Tomorrow our Red Teamers Moritz Thomas & Patrick E. will present at #BSides #Frankfurt!
As Red Teamers, our mission is to stay stealthy and undetected during assessments, just like real threat actors. But with evolving defenses, we must constantly update our techniques. That's where "beacon object files" (BOFs) come into play – a game-changing technique that leaves no traces!
While BOFs aren't exactly new, they've proven incredibly effective for over two years now. However, a challenge arose when #BruteRatel C4 couldn't support #CobaltStrike's de-facto BOF standard API.
What did we do? We decided to tackle the problem head-on and found a solution!
Join us at BSides in Frankfurt as we take you on a journey into the COFF format, where we explore the incompatibility between Cobalt Strike and Brute Ratel's BOF APIs. But don't worry, we won't leave you hanging! We'll unveil our groundbreaking solution, which establishes full compatibility between the two frameworks.
What's even better? We've developed a handy tool that automates this task, making your life as a Red Teamer much easier.
🗓 BSides Frankfurt, 15.09.2023
🕞15:30
🚀 Key Takeaways:
✅ Unlock the power of BOFs in Brute Ratel C4
✅ Learn how to achieve compatibility between Cobalt Strike and Brute Ratel
✅ Get access to our time-saving automation tool
We're beyond excited to share our knowledge with you. See you there! 👊
🎫 There are still tickets available > https://lnkd.in/eZNxy47F
JEMM Solutions, AIXLIVE, The Rebooting
1moGlad to see there was a breeze and my partner Jesse Meyer in action. Thank you EX.CO for your partnership!