Mirrors/ioc-collection
6
0
Fork 0
mirror of https://github.com/avast/ioc synced 2024-06-27 09:18:37 +00:00
Code Issues Packages Projects Releases Wiki Activity
182b952a63
ioc-collection/CobaltStrike/payload_tools
History
avast-ti 182b952a63
Add files via upload
2021-07-08 01:31:29 +02:00
..
cs_payload_extractor.py Add files via upload 2021-07-08 01:31:29 +02:00
cs_payload_parser.py Add files via upload 2021-07-08 01:31:29 +02:00
README.md Add files via upload 2021-07-08 01:31:29 +02:00

README.md

Payload tools

Python scripts for extracting and parsing x86 and x64 payloads.

cs_payload_parser.py

Parser support DNS, SMB, TCP Bind/Reverse, HTTP/HTTPS payloads.

Usage:

cs_payload_parser.py <file_or_directory>

Example:

cs_payload_parser.py memdump.bin
cs_payload_parser.py c:\cs_payloads\

cs_payload_extractor.py

Payload extractor and parser for various encoded formats (hex, hex_array, hex_veil, dec_array, chr_array, base64, xor, inflate, gzip).

Usage:

cs_payload_extractor.py <file_or_directory>

Example:

cs_payload_extractor.py memdump.bin
cs_payload_extractor.py c:\cs_payloads\