Looking for Cobalt Strike PCAP - DNS C2
Hey Malware Analysts,
A colleague recently brought up CobaltStrikes DNS and Malleable C2 Methods that I was hoping to get a look at and wondered if anyone with access to a non-trial version of CobaltStrike would be so kind as to provide some PCAP samples of the C2 methods in action or knew of a location where such PCAPs are already hosted?
Thanks in advance,
ziran last edited by
@id1010terror Check out packettotal for samples once you can ID the c2 data, I’m on holidays right now but when I’m back I’ll send you a capture.
Thank you @ziran, I’ll definitely take you up on that offer!