[工具]CobaltStrike3.14破解版

作者: BI1IHA 分类: 安全工具 发布时间: 2020-03-12 10:56

CobaltStrike3.13 破解版

破解记录

关键文件位置

1

2

3

4

5

6

7

8

aggressor/dialogs/ListenerDialog.class

common/ArtifactUtils.class

common/License.class

server/ProfileEdits.class

resources/xor.bin

resources/xor64.bin

common.ListenerConfig

resources/template.x64.ps1resources/template.x86.ps1

License

两种破解思路

1)直接改试用时间

1

private static long life = 99999L;

2)修改isTrail的判断逻辑

把这里的true改为false

1

2

3

4

public static boolean isTrial()

  {

    return true;

  }

把这两个函数中的内容删掉,启动时可以不显示试用信息

1

2

public static void checkLicenseGUI(Authorization   auth)

public static void checkLicenseConsole(Authorization   auth)

去除listener个数限制

去掉这段,去除只能添加一个listener的限制

1

2

3

4

 else if ((Listener.isEgressBeacon(payload)) && (DataUtils.isBeaconDefined(this.datal)) && (!name.equals(DataUtils.getEgressBeaconListener(this.datal))))

    {

      DialogUtils.showError("You   may only define one egress Beacon per team server.\nThere are a few things I   need to sort before you can\nput multiple Beacon HTTP/DNS listeners on one   server.\nSpin up a new team server and add your listener there.");

    }

后门特征指纹

存在后门特征指纹的几个地方

common/ArtifactUtils.class

1

packer.addString("X5O!P%@AP[4\\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*");

server/ProfileEdits.class

1

2

3

4

5

c2profile.addCommand(".http-get.server", "!header", "X-Malware:   X5O!P%@AP[4\\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*");

c2profile.addCommand(".http-post.server", "!header", "X-Malware:   X5O!P%@AP[4\\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*");

c2profile.addCommand(".http-stager.server", "!header", "X-Malware:   X5O!P%@AP[4\\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*");

c2profile.addCommand(".stage.transform-x86", "append", "X5O!P%@AP[4\\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*");

c2profile.addCommand(".stage.transform-x64", "append", "X5O!P%@AP[4\\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*");

common.ListenerConfig

1

  result.append("5O!P%@AP[4\\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*\u0000");+  result.append("123\u0000");

resources/template.x64.ps1resources/template.x86.ps1

1

 $eicar = 'X5O!P%@AP[4\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*'+  $eicar = ''

common.ArtifactUtils

已经修改了License.isTrial()返回值为false,所以改不改也没什么影响

清除cobaltstrike缓存

1

rm rf logs data cobaltstrike.store

CobaltStrike3.13 破解版下载

链接https://pan.baidu.com/s/14e0tpVPzUhiAhYU2_jvBag 提取码: d9uf

MacOS客户端:

链接https://pan.baidu.com/s/1h8KwLQ58I-P58tdbz7z3QA 提取码: 8sae

如果觉得我的文章对您有用,请随意打赏。您的支持将鼓励我继续创作!

发表评论

邮箱地址不会被公开。 必填项已用*标注