Cobalt strike installation tutorial

CobaltStrike

CobaltStrike It's a penetration test artifact , Known by the industry as CS Artifact .CobaltStrike It is divided into client and server , The server is a , There can be multiple clients , It can be used by the team for distributed cooperative operation .

CobaltStrike Integrated port forwarding 、 Service scan , Automatic overflow , Multimode port monitoring ,windows exe Trojans generate ,windows dll Trojans generate ,java Trojans generate ,office Macro virus generation , Horse binding . Fishing attacks include ： Site cloning , Target information acquisition ,java perform , Browser automatic attack and other powerful functions ！

Cobaltstrike teamserver Start of ：

Turn on Cobaltstrike teamserver And operation GUI All interfaces need Java Environmental Science , The computer must have Java packed , To baidu .

After decompression , See these files in the file . Direct operation

./teamserver 192.168.1.115 12345678 
192.168.1.115     // network card IP Address 
12345678    // password 

Start client

# ./start.sh

here host fill kali Of ip, The password is the password we just started , The user name defaults to neo Just go , The port is also the default 50050.

Client after startup ：

CobaltStrike Use

CobaltStrike modular

· New Connection： Open a new connection window

· Preferences： preferences , Is set CobaltStrike Appearance

· Visualization： Show the host with different permissions ( It is mainly displayed in the form of output results )

· VPN Interfaces： Set up VPN Interface

· Listeners： Create a listener

· Script Interfaces： View and load CNA Script

· Close： close

cobaltstrike

 Set listener 
 Set up Attack
 Looking for loopholes in the target , Carry out orders 
 The target is on line 
 Raise the right