{"id":11223,"date":"2020-08-13T20:24:10","date_gmt":"2020-08-13T14:54:10","guid":{"rendered":"http:\/\/kalilinuxtutorials.com\/?p=11223"},"modified":"2020-08-13T20:24:10","modified_gmt":"2020-08-13T14:54:10","slug":"taowu","status":"publish","type":"post","link":"https:\/\/kalilinuxtutorials.com\/taowu\/","title":{"rendered":"TaoWu &#8211; A CobaltStrike Toolkit 2020"},"content":{"rendered":"\n<p><strong>TaoWu<\/strong> is a CobaltStrike toolkit. All the scripts are gathered on the Internet and slightly modified by myself. You can use it under GPLv3. And all on your own risk.<\/p>\n\n\n\n<p>Any PR is appreciated. Or you can contact me on E-mail <a href=\"mailto:taowuopen@protonmail.com\">taowuopen@protonmail.com<\/a> Let&#8217;s make TaoWu better than ever together.<\/p>\n\n\n\n<p>Any contributions can grant you TaoWu&#8217;s internal version access in the near future.<\/p>\n\n\n\n<p class=\"has-background has-luminous-vivid-amber-background-color\"><strong>Note:<\/strong> Base on Cobalt Strike3.x &amp; Cobalt Strike4.x<\/p>\n\n\n\n<p class=\"has-background has-text-align-center has-light-green-cyan-background-color\"><strong>Features<\/strong><\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" src=\"https:\/\/1.bp.blogspot.com\/-TxkAaZfwzEY\/XzBJb9nkvQI\/AAAAAAAAHTA\/tuir7kwsc1cKWpYFG0dvH0XfzEQSJ2LAQCLcBGAsYHQ\/s1162\/TaoWu-1.png\" alt=\"\"\/><\/figure>\n\n\n\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" src=\"https:\/\/1.bp.blogspot.com\/-XyVQT0KOEnI\/XzBJcJ2725I\/AAAAAAAAHTI\/msui8E9GPfUi-XrmScw4r8vGdx_ZC1XeQCLcBGAsYHQ\/s1062\/TaoWu-2.png\" alt=\"\"\/><\/figure>\n\n\n\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" src=\"https:\/\/1.bp.blogspot.com\/-QGOHtx8WxEE\/XzBJcDgCIHI\/AAAAAAAAHTE\/gltDGb5_22kON1gxmxH9AvyYwcJhpkPjgCLcBGAsYHQ\/s971\/TaoWu-3.png\" alt=\"\"\/><\/figure>\n\n\n\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" src=\"https:\/\/1.bp.blogspot.com\/-FmryupHHkN8\/XzBJw8eDQgI\/AAAAAAAAHTY\/1C-OTsAXGAsXprZ_Za-XmiJ44D69GA07ACLcBGAsYHQ\/s1111\/TaoWu-4.png\" alt=\"\"\/><\/figure>\n\n\n\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" src=\"https:\/\/1.bp.blogspot.com\/-ohzpR17nxyk\/XzBJxHtoSJI\/AAAAAAAAHTc\/gheWYbIODr0_FrYOn5VK8pBmrjmz8uCfQCLcBGAsYHQ\/s1046\/TaoWu-5.png\" alt=\"\"\/><\/figure>\n\n\n\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" src=\"https:\/\/1.bp.blogspot.com\/-Cma5q1YckuA\/XzBJxExQVLI\/AAAAAAAAHTg\/5BDVJJvY86gO2pUbpVt3G5-K_oKETXlUgCLcBGAsYHQ\/s920\/TaoWu-6.png\" alt=\"\"\/><\/figure>\n\n\n\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" src=\"https:\/\/1.bp.blogspot.com\/-SzM0ez-kS5o\/XzBJ_7Hbg_I\/AAAAAAAAHTk\/QuQnG7eL7CwV2hnfu1H5C_7pGMYYhFZJwCLcBGAsYHQ\/s954\/TaoWu-8.png\" alt=\"\"\/><\/figure>\n\n\n\n<p><strong>Special Thanks<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\"><li><a href=\"https:\/\/github.com\/DeEpinGh0st\/Erebus\">https:\/\/github.com\/DeEpinGh0st\/Erebus<\/a><\/li><li><a href=\"https:\/\/github.com\/timwhitez\/Cobalt-Strike-Aggressor-Scripts\">https:\/\/github.com\/timwhitez\/Cobalt-Strike-Aggressor-Scripts<\/a><\/li><li><a href=\"https:\/\/github.com\/0x09AL\/RdpThief\">https:\/\/github.com\/0x09AL\/RdpThief<\/a><\/li><li><a href=\"https:\/\/github.com\/uknowsec\/sharptoolsaggressor\">https:\/\/github.com\/uknowsec\/sharptoolsaggressor<\/a><\/li><li><a href=\"https:\/\/github.com\/lengjibo\/RedTeamTools\/tree\/master\/windows\/Cobalt%20Strike\">https:\/\/github.com\/lengjibo\/RedTeamTools\/tree\/master\/windows\/Cobalt%20Strike<\/a><\/li><\/ul>\n\n\n\n<p class=\"has-background has-text-align-center has-light-green-cyan-background-color\"><strong>CHANGE LOG<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\"><li><strong>3.1 (2020.8.7)<\/strong><ul><li>Add Basic Info and Initial Info gathering to Information Discovery.<\/li><li>Add CISCO ASA(CVE-2020-3452)\u3001weblogic\uff08CVE-2016-0638,CVE-2016-3510,CVE-2017-3248,CVE-2017-10271,CVE-2018-2628,CVE-2018-2893,CVE-2019-2725\uff09POCs to Vulnerability.<\/li><li>Add dazzleUP to Privilege Escalation.<\/li><li>Add some interesting functions for mic recording and webcam shot.<\/li><\/ul><\/li><li><strong>3.0 (2020.7.14)<\/strong><ul><li>Add &#8220;Privilege Escalation&#8221; &#8220;Lateral Movement&#8221; function.<\/li><li>Add &#8220;Port Forwarding&#8221; function.<\/li><li>Performance improvements.<\/li><\/ul><\/li><\/ul>\n\n\n\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" src=\"https:\/\/1.bp.blogspot.com\/-uZx9JsxCP44\/XzBKFhUKYXI\/AAAAAAAAHTs\/y0-E6L_U8gg1OxbuBs40zz-IabUW3FOUQCLcBGAsYHQ\/s1062\/TaoWu-9.png\" alt=\"\"\/><\/figure>\n\n\n\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" src=\"https:\/\/1.bp.blogspot.com\/-rMlSj5liQN0\/XzBKFgbZQvI\/AAAAAAAAHTw\/R7cNChxGXW075si8wIxMx2-fZ4M7nN8_ACLcBGAsYHQ\/s982\/TaoWu-10.png\" alt=\"\"\/><\/figure>\n\n\n\n<div class=\"wp-block-buttons aligncenter is-layout-flex wp-block-buttons-is-layout-flex\">\n<div class=\"wp-block-button is-style-outline is-style-outline--1\"><a class=\"wp-block-button__link has-background has-vivid-cyan-blue-background-color\" href=\"https:\/\/github.com\/pandasec888\/taowu-cobalt-strike\/tree\/english\" target=\"_blank\" rel=\"noreferrer noopener\"><strong>Download<\/strong><\/a><\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>TaoWu is a CobaltStrike toolkit. All the scripts are gathered on the Internet and slightly modified by myself. You can use it under GPLv3. And all on your own risk. Any PR is appreciated. Or you can contact me on E-mail taowuopen@protonmail.com Let&#8217;s make TaoWu better than ever together. Any contributions can grant you TaoWu&#8217;s [&hellip;]<\/p>\n","protected":false},"author":4,"featured_media":16465,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/1.bp.blogspot.com\/-h5nXzHM8Cpc\/XzBBN433PbI\/AAAAAAAAHS0\/-TJwaHDbFo0tzT_LMmHfk-nnRgmqd87twCLcBGAsYHQ\/s728\/taowu.png","fifu_image_alt":"TaoWu \u2013 A CobaltStrike Toolkit 2020","_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[28],"tags":[611,3303],"class_list":["post-11223","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-kali","tag-cobaltstrike","tag-taowu"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.0 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>TaoWu - A CobaltStrike Toolkit 2020!Kalilinuxtutorials<\/title>\n<meta name=\"description\" content=\"TaoWu is a CobaltStrike toolkit. All the scripts are gathered on the Internet and slightly modified by myself. You can use it under GPLv3\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/kalilinuxtutorials.com\/taowu\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"TaoWu - A CobaltStrike Toolkit 2020!Kalilinuxtutorials\" \/>\n<meta property=\"og:description\" content=\"TaoWu is a CobaltStrike toolkit. All the scripts are gathered on the Internet and slightly modified by myself. You can use it under GPLv3\" \/>\n<meta property=\"og:url\" content=\"https:\/\/kalilinuxtutorials.com\/taowu\/\" \/>\n<meta property=\"og:site_name\" content=\"Kali Linux Tutorials\" \/>\n<meta property=\"article:published_time\" content=\"2020-08-13T14:54:10+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/1.bp.blogspot.com\/-h5nXzHM8Cpc\/XzBBN433PbI\/AAAAAAAAHS0\/-TJwaHDbFo0tzT_LMmHfk-nnRgmqd87twCLcBGAsYHQ\/s728\/taowu.png\" \/>\n<meta name=\"author\" content=\"R K\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:image\" content=\"https:\/\/1.bp.blogspot.com\/-h5nXzHM8Cpc\/XzBBN433PbI\/AAAAAAAAHS0\/-TJwaHDbFo0tzT_LMmHfk-nnRgmqd87twCLcBGAsYHQ\/s728\/taowu.png\" \/>\n<meta name=\"twitter:creator\" content=\"@CyberEdition\" \/>\n<meta name=\"twitter:site\" content=\"@CyberEdition\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"R K\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"1 minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/taowu\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/taowu\/\"},\"author\":{\"name\":\"R K\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/#\/schema\/person\/69444b58b9e267a4cf08fceb34b6f6ad\"},\"headline\":\"TaoWu &#8211; A CobaltStrike Toolkit 2020\",\"datePublished\":\"2020-08-13T14:54:10+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/taowu\/\"},\"wordCount\":179,\"publisher\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/taowu\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/1.bp.blogspot.com\/-h5nXzHM8Cpc\/XzBBN433PbI\/AAAAAAAAHS0\/-TJwaHDbFo0tzT_LMmHfk-nnRgmqd87twCLcBGAsYHQ\/s728\/taowu.png\",\"keywords\":[\"CobaltStrike\",\"TaoWu\"],\"articleSection\":[\"Kali Linux\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/taowu\/\",\"url\":\"https:\/\/kalilinuxtutorials.com\/taowu\/\",\"name\":\"TaoWu - A CobaltStrike Toolkit 2020!Kalilinuxtutorials\",\"isPartOf\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/taowu\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/taowu\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/1.bp.blogspot.com\/-h5nXzHM8Cpc\/XzBBN433PbI\/AAAAAAAAHS0\/-TJwaHDbFo0tzT_LMmHfk-nnRgmqd87twCLcBGAsYHQ\/s728\/taowu.png\",\"datePublished\":\"2020-08-13T14:54:10+00:00\",\"description\":\"TaoWu is a CobaltStrike toolkit. All the scripts are gathered on the Internet and slightly modified by myself. You can use it under GPLv3\",\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/kalilinuxtutorials.com\/taowu\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/taowu\/#primaryimage\",\"url\":\"https:\/\/1.bp.blogspot.com\/-h5nXzHM8Cpc\/XzBBN433PbI\/AAAAAAAAHS0\/-TJwaHDbFo0tzT_LMmHfk-nnRgmqd87twCLcBGAsYHQ\/s728\/taowu.png\",\"contentUrl\":\"https:\/\/1.bp.blogspot.com\/-h5nXzHM8Cpc\/XzBBN433PbI\/AAAAAAAAHS0\/-TJwaHDbFo0tzT_LMmHfk-nnRgmqd87twCLcBGAsYHQ\/s728\/taowu.png\"},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/#website\",\"url\":\"https:\/\/kalilinuxtutorials.com\/\",\"name\":\"Kali Linux Tutorials\",\"description\":\"Kali Linux Tutorials\",\"publisher\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/kalilinuxtutorials.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/#organization\",\"name\":\"Kali Linux Tutorials\",\"url\":\"https:\/\/kalilinuxtutorials.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/07\/Kali.png\",\"contentUrl\":\"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/07\/Kali.png\",\"width\":272,\"height\":90,\"caption\":\"Kali Linux Tutorials\"},\"image\":{\"@id\":\"https:\/\/kalilinuxtutorials.com\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/x.com\/CyberEdition\",\"https:\/\/www.threads.com\/@cybersecurityedition\",\"https:\/\/www.linkedin.com\/company\/cyberedition\",\"https:\/\/www.instagram.com\/cybersecurityedition\/\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/#\/schema\/person\/69444b58b9e267a4cf08fceb34b6f6ad\",\"name\":\"R K\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/kalilinuxtutorials.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/d3937c9687f2da11bc0a716404ff91779fe19ca115208dbf66167ad353aca5aa?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/d3937c9687f2da11bc0a716404ff91779fe19ca115208dbf66167ad353aca5aa?s=96&d=mm&r=g\",\"caption\":\"R K\"},\"url\":\"https:\/\/kalilinuxtutorials.com\/author\/ranjith\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"TaoWu - A CobaltStrike Toolkit 2020!Kalilinuxtutorials","description":"TaoWu is a CobaltStrike toolkit. All the scripts are gathered on the Internet and slightly modified by myself. You can use it under GPLv3","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/kalilinuxtutorials.com\/taowu\/","og_locale":"en_US","og_type":"article","og_title":"TaoWu - A CobaltStrike Toolkit 2020!Kalilinuxtutorials","og_description":"TaoWu is a CobaltStrike toolkit. All the scripts are gathered on the Internet and slightly modified by myself. You can use it under GPLv3","og_url":"https:\/\/kalilinuxtutorials.com\/taowu\/","og_site_name":"Kali Linux Tutorials","article_published_time":"2020-08-13T14:54:10+00:00","og_image":[{"url":"https:\/\/1.bp.blogspot.com\/-h5nXzHM8Cpc\/XzBBN433PbI\/AAAAAAAAHS0\/-TJwaHDbFo0tzT_LMmHfk-nnRgmqd87twCLcBGAsYHQ\/s728\/taowu.png","type":"","width":"","height":""}],"author":"R K","twitter_card":"summary_large_image","twitter_image":"https:\/\/1.bp.blogspot.com\/-h5nXzHM8Cpc\/XzBBN433PbI\/AAAAAAAAHS0\/-TJwaHDbFo0tzT_LMmHfk-nnRgmqd87twCLcBGAsYHQ\/s728\/taowu.png","twitter_creator":"@CyberEdition","twitter_site":"@CyberEdition","twitter_misc":{"Written by":"R K","Est. reading time":"1 minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/kalilinuxtutorials.com\/taowu\/#article","isPartOf":{"@id":"https:\/\/kalilinuxtutorials.com\/taowu\/"},"author":{"name":"R K","@id":"https:\/\/kalilinuxtutorials.com\/#\/schema\/person\/69444b58b9e267a4cf08fceb34b6f6ad"},"headline":"TaoWu &#8211; A CobaltStrike Toolkit 2020","datePublished":"2020-08-13T14:54:10+00:00","mainEntityOfPage":{"@id":"https:\/\/kalilinuxtutorials.com\/taowu\/"},"wordCount":179,"publisher":{"@id":"https:\/\/kalilinuxtutorials.com\/#organization"},"image":{"@id":"https:\/\/kalilinuxtutorials.com\/taowu\/#primaryimage"},"thumbnailUrl":"https:\/\/1.bp.blogspot.com\/-h5nXzHM8Cpc\/XzBBN433PbI\/AAAAAAAAHS0\/-TJwaHDbFo0tzT_LMmHfk-nnRgmqd87twCLcBGAsYHQ\/s728\/taowu.png","keywords":["CobaltStrike","TaoWu"],"articleSection":["Kali Linux"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/kalilinuxtutorials.com\/taowu\/","url":"https:\/\/kalilinuxtutorials.com\/taowu\/","name":"TaoWu - A CobaltStrike Toolkit 2020!Kalilinuxtutorials","isPartOf":{"@id":"https:\/\/kalilinuxtutorials.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/kalilinuxtutorials.com\/taowu\/#primaryimage"},"image":{"@id":"https:\/\/kalilinuxtutorials.com\/taowu\/#primaryimage"},"thumbnailUrl":"https:\/\/1.bp.blogspot.com\/-h5nXzHM8Cpc\/XzBBN433PbI\/AAAAAAAAHS0\/-TJwaHDbFo0tzT_LMmHfk-nnRgmqd87twCLcBGAsYHQ\/s728\/taowu.png","datePublished":"2020-08-13T14:54:10+00:00","description":"TaoWu is a CobaltStrike toolkit. All the scripts are gathered on the Internet and slightly modified by myself. You can use it under GPLv3","inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/kalilinuxtutorials.com\/taowu\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/kalilinuxtutorials.com\/taowu\/#primaryimage","url":"https:\/\/1.bp.blogspot.com\/-h5nXzHM8Cpc\/XzBBN433PbI\/AAAAAAAAHS0\/-TJwaHDbFo0tzT_LMmHfk-nnRgmqd87twCLcBGAsYHQ\/s728\/taowu.png","contentUrl":"https:\/\/1.bp.blogspot.com\/-h5nXzHM8Cpc\/XzBBN433PbI\/AAAAAAAAHS0\/-TJwaHDbFo0tzT_LMmHfk-nnRgmqd87twCLcBGAsYHQ\/s728\/taowu.png"},{"@type":"WebSite","@id":"https:\/\/kalilinuxtutorials.com\/#website","url":"https:\/\/kalilinuxtutorials.com\/","name":"Kali Linux Tutorials","description":"Kali Linux Tutorials","publisher":{"@id":"https:\/\/kalilinuxtutorials.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/kalilinuxtutorials.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/kalilinuxtutorials.com\/#organization","name":"Kali Linux Tutorials","url":"https:\/\/kalilinuxtutorials.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/kalilinuxtutorials.com\/#\/schema\/logo\/image\/","url":"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/07\/Kali.png","contentUrl":"https:\/\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/07\/Kali.png","width":272,"height":90,"caption":"Kali Linux Tutorials"},"image":{"@id":"https:\/\/kalilinuxtutorials.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/CyberEdition","https:\/\/www.threads.com\/@cybersecurityedition","https:\/\/www.linkedin.com\/company\/cyberedition","https:\/\/www.instagram.com\/cybersecurityedition\/"]},{"@type":"Person","@id":"https:\/\/kalilinuxtutorials.com\/#\/schema\/person\/69444b58b9e267a4cf08fceb34b6f6ad","name":"R K","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/kalilinuxtutorials.com\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/d3937c9687f2da11bc0a716404ff91779fe19ca115208dbf66167ad353aca5aa?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/d3937c9687f2da11bc0a716404ff91779fe19ca115208dbf66167ad353aca5aa?s=96&d=mm&r=g","caption":"R K"},"url":"https:\/\/kalilinuxtutorials.com\/author\/ranjith\/"}]}},"jetpack_featured_media_url":"https:\/\/1.bp.blogspot.com\/-h5nXzHM8Cpc\/XzBBN433PbI\/AAAAAAAAHS0\/-TJwaHDbFo0tzT_LMmHfk-nnRgmqd87twCLcBGAsYHQ\/s728\/taowu.png","jetpack_sharing_enabled":true,"jetpack-related-posts":[{"id":11733,"url":"https:\/\/kalilinuxtutorials.com\/cobalt-strike-scan\/","url_meta":{"origin":11223,"position":0},"title":"Cobalt Strike Scan : Scan Files Or Process Memory For CobaltStrike Beacons &#038; Parse Their Configuration","author":"R K","date":"November 2, 2020","format":false,"excerpt":"Scan files or process memory for Cobalt Strike beacons and parse their configuration. CobaltStrikeScan scans Windows process memory for evidence of DLL injection (classic or reflective injection) and performs a YARA scan on the target process' memory for Cobalt Strike v3 and v4 beacon signatures. Alternatively, CobaltStrikeScan can perform the\u2026","rel":"","context":"In &quot;Kali Linux&quot;","block_context":{"text":"Kali Linux","link":"https:\/\/kalilinuxtutorials.com\/category\/kali\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":34952,"url":"https:\/\/kalilinuxtutorials.com\/zdocker-cobaltstrike\/","url_meta":{"origin":11223,"position":1},"title":"zDocker-cobaltstrike : A Comprehensive Guide To Setting Up Cobalt Strike With Docker","author":"Varshini","date":"September 24, 2024","format":false,"excerpt":"A detailed guide on setting up Cobalt Strike in a Docker environment. Cobalt Strike, a powerful tool for penetration testers, can be seamlessly integrated into Docker to enhance security testing with scalability and ease of deployment. This article provides step-by-step instructions on building and running a Cobalt Strike Docker container,\u2026","rel":"","context":"In &quot;Cyber security&quot;","block_context":{"text":"Cyber security","link":"https:\/\/kalilinuxtutorials.com\/category\/cyber-security\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg_vm4auEyffJtdAmDXY3RplKp3u0v74D_6UnRVWQZFF3oM8a0XdrUuXQZGk6c1U51IkzFVg6v_ERLfAlZu4gPl57JtUb1tiXq4ecr-Z-Af66UCgHK0-MjiWtMV880Q_hqSicvAePAADlGAsaLEdfbyVc9e0uS7U9ZHU2Jf74aQQQmR-OJFQASJJAAKY7zz\/s1600\/zDocker-cobaltstrike.webp?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg_vm4auEyffJtdAmDXY3RplKp3u0v74D_6UnRVWQZFF3oM8a0XdrUuXQZGk6c1U51IkzFVg6v_ERLfAlZu4gPl57JtUb1tiXq4ecr-Z-Af66UCgHK0-MjiWtMV880Q_hqSicvAePAADlGAsaLEdfbyVc9e0uS7U9ZHU2Jf74aQQQmR-OJFQASJJAAKY7zz\/s1600\/zDocker-cobaltstrike.webp?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg_vm4auEyffJtdAmDXY3RplKp3u0v74D_6UnRVWQZFF3oM8a0XdrUuXQZGk6c1U51IkzFVg6v_ERLfAlZu4gPl57JtUb1tiXq4ecr-Z-Af66UCgHK0-MjiWtMV880Q_hqSicvAePAADlGAsaLEdfbyVc9e0uS7U9ZHU2Jf74aQQQmR-OJFQASJJAAKY7zz\/s1600\/zDocker-cobaltstrike.webp?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg_vm4auEyffJtdAmDXY3RplKp3u0v74D_6UnRVWQZFF3oM8a0XdrUuXQZGk6c1U51IkzFVg6v_ERLfAlZu4gPl57JtUb1tiXq4ecr-Z-Af66UCgHK0-MjiWtMV880Q_hqSicvAePAADlGAsaLEdfbyVc9e0uS7U9ZHU2Jf74aQQQmR-OJFQASJJAAKY7zz\/s1600\/zDocker-cobaltstrike.webp?resize=700%2C400&ssl=1 2x, https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg_vm4auEyffJtdAmDXY3RplKp3u0v74D_6UnRVWQZFF3oM8a0XdrUuXQZGk6c1U51IkzFVg6v_ERLfAlZu4gPl57JtUb1tiXq4ecr-Z-Af66UCgHK0-MjiWtMV880Q_hqSicvAePAADlGAsaLEdfbyVc9e0uS7U9ZHU2Jf74aQQQmR-OJFQASJJAAKY7zz\/s1600\/zDocker-cobaltstrike.webp?resize=1050%2C600&ssl=1 3x, https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg_vm4auEyffJtdAmDXY3RplKp3u0v74D_6UnRVWQZFF3oM8a0XdrUuXQZGk6c1U51IkzFVg6v_ERLfAlZu4gPl57JtUb1tiXq4ecr-Z-Af66UCgHK0-MjiWtMV880Q_hqSicvAePAADlGAsaLEdfbyVc9e0uS7U9ZHU2Jf74aQQQmR-OJFQASJJAAKY7zz\/s1600\/zDocker-cobaltstrike.webp?resize=1400%2C800&ssl=1 4x"},"classes":[]},{"id":17998,"url":"https:\/\/kalilinuxtutorials.com\/cobaltstrikeparser\/","url_meta":{"origin":11223,"position":2},"title":"CobaltStrikeParser : Python parser for CobaltStrike Beacon&#8217;s configuration","author":"R K","date":"September 20, 2021","format":false,"excerpt":"CobaltStrikeParser is a Python parser for CobaltStrike Beacon's configuration. Use\u00a0parse_beacon_config.py\u00a0for stageless beacons, memory dumps or C2 urls with metasploit compatibility mode (default true).Many stageless beacons are PEs where the beacon code itself is stored in the\u00a0.data\u00a0section and xored with 4-byte key.The script tries to find the xor key and data\u2026","rel":"","context":"In &quot;Kali Linux&quot;","block_context":{"text":"Kali Linux","link":"https:\/\/kalilinuxtutorials.com\/category\/kali\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/1.bp.blogspot.com\/-mWE_rLyLFXg\/YTLr_3v4jTI\/AAAAAAAAKsA\/R_XknrGoKSk-Mqo-PtLct_yyeu5VD6vVgCLcBGAsYHQ\/s1194\/CobaltStrike%2B%25281%2529.png?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/1.bp.blogspot.com\/-mWE_rLyLFXg\/YTLr_3v4jTI\/AAAAAAAAKsA\/R_XknrGoKSk-Mqo-PtLct_yyeu5VD6vVgCLcBGAsYHQ\/s1194\/CobaltStrike%2B%25281%2529.png?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/1.bp.blogspot.com\/-mWE_rLyLFXg\/YTLr_3v4jTI\/AAAAAAAAKsA\/R_XknrGoKSk-Mqo-PtLct_yyeu5VD6vVgCLcBGAsYHQ\/s1194\/CobaltStrike%2B%25281%2529.png?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/1.bp.blogspot.com\/-mWE_rLyLFXg\/YTLr_3v4jTI\/AAAAAAAAKsA\/R_XknrGoKSk-Mqo-PtLct_yyeu5VD6vVgCLcBGAsYHQ\/s1194\/CobaltStrike%2B%25281%2529.png?resize=700%2C400&ssl=1 2x, https:\/\/i0.wp.com\/1.bp.blogspot.com\/-mWE_rLyLFXg\/YTLr_3v4jTI\/AAAAAAAAKsA\/R_XknrGoKSk-Mqo-PtLct_yyeu5VD6vVgCLcBGAsYHQ\/s1194\/CobaltStrike%2B%25281%2529.png?resize=1050%2C600&ssl=1 3x"},"classes":[]},{"id":17727,"url":"https:\/\/kalilinuxtutorials.com\/beaconeye\/","url_meta":{"origin":11223,"position":3},"title":"BeaconEye : Hunts Out CobaltStrike Beacons And Logs Operator Command Output","author":"R K","date":"September 13, 2021","format":false,"excerpt":"BeaconEye scans running processes for active Cobalt Strike beacons. When processes are found to be running beacon, BeaconEye will monitor each process for C2 activity. How It Works BeaconEye will scan live processes or MiniDump files for suspected CobaltStrike beacons. In live process mode, BeaconEye optionally attaches itself as a\u2026","rel":"","context":"In &quot;Kali Linux&quot;","block_context":{"text":"Kali Linux","link":"https:\/\/kalilinuxtutorials.com\/category\/kali\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/1.bp.blogspot.com\/-ogMGA2KGJas\/YS-2h1Q5oiI\/AAAAAAAAKnc\/nzTADsXOz043R7pKqKt5LJv5VIbrEMMfQCLcBGAsYHQ\/s728\/3064210%2B%25281%2529.png?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/1.bp.blogspot.com\/-ogMGA2KGJas\/YS-2h1Q5oiI\/AAAAAAAAKnc\/nzTADsXOz043R7pKqKt5LJv5VIbrEMMfQCLcBGAsYHQ\/s728\/3064210%2B%25281%2529.png?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/1.bp.blogspot.com\/-ogMGA2KGJas\/YS-2h1Q5oiI\/AAAAAAAAKnc\/nzTADsXOz043R7pKqKt5LJv5VIbrEMMfQCLcBGAsYHQ\/s728\/3064210%2B%25281%2529.png?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/1.bp.blogspot.com\/-ogMGA2KGJas\/YS-2h1Q5oiI\/AAAAAAAAKnc\/nzTADsXOz043R7pKqKt5LJv5VIbrEMMfQCLcBGAsYHQ\/s728\/3064210%2B%25281%2529.png?resize=700%2C400&ssl=1 2x"},"classes":[]},{"id":36574,"url":"https:\/\/kalilinuxtutorials.com\/aws-cobalt-redirector\/","url_meta":{"origin":11223,"position":4},"title":"AWS Cobalt Redirector : Streamlining Red Team Operations With Automated C2 Infrastructure","author":"Varshini","date":"February 20, 2025","format":false,"excerpt":"The AWS Cobalt Redirector is a tool designed to streamline the deployment of a command-and-control (C2) infrastructure for red team operations using AWS services. It leverages Terraform and Ansible for automation and integrates AWS resources like CloudFront, Lambda, and EC2 to create a robust redirector setup. Functionality The AWS Cobalt\u2026","rel":"","context":"In &quot;Cyber security&quot;","block_context":{"text":"Cyber security","link":"https:\/\/kalilinuxtutorials.com\/category\/cyber-security\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/02\/AWS-Cobalt-Redirector.webp?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/02\/AWS-Cobalt-Redirector.webp?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/02\/AWS-Cobalt-Redirector.webp?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/02\/AWS-Cobalt-Redirector.webp?resize=700%2C400&ssl=1 2x, https:\/\/i0.wp.com\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/02\/AWS-Cobalt-Redirector.webp?resize=1050%2C600&ssl=1 3x, https:\/\/i0.wp.com\/kalilinuxtutorials.com\/wp-content\/uploads\/2025\/02\/AWS-Cobalt-Redirector.webp?resize=1400%2C800&ssl=1 4x"},"classes":[]},{"id":24521,"url":"https:\/\/kalilinuxtutorials.com\/cobaltbus\/","url_meta":{"origin":11223,"position":5},"title":"CobaltBus : Cobalt Strike External C2 Integration With Azure Servicebus, C2 Traffic Via Azure Servicebus","author":"R K","date":"May 23, 2022","format":false,"excerpt":"CobaltBus is a Cobalt Strike External C2 Integration With Azure Servicebus, C2 traffic via Azure Servicebus Setup Create an Azure Service BusCreate a Shared access policy (Connection string) that can only Send and ListenEdit the static connectionString variable in Beacon C# projects to match the \"Primary Connection String\" value for\u2026","rel":"","context":"In &quot;Kali Linux&quot;","block_context":{"text":"Kali Linux","link":"https:\/\/kalilinuxtutorials.com\/category\/kali\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEiyICNLGVeLM-mdMiosXqnRs5jUvmH3V40MH-XvJiUXlI1BIOewC23bWYp15xOC8IfPtkNmN0nR7Wi_0vJRipIH5_roKsWklmuWTtjFd_F33PqVt1Jq9Tqc2mlgArBYcPol-m4GoXCXdVG5d04Cg8ia2OmAEzdLqmCHXm_xO9KOVQZFYo-harhmAzZr\/s728\/download%20%281%29.png?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEiyICNLGVeLM-mdMiosXqnRs5jUvmH3V40MH-XvJiUXlI1BIOewC23bWYp15xOC8IfPtkNmN0nR7Wi_0vJRipIH5_roKsWklmuWTtjFd_F33PqVt1Jq9Tqc2mlgArBYcPol-m4GoXCXdVG5d04Cg8ia2OmAEzdLqmCHXm_xO9KOVQZFYo-harhmAzZr\/s728\/download%20%281%29.png?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEiyICNLGVeLM-mdMiosXqnRs5jUvmH3V40MH-XvJiUXlI1BIOewC23bWYp15xOC8IfPtkNmN0nR7Wi_0vJRipIH5_roKsWklmuWTtjFd_F33PqVt1Jq9Tqc2mlgArBYcPol-m4GoXCXdVG5d04Cg8ia2OmAEzdLqmCHXm_xO9KOVQZFYo-harhmAzZr\/s728\/download%20%281%29.png?resize=525%2C300&ssl=1 1.5x, https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEiyICNLGVeLM-mdMiosXqnRs5jUvmH3V40MH-XvJiUXlI1BIOewC23bWYp15xOC8IfPtkNmN0nR7Wi_0vJRipIH5_roKsWklmuWTtjFd_F33PqVt1Jq9Tqc2mlgArBYcPol-m4GoXCXdVG5d04Cg8ia2OmAEzdLqmCHXm_xO9KOVQZFYo-harhmAzZr\/s728\/download%20%281%29.png?resize=700%2C400&ssl=1 2x"},"classes":[]}],"_links":{"self":[{"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/posts\/11223","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/comments?post=11223"}],"version-history":[{"count":0,"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/posts\/11223\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/media\/16465"}],"wp:attachment":[{"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/media?parent=11223"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/categories?post=11223"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/kalilinuxtutorials.com\/wp-json\/wp\/v2\/tags?post=11223"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}