gloxec/CrossC2: generate CobaltStrike cs跨平台客户端生成
2020-01-30 22:41:59 Author: github.com(查看原文) 阅读量:1212 收藏

README | 中文文档

     ▄████▄   ██▀███   ▒█████    ██████   ██████     ▄████▄   ██████▄ 
    ▒██▀ ▀█  ▓██ ▒ ██▒▒██▒  ██▒▒██    ▒ ▒██    ▒    ▒██▀ ▀█        ██░
    ▒▓█    ▄ ▓██ ░▄█ ▒▒██░  ██▒░ ▓██▄   ░ ▓██▄      ▒▓█        █████▒ 
    ▒▓▓▄ ▄██▒▒██▀▀█▄  ▒██   ██░  ▒   ██▒  ▒   ██▒   ▒▓▓▄ ▄█ ░▒██      
    ▒ ▓███▀ ░░██▓ ▒██▒░ ████▓▒░▒██████▒▒▒██████▒▒   ▒ ▓███▀  ░▒▓█████▓
    ░ ░▒ ▒  ░░ ▒▓ ░▒▓░░ ▒░▒░▒░ ▒ ▒▓▒ ▒ ░▒ ▒▓▒ ▒ ░   ░ ░▒ ▒    ░▒ ░▓ ░░
      ░  ▒     ░▒ ░ ▒░  ░ ▒ ▒░ ░ ░▒  ░ ░░ ░▒  ░ ░     ░  ▒     ░ ░░ ░ 
    ░          ░░   ░ ░ ░ ░ ▒  ░  ░  ░  ░  ░  ░     ░         by:░hook
    ░ ░         ░         ░ ░        ░        ░     ░ ░          ░    
    ░                                               ░                 
              

Add beacon generation functions for CobaltStrike's cross-platform beacon. Currently only supported on Linux & MacOS.

Windows Linux MacOS iOS Android Embedded
Run Env (x86)
Run Env (x64)
gen beacon (x86)
gen beacon (x64)
gen beacon (armv7)
gen beacon (arm64)
gen beacon (mips[el])

Restricted description:

  • MacOS: Latest systems only support 64-bit programs
  • iOS: sandbox, restricted cmd
  • Embedded: only *nix
  • ⍻ : Loader is still in progress

Download:

  • CrossC2.cna
  • genCrossC2 CS Env
  1. copy CrossC2.cna and genCrossC2 file to CobaltStrike's rootdir (Must be in the same directory )
  2. choose Script Manager,add CrossC2.cna (If successfully installed, the menu bar will have an additional item CrossC2)
  3. Modify the genCrossC2 path in the CrossC2.cna script to the real path
exec("/xxx/xxx/genCrossC2"... -> exec("/opt/cs/genCrossC2"...

teamserver

For some reasons, only HTTPS beacon is currently supported. C2Profile dynamic analysis will be supported in the future

Copy .cobaltstrike.beacon_keys from the cs directory on the server to the local cs directory.

cna plugin way

Menu bar: CrossC2 -> CrossC2 Payload Generator -> genCrossC2

Can be configured in the pop-up dialog:
1. Operating System
2. Arach
3. Payload Type(Currently only supports Stageless, Staged is being updated)
4. Generate file save path

Run the underlying program directly

In addition to cna GUI generation, you can also directly call the underlying program to generate directly.

[usage]: genCrossC2 [host] [port] [getURI] [postURI] [platform] [arch] [outputFileName]


-platform		'MacOS' / 'Linux'
-arch    		'x86' / 'x64'

[ex]:
	genCrossC2 127.0.0.1 4444 null null MacOS x64 ./CrossC2-test

  1. Rich C2Porfile support
  2. Staged Type Shellcode Generation
  3. http-proxy (auth) & socks proxy back connection support
  4. Proxy-Pivots
  5. node beacon? (Single node type, can host other beacon without relying on teamserver)

  1. GUI file manager and process viewing functions are not currently supported
  2. Uploading and downloading files that are too large may have incomplete end bytes

文章来源: https://github.com/gloxec/CrossC2
如有侵权请联系:admin#unsafe.sh