Cobalt Strike 4.4 Source Code
by NEO_666 - August 26, 2021 at 10:24 PM
#1
We have a working copy of Cobalt Strike, compiled from the leaked source code. It still unfortunately has the teamserver bug which prevents it from loading screenshots to the tab.

Compiled (console log fix)
https://raidforums.com/Thread-CobaltStri...-VPN-fixed

Source Code
https://www.upload.ee/files/13423202/cob...e.zip.html
Reply
#2
hi !

thanks a lot for this news ;-)
But, What's is the password for the downliad link file, If you don't mind ???
Reply
#3
(August 26, 2021 at 11:16 PM)talal1 Wrote: hi !

thanks a lot for this news ;-)
But, What's is the password for the downliad link file, If you don't mind ???

Im waiting for my comment to be moderated to unlock the password for the file :( I'll update the post as soon as I get the password.
Reply
#4
that would be great!!!!! will wait

can you share the link to the chinese site?
Reply
#5
(August 26, 2021 at 10:24 PM)NEO_666 Wrote: So apparently some chinese guy has cracked Cobalt Strike 4.4. I dont have a way to verify this because i dont have a chinese phone number. The leak is posted on baidu (it requires an account to download). I'm currently in the process of obtaining the password. My comment is awaiting moderation. If anyone else wants to join in on the hunt. I will post the links here. Im desperate for that new version of Cobalt Strike. As far as I know, this is the only link that has anything related to Cobalt Strike being cracked. If anyone else knows something please share Smile 

chinese forum

file hosting link

This is the source compression package, not the official original
Reply
#6
It's that?
https://www.upload.ee/files/13423202/cob...e.zip.html
Reply
#7
https://www.upload.ee/files/13423202/cob...e.zip.html
Reply
#8
password is : t6bq
FAKE!!!
SHA-256: 01dba8783768093b9a34a1ea2a20f72f29fd9f43183f3719873df5827a04b744
Reply
#9
(August 27, 2021 at 03:48 AM)aghuisghfafih Wrote: password is : t6bq
FAKE!!!
SHA-256: 01dba8783768093b9a34a1ea2a20f72f29fd9f43183f3719873df5827a04b744

it is the 4.4 resurces,not is a jar
Reply
#10
Here is cobalt strike 4.4 ,the kit 





✅ Fully licensed Cobalt Strike 4.4 with latest updates including toolkit.


✅ This version are fixed Hotcobalt bug.

https://labs.sentinelone.com/hotcobalt-n...perations/

✅ Cobalt Strike loaded with artifact kit, Malleable C2 Profiles, applet, ElevateKit, powerapplet, resourcekit.

✅ This copy can be used on multiple servers.

Hash matching :

✅ verify.cobaltstrike.com.

SHA256 hash of cobaltstrike.jar:

7af9c759ac78da920395debb443b9007fdf51fa66a48f0fbdaafb30b00a8a858



✅ Manual https://cobaltstrike.com/downloads/csmanual44.pdf




📣 Cobalt Strike 4.4 Release Notes


August 04, 2021 - Cobalt Strike 4.4

------------- +

✅ Mimikatz , Sleep mask kit added to CS 4.4

✅ artifact , resource kit updated


✅ Add support for User Defined reflective loaders. https://www.cobaltstrike.com/help-user-d...ive-loader

✅ Add support for User Defined sleep masking. https://www.cobaltstrike.com/help-sleep-mask-kit

✅ Product licensing and Security enhancements.


✅ Avoid localhost Sysmon event 22 for Beacon meta-data resolution.


✅ Validate beacons with sleep_mask set have enough code cave space.


✅ Update Mimikatz (2.2.020210724)


✅Update Cobalt Strike updater with cert/subdomain info


✅ Add client reconnection option


✅ Add buffering when sending data via NanoHTTPD


✅ Update beacon help for link command


✅ Update c2lint to return a result code


✅ Add new dialog to the UI to view the Malleable C2 profile


✅ Add an "allow" option to useragents filter; complements the block added in 4.3


✅ Add alias field for server to login dialog


✅ Add alias to connection dialog


✅ Add alias on connection tabs on main Cobalt Strike screen

✅ Enhance c2lint and UI handling of coding signing functionality


✅ Enhance failover host rotation strategy(http/s 200 response with invalid data is a failure)


✅ Add spear phishing email template parsing validation to Send client action


✅ UI: enhancement request for Connect dialog to remember last connected teamserver


✅ Add better C2 linting for code signing configuration


✅ Checksum failure when building beacon using compiled Artifact kit


✅ Vulnerability report: Team server crashes when bombarded with too large screenshots. (added TeamServer.prop config)


✅ Fix error in arsenal build scripts (add bin/bash directive)


✅ Fix various places in the UI where required table row selection was not edited.


✅ Fix beacon error when a host entry of a listener contains a space at the end (trim host entry strings)


✅ Clicking into the screenshots/keystrokes tabs doesn't immediately focus the list


✅ Fix host rotation 'strategy' option documentation missing from 'listener_create_ext' aggressor function
Reply
#11
(August 27, 2021 at 06:26 AM)ZERODAY-win Wrote: Here is cobalt strike 4.4 ,the kit 





✅ Fully licensed Cobalt Strike 4.4 with latest updates including toolkit.


✅ This version are fixed Hotcobalt bug.

https://labs.sentinelone.com/hotcobalt-n...perations/

✅ Cobalt Strike loaded with artifact kit, Malleable C2 Profiles, applet, ElevateKit, powerapplet, resourcekit.

✅ This copy can be used on multiple servers.

Hash matching :

✅ verify.cobaltstrike.com.

SHA256 hash of cobaltstrike.jar:

7af9c759ac78da920395debb443b9007fdf51fa66a48f0fbdaafb30b00a8a858



✅ Manual https://cobaltstrike.com/downloads/csmanual44.pdf




📣 Cobalt Strike 4.4 Release Notes


August 04, 2021 - Cobalt Strike 4.4

------------- +

✅ Mimikatz , Sleep mask kit added to CS 4.4

✅ artifact , resource kit updated


✅ Add support for User Defined reflective loaders. https://www.cobaltstrike.com/help-user-d...ive-loader

✅ Add support for User Defined sleep masking. https://www.cobaltstrike.com/help-sleep-mask-kit

✅ Product licensing and Security enhancements.


✅ Avoid localhost Sysmon event 22 for Beacon meta-data resolution.


✅ Validate beacons with sleep_mask set have enough code cave space.


✅ Update Mimikatz (2.2.020210724)


✅Update Cobalt Strike updater with cert/subdomain info


✅ Add client reconnection option


✅ Add buffering when sending data via NanoHTTPD


✅ Update beacon help for link command


✅ Update c2lint to return a result code


✅ Add new dialog to the UI to view the Malleable C2 profile


✅ Add an "allow" option to useragents filter; complements the block added in 4.3


✅ Add alias field for server to login dialog


✅ Add alias to connection dialog


✅ Add alias on connection tabs on main Cobalt Strike screen

✅ Enhance c2lint and UI handling of coding signing functionality


✅ Enhance failover host rotation strategy(http/s 200 response with invalid data is a failure)


✅ Add spear phishing email template parsing validation to Send client action


✅ UI: enhancement request for Connect dialog to remember last connected teamserver


✅ Add better C2 linting for code signing configuration


✅ Checksum failure when building beacon using compiled Artifact kit


✅ Vulnerability report: Team server crashes when bombarded with too large screenshots. (added TeamServer.prop config)


✅ Fix error in arsenal build scripts (add bin/bash directive)


✅ Fix various places in the UI where required table row selection was not edited.


✅ Fix beacon error when a host entry of a listener contains a space at the end (trim host entry strings)


✅ Clicking into the screenshots/keystrokes tabs doesn't immediately focus the list


✅ Fix host rotation 'strategy' option documentation missing from 'listener_create_ext' aggressor function


You sell it with cost expensive, with this cost can buy direct from vendor so stop PR sell it, now it's also leak =))!
Reply
#12
(August 27, 2021 at 03:57 AM)Mannix Wrote:
(August 27, 2021 at 03:48 AM)aghuisghfafih Wrote: password is : t6bq
FAKE!!!
SHA-256: 01dba8783768093b9a34a1ea2a20f72f29fd9f43183f3719873df5827a04b744

it is the 4.4 resurces,not is a jar

i dont have any idee how to run .
Reply

Possibly Related Threads…
Thread Author Replies Views Last Post
Cobalt Strike 4.4 w/kits - 5 working download locations zeneq 13 603 2 hours ago
Last Post: Tokukaka
Cobalt Strike 4.0 download kindme 253 38,523 Yesterday at 07:36 AM
Last Post: tummiecookie
Cobalt Strike 4.1 (June 25, 2020) Mannix 46 8,972 October 16, 2021 at 10:42 PM
Last Post: lord128

 Users browsing this thread: 1 Guest(s)