Friday, January 15, 20:54
Home security Has the Cobalt Strike toolkit source code been released online?

Has the Cobalt Strike toolkit source code been released online?

The source code for the widely used Cobalt Strike toolkit is said to have leaked online to a repository on GitHub.

Cobalt Strike is a penetration testing tool kit that allows intruders to develop "beaconsOn compromised devices to remotely create shells, run PowerShell scripts, or scale privileges on the attacking system.

Cobalt Strike

Cobalt Strike is an extremely popular tool for hackers using hackers publications to gain remote access to an infringer network. This tool is commonly used during attacks ransomware.

Twelve days ago, a repository was created on GitHub containing the source code for Cobalt Strike 4.0.

Cobalt Strike

Based on the "src / main / resources / about.html" file, this source code is for Cobalt Strike 4.0, which was released on December 5, 2019.

Cobalt Strike

As can be seen from the source code you can see below, the control for the Cobalt Strike license "changed", which obviously "breaks" the program.

Cobalt Strike

Vitali Kremez, who reviewed the source code, told BleepingComputer that he believes the code Java "Disassembled" manually. The person then corrected any dependencies and removed the license check so that it could be rebuilt.

Since its publication, the repository with the source code has been configured 172 times.

Although it is not the original source code, it is enough to cause concern to professionals security.

The fact that the source code of the "2019" version of Cobalt Strike 4.0 was probably "reconstructed" has significant consequences, as it removes the barriers to entry in the acquisition of the tool and actually facilitates the hacking groups to procure and modify the code as required during actions their."

“Tool leaks open the door to additional tool upgrades as with most tool leaks malware, such as Zeus and TinyNuke which were constantly reused and updated by them hacker after leakageSaid Kremez on BleepingComputer.

BleepingComputer contacted Cobalt Strike and their parent company Help Systems to confirm the αυθεντικότητα of the source code, but has not yet received any response.


Please enter your comment!
Please enter your name here

Teo Ehc
Teo Ehc
Be the limited edition.


Android: How to see which apps have access to your site

It's no secret that smartphone apps have access to many permissions - if you let them. It is important to make sure ...

Canon lets you take pictures from space

Instead of releasing new cameras for CES 2021, Canon is doing something different: It lets you take pictures from space ....

Wikipedia vs Big tech: Who fights misinformation?

As Election Day turned into US Election Week, Facebook, Twitter and YouTube were trying to prevent ...

Tesla: It is called to recall cars due to problematic screens

The touch screen in some Tesla cars seems to have a problem, which could ...

Ransomware is responsible for half of all data breaches in hospitals

Almost half of the data breaches committed in hospitals and the wider healthcare sector are due to ransomware attacks, ...

Astronomers have just found the oldest oversized black hole

A quasar was discovered in a dark corner of space - over 13,03 billion light-years away - and contains a ...

What are the best and most affordable 5G phones for 2021

The market will soon be flooded with mid-range 5G devices. Everything that happens will be really exciting: you will be able to ...

Verified Twitter accounts in a cryptocurrency scam with the name of Elon Musk violated!

Lately, hackers have been violating verified Twitter accounts in a cryptocurrency giveaway scam, in which the name of the CEO is used ...

Classiscam: Fraudsters "fake" brands and deceive users of European markets!

Dozens of criminal gangs publish fake ads in popular online markets, to attract unsuspecting users to "fraudulent" commercial sites or phishing ...

iOS 14.4: Displays a notification for repairs with non-genuine cameras

Starting with the iPhone 11, Apple has added a notification to iOS that tells the user when the device has a ...