Opening CobaltStrike to a wider world
Setup:
- install rabbitmq: sudo apt install rabbitmq-server
- install java (you need that for CS anyway)
- download java deps and place them in your CS directory:
- put the spy.cna in your cobaltstrike directory
- run it: ./agscript 1.2.3.4 50050 bigear s3cret ./spy.cna
- build your elasticsearch server (somehow, it's not hard)
- install logstash
- edit the bigear.conf and put in your logstash destination