Cobalt Strike
| Cobalt Strike
|
|
|---|---|
|
|
| Basic data
|
|
| Maintainer | Strategic Cyber LLC |
| developer | Raphael Mudge |
| Publishing year | 2012 |
| Current version | 3.7 (2017-03-15) |
| operating system | Various |
| category | Pentest tool |
| License | $ 3,500 per user per year |
| German speaking | No |
| cobaltstrike.com | |
Cobalt Strike is software with flexible functions to simulate industrial espionage on your own network, to test defensive measures and to increase your own computer security. This includes attack reconnaissance, intrusion, the establishment of stable access with a solid base of operations in the victim's network and the subsequent theft of data.
Cobalt Strike can detect security vulnerabilities in which a Red Team , an independent group of programmers, acts as an opponent who has little or no information about the system and its structure. A collection of attack tools is available, the post-processing tools include a report generator .
history
Since October 2015, Cobalt Strike no longer shares its code with the graphical cyber attack management tool Armitage and no longer depends on the Metasploit framework. Still, it is closely linked to these two tools.
properties
Cobalt Strike can recreate the tactics and techniques of an advanced opponent in a network. In contrast to other penetration tests , which primarily aim at unresolved vulnerabilities and misconfigurations, Cobalt Strike focuses on security-related operations. With the help of post-processing agents and covert channels, Cobalt Strike acts like an inconspicuous, long-term embedded actor in the network. Malleable C2 feature can change the network indicators to look like a different malicious program each time .
In addition, Armitage can be used to send user data from Cobalt-Strike to Metasploit and to exploit any vulnerabilities found. Conversely, metasploit attacks can be transmitted virtually through a tunnel .
Web links
- Review in the specialist magazine for information security "SC Magazine" of Haymarket Media
- Review in the "Network World" magazine of the International Data Group
Individual evidence
- ^ Adversary Simulation and Red Team Operations Software - Cobalt Strike. Retrieved April 2, 2017 .
- ^ Malleable Command and Control Language - Cobalt Strike. Retrieved April 2, 2017 .
- ^ Press - Cobalt Strike. Retrieved April 2, 2017 .