Home

Welcome to the PeekabooAV wiki!

Peekaboo Extended Email Attachment Behavior Observation Owl

PeekabooAV is an Anti Virus software
It gets email attachments from AMaViSd, checks them, uses Cuckoo for behavioral checks, and evaluates and rates fully automatic, see Sample Lifecycle
PeekabooAV is written in Python, multi-threaded, scalable, has a very powerful ruleset, and is easy to extend and personalize
It is able to detect: malware by its behavior, exploitation of zero days, and targeted attacks
For a server setup see Server Concept
If you want to use the wonderful installer Felix wrote, check out PeekabooAV-Installer
Want to work with us?

For news and announcements follow us on twitter @peekabooAV.

Felix Bauer, Sebastian Deiss, Christoph Herrmann

Schmid, Nonnenmann (2018) - Evaluierung und Erweiterung von PeekabooAV zur Detektierung von Malware in E-Mail
Stucki (2018) - IPA Proof of Concept (PoC) Mail-Security Gateway mit Verhaltensanalyse von Mailanhängen mittels Sandboxing

09-Jun-2018: PeekabooAV - Nightmares and Fairytales by Felix Bauer
19-May-2018: PeekabooAV Lightning Talk by Felix Bauer, Securi-Tay 2018 (https://2018.securi-tay.co.uk/)
30-Dec-2017: 34C3 (34. Chaos Communication Congress), PeekabooAV Lightning Talk by Felix Bauer
13-Nov-2017: Slides also available in English now: PeekabooAV - Open Source Antivirus with Behaviour Analysis
24-Oct-2017: PeekabooAV – Open Source Antivirus mit Verhaltensanalyse by Felix Bauer, Vortrag im Rahmen des Studium Generale an der Fakultät für IT-Sicherheit der Hochschule Aalen https://its.informatik.htw-aalen.de/wp/, [PDF], [Video].
24-Jun-2017: TÜBIX, "PeekabooAV" by Felix Bauer [PDF] [Audio].
23-May-2017: Secure Linux Administration Conference (SLAC), "Der Cuckoo Sandbox-Scanner für Amavis - OpenSource Verhaltensanalyse von E-Mail-Anhängen" by Felix Bauer and Christoph Herrmann [PDF].
29-Sep-2016: science + computing ag Tech Talk, "Verhaltensanalyse von E-Mail-Schädlingen - Potentielle Schädlinge in der Sandbox untersuchen" by Felix Bauer [PDF] [Video].