Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Refeneces for implementing more fuctions. #6

Closed
HellooTiger opened this issue Apr 25, 2021 · 1 comment
Closed

Refeneces for implementing more fuctions. #6

HellooTiger opened this issue Apr 25, 2021 · 1 comment

Comments

@HellooTiger
Copy link

Where are these references can be found if more functions are intended to be implementing, such as the command "Net view" ?
That is also, how can the consts defined below be extended?
const (
CMD_TYPE_SLEEP = 4
CMD_TYPE_SHELL = 78
CMD_TYPE_UPLOAD_START = 10
CMD_TYPE_UPLOAD_LOOP = 67
CMD_TYPE_DOWNLOAD = 11
CMD_TYPE_EXIT = 3
CMD_TYPE_CD = 5
CMD_TYPE_PWD = 39
CMD_TYPE_FILE_BROWSE = 53
)
@darkr4y
Copy link
Owner

darkr4y commented Jun 25, 2021

These are based on the results of reverse engineering.
you can already find a lot of doc about how to recover this CMD_TYPE
ref -> https://research.nccgroup.com/2020/06/15/striking-back-at-retired-cobalt-strike-a-look-at-a-legacy-vulnerability/

@darkr4y darkr4y closed this as completed Jul 18, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@darkr4y @HellooTiger