CVE-2021-36798 PoC — Helpsystems HelpSystems Cobalt Strike 安全漏洞

Source

https://github.com/M-Kings/CVE-2021-36798

Associated Vulnerability

Title:Helpsystems HelpSystems Cobalt Strike 安全漏洞 (CVE-2021-36798)
Description:Helpsystems HelpSystems Cobalt Strike是美国HelpSystems（Helpsystems）公司的一个渗透测试软件。 HelpSystems Cobalt Strike 4.2 和 4.3 的 Team Server 中存在安全漏洞，该漏洞允许远程攻击者使 C2 服务器线程崩溃并阻止信标与其通信。

Description

Cobalt Strike < 4.4 dos CVE-2021-36798

Readme

# CVE-2021-36798



CVE-2021-36798  Cobalt Strike < 4.3 dos 

用法

```
python3 CVE-2021-36798.py BeaconURL
```

打瘫Cobalt Strike 只需要一个包 



已测试 4.3 4.2 

参考：

https://labs.sentinelone.com/hotcobalt-new-cobalt-strike-dos-vulnerability-that-lets-you-halt-operations/

https://github.com/Sentinel-One/CobaltStrikeParser

File Snapshot


 [4.0K]  /data/pocs/fb30554d0b5d338d90223f7e618f5c56e9135474
├── [2.3K]  beacon_utils.py
├── [9.6K]  comm.py
├── [7.1K]  CVE-2021-36798.py
├── [ 25K]  parse_beacon_config.py
└── [ 346]  README.md

0 directories, 5 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!