Cobalt Strike

GPTKB entity

Statements (51)
Predicate Object
gptkbp:instanceOf penetration testing software
gptkbp:acquiredBy gptkb:HelpSystems
gptkbp:category gptkb:security
penetration testing tools
red teaming tools
gptkbp:developer gptkb:Strategic_Cyber_LLC
gptkbp:feature reporting
command and control
Beacon payload
Malleable C2 profiles
PowerShell scripting
collaborative operations
social engineering tools
gptkbp:firstReleased 2012
https://www.w3.org/2000/01/rdf-schema#label Cobalt Strike
gptkbp:latestReleaseVersion 4.8
2023-03-15
gptkbp:license proprietary
gptkbp:misusedBy cybercriminals
APT groups
gptkbp:notableUser security researchers
threat actors
gptkbp:operatingSystem gptkb:Windows
gptkb:Linux
gptkbp:programmingLanguage gptkb:Java
gptkbp:relatedTo gptkb:Red_Team_Operations
gptkb:monarchy
gptkb:Metasploit
Blue Team defense
gptkbp:supports team collaboration
data exfiltration
custom scripting
lateral movement
persistence mechanisms
C2 communication channels
Windows privilege escalation
customizable attack simulations
payload generation
post-exploitation modules
gptkbp:targetAudience security professionals
penetration testers
red teams
gptkbp:usedFor red teaming
adversary simulation
post-exploitation
gptkbp:vulnerableTo often detected by security solutions
pirated versions used by threat actors
gptkbp:website https://www.cobaltstrike.com/
gptkbp:bfsParent gptkb:TA-97
gptkb:Conti
gptkbp:bfsLayer 5