• Home
  • News
  • Software
  • Knowledge
  • MMO
  • Tips
  • Security
  • Network
  • Office
AnonyViet - English Version
  • Home
  • News
  • Software
  • Knowledge
  • MMO
  • Tips
  • Security
  • Network
  • Office
No Result
View All Result
  • Home
  • News
  • Software
  • Knowledge
  • MMO
  • Tips
  • Security
  • Network
  • Office
No Result
View All Result
AnonyViet - English Version
No Result
View All Result

How to install and use Cobalt Strike for Red Team

AnonyViet by AnonyViet
April 20, 2023
in Security
0

If you follow the Red Team route, you’ve probably heard of Cobalt Strike a few times, right? Cobalt Strike is software for exploiting and deploying Beacon on the victim machine. In short, the Beacon is like a worm, it lies silently in the victim’s machine, connects directly to the internet, is controlled by the hacker to execute malicious commands or payloads/scripts and remotely access the system. of the victim. In this article, I will guide you to simulate how to control the victim’s machine with Cobalt Strike.

Join the channel Telegram belong to AnonyViet ???? Link ????

How to control the victim machine with COBALT STRIKE

Note: The purpose of the article is to serve the learning process and learn how hackers work. Thereby avoiding related cases. You will be responsible for your own illegal acts. And one more thing is that since this is only a demo, I will make it as convenient as possible by skipping some other processes.

Prepare

I will use 2 virtual machines, Kali Linux (attacker) and Windows 11 (victim) on VMware 17 to perform simulation.

Cobalt Strike will require Java on the system, so you need to install Java on Kali Linux with the following command:

sudo apt install default-jdk

Enter the following command to confirm whether java has been successfully installed or not:

java --version

If the terminal shows the version of java, you have successfully installed java.

Next, you get the IP address of the Kali Linux machine with the following command:

ip a

How to install and use Cobalt Strike for Red Team 21

The address of your device will be in the form 192.168.xxx.xxx. Please copy this address for the following steps to use.

How to control the victim machine with COBALT STRIKE

Step 1: On a Linux machine (Kali or Ubuntu), you download Cobalt Strike (link who needs it, pm separately)

Step 2: Extract your COBALT STRIKE file, usually there will be 2 items: Server and Client

Step 3: You go to the Server directory and then run the 2 commands below. The purpose of these two commands is to grant execute permission to the two files we are about to use.

sudo chmod +x ./teamserver
sudo chmod +x ./TeamServerImage

Step 4: Next, run the command below. IP is the IP address of the Linux Server you are doing, you copy in the preparation step, and the pass you want to set is fine.

sudo ./teamserver <IP> <Pass>

How to install and use Cobalt Strike for Red Team 22

Step 5: Access the Client folder and open the second Terminal, be careful not to close the terminal to run teamserver. Then run the following 2 commands:

sudo chmod +x ./cobalstrike-client.cmd
./cobalstrike-client.cmd

How to install and use Cobalt Strike for Red Team 23

Step 6: After running this command, cobalt strike will open the connect interface. Here you need to fill in the following fields:

  • Alias: @.
  • Hosts: IP of the machine.
  • Ports: Leave the default as 50050.
  • User: User of Kali.
  • Password: Enter the password you used to run teamserver in terminal 1.

Finally press “Connect”.

How to install and use Cobalt Strike for Red Team 24

Step 7: Press “Yes”.

How to install and use Cobalt Strike for Red Team 25

Step 8: Select “Cobalt Strike” -> “Listeners”.

How to install and use Cobalt Strike for Red Team 26

Step 9: In the Listerner window, press “Add” at the bottom of the screen.

How to install and use Cobalt Strike for Red Team 27

Step 10: I named this Listener c2. Payload, you choose “HTTP beacons”. In section “HTTP Hosts”press “+”. Finally press “Save”.

How to install and use Cobalt Strike for Red Team 28

Step 11: Select “Attacks” -> “Scripted Web Delivery”.

How to install and use Cobalt Strike for Red Team 29

Step 12: In the Listener section, press the . button “…”. Select the Listener you just created and press “Choose”.

How to install and use Cobalt Strike for Red Team 30

Step 13: In type, select “powershell”then press “Launch”.

How to install and use Cobalt Strike for Red Team 31

Step 14: Cobalt Strike will issue you a command to execute on the victim machine. Please copy this command.

How to install and use Cobalt Strike for Red Team 32

Step 15: Open PowerShell on the victim machine and run the command issued by Cobalt Strike. Don’t ask me how to open Powershell on the victim machine and then run the command. Depending on your skills, there will be many different ways. I will suggest 2 ways: using social engineering or embedding the command in another file.

How to install and use Cobalt Strike for Red Team 33

Step 16: Back on the Kali Linux machine, you will see that the victim’s machine has been added to Cobalt Strike.

How to install and use Cobalt Strike for Red Team 34

Step 17: Right-click on the victim’s computer and select “Interact”.

How to install and use Cobalt Strike for Red Team 35

Step 18: Enter any command. The command you enter will be executed on the victim’s machine. Remember more shell Enter before the command. I will enter the command shell ipconfig /all.

How to install and use Cobalt Strike for Red Team 36

And this is the result. You have succeeded already.

How to install and use Cobalt Strike for Red Team 37

This article only demos in a LAN environment, if you do it in an Internet environment, you need NAT port 50050.

Tags: CobaltinstallRedStriketeam
Previous Post

[Facebook] TUT Check Pass New Facebook

Next Post

VPS MMO – New Service Launched at LANIT What’s Outstanding?

AnonyViet

AnonyViet

Related Posts

How to implement Shellcode Injection attack technique with Autoit
Security

How to implement Shellcode Injection attack technique with Autoit

March 14, 2025
How to exploit the holy hole of Hijacking on Windows
Security

How to exploit the holy hole of Hijacking on Windows

March 8, 2025
Hamamal: Shellcode execution technique from afar to overcome Antivirus's discovery
Security

Hamamal: Shellcode execution technique from afar to overcome Antivirus's discovery

February 10, 2025
Snov.io Email Finder: Search emails with only company name/domain name/LinkedIn profile
Security

Snov.io Email Finder: Search emails with only company name/domain name/LinkedIn profile

December 14, 2024
Capsolver: Automatic solution solution for business
Security

Capsolver: Automatic solution solution for business

December 12, 2024
Seekr: Collect & manage OSINT data
Security

Seekr: Collect & manage OSINT data

November 22, 2024
Next Post
VPS MMO – New Service Launched at LANIT What’s Outstanding?

VPS MMO - New Service Launched at LANIT What's Outstanding?

0 0 votes
Article Rating
Subscribe
Login
Notify of
guest

guest

0 Comments
Oldest
Newest Most Voted
Inline Feedbacks
View all comments

Recent News

Share Code Shop Selling Acc game extremely lightweight written in bootstrap

Share Code Shop Selling Acc game extremely lightweight written in bootstrap

May 19, 2025
Instructions for downloading all photos and story from Instagram

Instructions for downloading all photos and story from Instagram

May 19, 2025
Instructions on how to send messages on Android

Instructions on how to send messages on Android

May 18, 2025
Display the Internet speed on Windows Taskbar with Du Metter

Display the Internet speed on Windows Taskbar with Du Metter

May 18, 2025
Share Code Shop Selling Acc game extremely lightweight written in bootstrap

Share Code Shop Selling Acc game extremely lightweight written in bootstrap

May 19, 2025
Instructions for downloading all photos and story from Instagram

Instructions for downloading all photos and story from Instagram

May 19, 2025
Instructions on how to send messages on Android

Instructions on how to send messages on Android

May 18, 2025
AnonyViet - English Version

AnonyViet

AnonyViet is a website share knowledge that you have never learned in school!

We are ready to welcome your comments, as well as your articles sent to AnonyViet.

Follow Us

Contact:

Email: anonyviet.com[@]gmail.com

Main Website: https://anonyviet.com

Recent News

Share Code Shop Selling Acc game extremely lightweight written in bootstrap

Share Code Shop Selling Acc game extremely lightweight written in bootstrap

May 19, 2025
Instructions for downloading all photos and story from Instagram

Instructions for downloading all photos and story from Instagram

May 19, 2025
  • Home
  • Home 2
  • Home 3
  • Home 4
  • Home 5
  • Home 6
  • Next Dest Page
  • Sample Page

©2024 AnonyVietFor Knowledge kqxs hôm nay xem phim miễn phí SHBET bongdaso

wpDiscuz
0
0
Would love your thoughts, please comment.x
()
x
| Reply
No Result
View All Result
  • Home
  • News
  • Software
  • Knowledge
  • MMO
  • Tips
  • Security
  • Network
  • Office

©2024 AnonyVietFor Knowledge kqxs hôm nay xem phim miễn phí SHBET bongdaso