Blog Behind the Mask: Spoofing Call Stacks Dynamically with Timers This blog introduces a PoC technique for spoofing call stacks using timers. Prior to our implant sleeping, we can queue up timers to overwrite its
Blog Out Of Band Update: Cobalt Strike 4.7.2 Cobalt Strike 4.7.2 is now available. This is an out of band update to fix a remote code execution vulnerability that is rooted in Java
Blog Out Of Band Update: Cobalt Strike 4.7.1 Cobalt Strike 4.7.1 is now available. This is an out of band update to fix an issue discovered in the 4.7 release that was reported
Blog Cobalt Strike 4.7: The 10th Anniversary Edition Cobalt Strike 4.7 is now available. This release sees support for SOCKS5, new options to provide flexibility around how BOFs live in memory, updates to
Blog Celebrating 10 Years of Cobalt Strike Can you believe it? Cobalt Strike is 10 years old! Think back to the summer of 2012. The Olympics were taking place in London. CERN
Blog Arsenal Kit Update: Thread Stack Spoofing As I mentioned in the recent Roadmap Update blog post, we are in the process of expanding the Cobalt Strike development team and ramping up
Blog There’s Another New Deputy in Town Things are moving in the Cobalt Strike world…And they are moving… FAST. When I started my position with the Cobalt Strike team, I got to
Blog Out Of Band Update: Cobalt Strike 4.6.1 Cobalt Strike 4.6.1 is now available. This is an out of band update to fix a few issues that were discovered in the 4.6 release
Blog Cobalt Strike 4.6: The Line In The Sand Cobalt Strike 4.6 is now available. As I mentioned in the recent Roadmap Update blog post, this isn’t a regular release, as it mostly focuses
Blog Building Upon a Strong Foundation In the weeks ahead, Cobalt Strike 4.6 will go live and will be a minor foundational release before we move into our new development model.