Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Video: Decrypting Cobalt Strike Traffic With Keys Extracted From Process Memory SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network
https://isc.sans.edu/honeypot.html

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Video: Decrypting Cobalt Strike Traffic With Keys Extracted From Process Memory

I made a video showing the steps to take to decrypt Cobalt Strike traffic that I covered in my diary entry "Decrypting Cobalt Strike Traffic With Keys Extracted From Process Memory".

Didier Stevens
Senior handler
Microsoft MVP
blog.DidierStevens.com

DidierStevens

596 Posts
ISC Handler
Nov 7th 2021

Sign Up for Free or Log In to start participating in the conversation!