This is a bugfix version of cs-decrypt-metadata.py, my tool to decrypt Cobalt Strike metadata. cs-decrypt-metadata_V0_0_3.zip (https)MD5: BC42AF00F35FE8460E8AA23F2B54A84ASHA256: 13C62A515D49CF8DEF4A866B069AFC47885B13CAB3703AA529C214B88FF576D3 … [Continue Reading]
Update: base64dump.py Version 0.0.18
This is a bug fix version. base64dump_V0_0_18.zip (https)MD5: C1D1FBED0E4C1A4703C56412611EF47DSHA256: 3F46110F9A1750D2351EB7CE2278C1E61EE1C421E10ABB5EC5BFC28B0DA61285 … [Continue Reading]
Update: 1768.py Version 0.0.10
This new version of 1768.py, my tool to analyze Cobalt Strike beacons, adds some small changes, like extra tests and defines more field names. 1768_v0_0_10.zip (https)MD5: 603EFE48CF8740397562F65C9E22B648SHA256: … [Continue Reading]