2022-06-27 07:24:33 +02:00
Pandora-box
2022-06-11 16:26:40 +02:00
============
2023-03-08 09:46:21 +01:00
## Introduction
2025-03-06 18:47:23 +01:00
As the use of USB disks are still prevalent, so has the risk of malware infection through these devices.
Malware can easily spread from one computer to another through USB disks, making it a critical threat to
2023-03-08 11:14:38 +01:00
information security. This is where our USB scanning device comes in.
2023-03-08 09:46:21 +01:00
2025-03-06 18:47:23 +01:00
Pandora-box is designed to detect and remove malware from USB disks. The software is based on [Pandora ](https://github.com/pandora-analysis )
from [CIRCL ](https://www.circl.lu ) and is distributed under [GPL ](https://www.gnu.org/licenses/licenses.html ),
2023-03-08 09:49:34 +01:00
making it freely accessible to security professionals.
2023-03-08 09:46:21 +01:00
2025-03-06 18:47:23 +01:00
The software uses advanced scanning techniques to identify and remove malware from USB disks. It performs a
comprehensive scan of the disk, analyzing each file for any signs of malicious activity. If it detects any malware,
2023-03-08 09:46:21 +01:00
Pandora-box will quarantine the infected files and remove them from the disk.
2023-03-08 09:47:49 +01:00
## Featues
2023-03-08 09:46:21 +01:00
2025-03-06 18:47:23 +01:00
Pandora-Box is a USB scaning station based on [Pandora ](https://github.com/pandora-analysis ),
a malware analysis tool.
2022-06-11 18:25:10 +02:00
2023-03-08 09:32:52 +01:00
Pandora-box uses :
2022-06-11 18:25:10 +02:00
2023-03-08 09:52:13 +01:00
- [ClamAV ](http://www.clamav.net/ ) : an open-source antivirus engine for detecting trojans, viruses, malware & other malicious threats.
- [Comodo Antivirus ](https://antivirus.comodo.com/ ) : the free version of Comodo Antivirus.
2025-03-06 18:47:23 +01:00
- [Hashlookup ](https://circl.lu/services/hashlookup/ ) : a public API to lookup hash values against known database of files.
2023-03-08 11:14:38 +01:00
- [Yara Rules ](https://github.com/Neo23x0/signature-base ) : the YARA signature and IOC database used by [LOKI ](https://github.com/Neo23x0/Loki ) and [THOR Lite ](https://www.nextron-systems.com/thor-lite/ ) scanners.
2022-06-11 18:25:10 +02:00
2023-03-08 09:52:13 +01:00
Other tools may be used by configuring Pandora [antivirus-workers ](https://github.com/pandora-analysis/pandora#antivirus-workers ).
2022-07-06 22:37:19 +02:00
2025-03-06 18:47:23 +01:00
It runs on [Ubuntu 24.04 server LTS ](https://releases.ubuntu.com/noble/ ).
2023-03-08 08:59:53 +01:00
2022-07-06 22:37:19 +02:00
## Interface
2023-03-08 11:14:38 +01:00
It has a graphical user interface :
2022-07-06 22:14:51 +02:00
2022-07-25 01:04:59 +02:00
[<img src="images/key1.png" width="400"> ](images/key1.png )
[<img src="images/wait1.png" width="400"> ](images/wait1.png )
[<img src="images/ok.png" width="400"> ](images/ok.png )
[<img src="images/bad.png" width="400"> ](images/bad.png )
2022-07-06 22:14:51 +02:00
and a text user interface for advanced users :
2022-07-06 23:50:13 +02:00
[<img src="images/pandora-curses.png" width="400"> ](images/pandora-curses.png )
2022-07-06 22:14:51 +02:00
2022-07-06 22:42:14 +02:00
## Roadmap
If you want to contribute, we have a [roadmap ](ROADMAP.md ).
2022-07-06 22:37:19 +02:00
## Installation
The [installation and configuration procedure ](INSTALL.md ) is documented.
## License
Pandora-box is an open source software distributed under [GPL ](https://www.gnu.org/licenses/licenses.html ).
