Update capev2/doomedraven-tools (358e401)

Code Refactoring

• nginx: Remove existing nginx state in favor of nginx-formula (7fbd748)
• submodule: Remove cockpit-formula in favor of zabbix-agent-formula (88fa044)

Documentations

• README: Add configurations for /lib/systemd/system/cape-rooter.service (78a371c)
• README: Add configurations for /lib/systemd/system/cape-rooter.service (2dc45a4)
• README: Add configurations for /lib/systemd/system/cape.service (3643fde)
• README: Add configurations for /opt/CAPEv2/conf/auxiliary.conf (47d6f54)
• README: Add configurations for /opt/CAPEv2/conf/memory.conf (a1586ef)
• README: Add configurations for /opt/CAPEv2/conf/reporting.conf (11a0e61)
• README: Add description to change Vagrant box memory from default 5GB to 12GB (e2d1703)
• README: Add instruction to set timezone (c02b239)
• README: Add instructions to copy zabbix-agent and filebeat pillar files (9510337)
• README: Add instructions to fix Volatility3 and TRiD (466c1cb)
• README: Add more instructions for Maintenance (50c1fa6)
• README: Improve and add more instructions for CAPEv2 agent (884d1b9)
• README: Improve descriptions for systemctl daemon-reload (cda11ae)
• README: Improve instructions for obtaining agent MAC Address for configuring static DHCP (b386b0b)
• README: Increase agent memory from 1GB to 4GB and from 1 vCPU to 2 vCPUs (02b5f7f)
• README: Remove Section Memory Lock because this procedure is not practical and causing cape-processor.service failed with Memory Error (3055225)
• README: Update CAPEv2 installation instruction due to changes in cape2.sh script and also create /var/log/capev2 to store CAPEv2 journald logs (7e1da03)
• README: Update configurations for /lib/systemd/system/cape-processor.service (29419aa)
• README: Update configurations for /opt/CAPEv2/conf/api.conf (fe5ce60)
• README: Update configurations for /opt/CAPEv2/conf/cuckoo.conf (9fdf511)
• README: Update configurations for /opt/CAPEv2/conf/kvm.conf (4c59d3c)
• README: Update configurations for /opt/CAPEv2/conf/processing.conf (ad3c229)
• README: Update configurations for /opt/CAPEv2/conf/web.conf (f115ee1)
• README: Update provision instructions due to nginx state have been replaced with nginx-formula and cockpit-formula have been removed in favor of zabbix-agent-formula (8d91ac6)
• vagrant: Add comments for port forwarding (43a502f)

v1.2.2

1.2.2 (2021-01-28)

Documentations

• README: Add sudo systemctl daemon-reload to apply changes in /lib/systemd/system/cape-processor.service (2b44649)

v1.2.1

1.2.1 (2021-01-22)

Performance Improvements

• vagrant: Increase memory from 4GB to 5GB (37a4150)

Documentations

• README: Add instruction to fine tune cape-processor.service via /lib/systemd/system/cape-processor.service (73a4930)
• README: Increase memory limit for CAPEv2 services from 1GB to 2GB in /etc/security/limits.conf (96b3d16)

v1.2.0

1.2.0 (2021-01-20)

Features

• submodule: Update cockpit-formula to v1.0.2 (6599680)

Continuous Integrations

• AppVeyor: Upgrade Ubuntu from 18.04 to 20.04 (1414a17)

v1.1.1

1.1.1 (2021-01-15)

Fixes

• README: Add tags = x64 to /opt/CAPEv2/conf/api.conf (e46a1f2)
• README: Replace systemctl restart to systemctl stop and systemctl restart due to cape.service doesn't reload config via systemctl restart (d4fa3ed)

v1.1.0

1.1.0 (2021-01-10)

Features

• salt: Add SaltStack implementations (5353f09)
• submodule: Add Cockpit Formula (56b8883)
• submodule: Update CAPEv2 (87be809)

Fixes

• vagrant: Remove --copy-links from rsync because CAPEv2 repo added a placeholder symlink file data/yara/monitor/yara (93d2731)

Documentations

• README: Add instruction to clean up old data (0454e24)
• README: Add instruction to eject installation media (299d6e3)
• README: Add instruction to lock memory to 1GB (2f5e4cd)
• README: Add instructions for SaltStack, Cockpit, and NGINX (2b65a47)
• README: Add instructions to increase disk storage (61c2693)
• README: Add systemd instruction to disable graphical boot (78a804d)
• README: Improvde descriptions for changing NAT to Host-only network (ff2ec79)
• README: Reduce cuckoo1 memory from 2GB to 1GB (c116fd8)
• README: Update README (3418a8b)