Wednesday, October 27, 2021

Cobalt Strike Beacon configuration extractor and parser

Cobalt Strike Configuration Extractor and Parser

Overview

Pure Python library and set of scripts to extract and parse configurations (configs) from Cobalt Strike Beacons. The library, libcsce , contains classes for building tools to work with Beacon configs. There are also two CLI scripts included that use the library to parse Beacon config data:

csce : Parses all known Beacon config settings to JSON, mimicing the Malleable C2 profile structure. list-cs-settings : Attempts to find by brute-fo…

Read More

Latest news
Related news