Announcements Posted on February 28, 2022 (October 24, 2022) Joe’s Transition My career is taking me in a new and exciting direction, and I am stepping down from my role on the Cobalt Strike team. I’ve Read More
Posted on February 21, 2022 (July 18, 2022) Incorporating New Tools into Core Impact Core Impact has further enhanced the pen testing process with the introduction of two new modules. The first module enables the use of .NET assemblies, Read More
Posted on February 15, 2022 (February 15, 2022) Cobalt Strike Training Options The Cobalt Strike training web page has been updated. https://www.cobaltstrike.com/training/ The training web page lists free courses created by the Cobalt Strike team that provide Read More
Red Team Posted on December 20, 2021 (June 6, 2022) Writing Beacon Object Files: Flexible, Stealthy, and Compatible Our colleagues over at Core Security have been doing great things with Cobalt Strike, making use of it in their own engagements. They wrote up Read More
Posted on December 20, 2021 (December 20, 2021) User Defined Reflective Loader (UDRL) Update in Cobalt Strike 4.5 The User Defined Reflective Loader (UDRL) was first introduced in Cobalt Strike 4.4. to allow the creation and use of a custom reflective loader. This Read More
Posted on December 17, 2021 (December 17, 2021) Sleep Mask Update in Cobalt Strike 4.5 The Sleep Mask Kit was first introduced in Cobalt Strike 4.4 to allow users to modify how the sleep mask function looks in memory in order to defeat static signatures that identified Beacon. This Read More
Development Posted on December 16, 2021 (May 4, 2022) A Deeper Look Into the Max Retry Strategy Option A complementary strategy to the Host Rotation Strategy was introduced to Cobalt Strike 4.5. The max retry strategy was added to HTTP, HTTPS, and DNS Read More
Red Team Posted on December 15, 2021 (January 25, 2022) Process Injection Update in Cobalt Strike 4.5 Process injection is a core component to Cobalt Strike post exploitation. Until now, the option was to use a built-in injection technique using fork&run. This Read More
Development, Releases Posted on December 14, 2021 (November 29, 2022) Cobalt Strike 4.5: Fork&Run – you’re “history” Cobalt Strike 4.5 is now available. This release sees new options for process injection, updates to the sleep mask and UDRL kits, evasion improvements and Read More
Announcements Posted on November 19, 2021 (May 4, 2022) Cobalt Strike infrastructure changes We will be making some changes to the Cobalt Strike infrastructure in late November/early December. We are not anticipating any downtime but we wanted to Read More