Threat Level: green Handler on Duty: Guy Bruneau

SANS ISC: Video: Decrypting Cobalt Strike Traffic With Keys Extracted From Process Memory SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Video: Decrypting Cobalt Strike Traffic With Keys Extracted From Process Memory

I made a video showing the steps to take to decrypt Cobalt Strike traffic that I covered in my diary entry "Decrypting Cobalt Strike Traffic With Keys Extracted From Process Memory".

Didier Stevens
Senior handler
Microsoft MVP
blog.DidierStevens.com

DidierStevens

597 Posts
ISC Handler
Nov 7th 2021

Sign Up for Free or Log In to start participating in the conversation!