Skip to content
/ HttpStageDownloader Public

cobaltstrike的http分阶段下载器 cpp版本;cobaltstrike stage downloader;

4 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

fgfxf/HttpStageDownloader

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits
1.png
1.png
 
 
2.png
2.png
 
 
3.png
3.png
 
 
4.png
4.png
 
 
5.png
5.png
 
 
README.md
README.md
 
 
winhttp下载stage.cpp
winhttp下载stage.cpp
 
 
wininet下载stage.cpp
wininet下载stage.cpp
 
 

Repository files navigation

HttpStageDownloader

cobaltstrike的http分阶段下载器 cpp版本 cobaltstrike stage downloader writed by cpp

参考视频:https://www.bilibili.com/video/BV1MA4y1Z7Uz/

cobalt strike的http beacon很容易被查杀,这里用wininet和winhttp写了个分阶段下载器。 代码里的
const WCHAR* szUrl = L"http://127.0.0.1/async/Newtab_promos";
const WCHAR* szDomain = L"127.0.0.1";
const WCHAR* szUrlPath = L"/async/Newtab_promos";
const char* szFileName = "stage.bin";
自己根据profile文件进行修改.




可以正常上线,但是有黑框

About

cobaltstrike的http分阶段下载器 cpp版本;cobaltstrike stage downloader;

Resources

Readme
Activity

Stars

4 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages