Install Cobalt Strike on Kali Linux
Dependencies
Kali Linux ships with the dependencies needed to use Cobalt Strike. The Metasploit Framework and Java are already setup for you.
Installation Steps
- Start the postgresql database
service postgresql start
- (Optional) Make postgresql database start on boot
update-rc.d postgresql enable
- Start and stop the Metasploit service (this will setup your database.yml file for you)
service metasploit start
service metasploit stop - Extract cobaltstrike-trial.tgz
tar zxvf cobaltstrike-trial.tgz
- Tell Kali Linux to use Java 1.7 by default
32-bit Kali Linux:
update-java-alternatives --jre -s java-1.7.0-openjdk-i386
64-bit Kali Linx:
update-java-alternatives --jre -s java-1.7.0-openjdk-amd64
How to run
- Start the postgresql database (this is not automatic)
service postgresql start
- Run Cobalt Strike
./cobaltstrike
- Press Connect
- Press Yes when asked to start Metasploit
If you can't get Cobalt Strike to run, review our troubleshooting steps for more help.
How to update the Metasploit® Framework
Use msfupdate to update to the latest stable snapshot of the Metasploit® Framework. These stable snapshots are blessed by theMetasploit® team, not Strategic Cyber. Generally, they're compatible with Cobalt Strike and you shouldn't experience a problem.
Some Metasploit® Framework updates require changes to yourdatabase configuration. Use service metasploit start to start theMetasploit® service (which will automatically perform these steps). TheMetasploit® service is not necessary to use Cobalt Strike. Use servicemetasploit stop to free the resources it uses. If you get a I cannot find a database.yml. I *really* need it error--try this step tofix it
If an incompatability occurs, you may need to uninstall the Metasploit® Framework and reinstall it without the updates. If thisis necessary, a note will go out to the Cobalt StrikeTechnical Notes Mailing List. Make sure you're subscribed.