all InfoSec news
Config Extraction from in-memory CobaltStrike Beacons
Malware Analysis, News and Indicators - Latest topics malware.news
Recently we had a case where threat actors deployed CobaltStrike, which has become a common pattern over the years. CobaltStrike is a tool designed for red teaming exercises and provides a foothold into a target environment as well as extensive capabilities for staging further payloads. Unfortunately it is abused for malicious purposes just as often.
While doing forensic analysis of compromised systems, our Incident Response team is interested in how exactly CobaltStrike is configured. Having the configuration can give context …
capabilities case cobaltstrike environment exercises malicious malware analysis memory red teaming target threat threat actors tool