Implement CobaltStrike's Beacon in Go
This project is only used for learning protocol analysis and reverse engineering. If someone's rights are violated, contact me to delete the project, and the last DO NOT USE IT ILLEGALLY
- Setup the teamserver and start a http lisenter, the teamserver will generate the file
.cobaltstrike.beacon_keys
. - Compile beacontoo with Jetbrains Idea, use command
java -jar BeaconTool.jar
to convert java keystore to PEM format. - Replace the RSA key pair in the file
cmd/config/config.go
(the RSA private key is not required, I wrote it in the code just for the record) - Compile geacon for what platform you want to run, use command
export GOOS="darwin" && export GOARCH="amd64" && go build cmd/main.go
- Having fun ! PR and issue is welcome ;)
- Geacon has just been tested on CobaltStrike 3.14 and only support default c2profile, so many hardcode in the project and I will not try to implement more C2profile support at this moment.
Grab Geacon's command execution results in Linux
To be continued, I will update as soon as I have time ...
- Support CobaltStrike 4.0
- Fix the OS icon issue in session table
_DarkRay@RedCore