Blog DNS Command and Control Added to Cobalt Strike Many networks are like sieves. A reverse TCP payload or an HTTP/S connection is all it takes to get out. Once in a while, you
Blog Metasploit 4.6 – Now with less Open Source GUI Last week, I received an email from Tod B. at Rapid7 stating that the next binary installer of Metasploit would ship without Armitage and msfgui.
Blog Pivoting through SSH This is a pretty quick tip, but still useful. When you SSH to a host, you may use the -D flag to setup “dynamic” application-level
Blog Missing in Action: Armitage on Kali Linux As you may know, the highly anticipated Kali Linux is now available. If you’ve fired it up, you may notice it’s missing a familiar tool.
Blog HOWTO Integrate third-party tools with Cortana One of the goals of Cortana is to give you the ability to integrate third-party tools and agents into Armitage and Cobalt Strike’s red team
Blog Cobalt Strike Updates 03.06.13 Just in time for this weekend’s North East Collegiate Cyber Defense Competition event, I have a fresh update to Armitage and Cobalt Strike. Here’s the
Blog Deprecation Notice: Metasploit source checkouts will NO LONGER update over SVN – Move to Git The official home of the Metasploit Framework’s source code has been github for a while now. Ever since the move to Git, Rapid7 has operated
Blog My Software Development Practices: The Joel Test Joel Spolsky is one of my favorite writers on the topic of software development. He coined a 12-step Joel Test to determine if your company
Blog Cobalt Strike Boxed Set comes to ShmooCon It’s the middle of February, love is in the air, and… I’m busy preparing for my favorite hacker conference ShmooCon. This year, for the second
Blog Getting Started with Armitage and the Metasploit Framework (2013) So, I just realized there isn’t a modern tutorial on how to start Armitage and take advantage of it. There’s the documentation, but my documentation tries