概述
最近在研究cobaltstrike,想着看看控制端登录teamserver的验证部分,可是却不知道该如何调试teamserver
搜了一下,往上cobaltstrike二次开发环境搭建的文章有很多,不过都没有说明对teamserver的调试。在自己动手配置teamserver调试的过程中踩了一点坑,遂记录一下。
配置
启动teamserver的脚本
java -XX:ParallelGCThreads=4 -Dcobaltstrike.server_port=50050 -Djavax.net.ssl.keyStore=./cobaltstrike.store -Djavax.net.ssl.keyStorePassword=123456 -server -XX:+AggressiveHeap -XX:+UseParallelGC -classpath ./cobaltstrike.jar server.TeamServer %*
根据启动脚本配置如下:
vmoptions:
-XX:ParallelGCThreads=4 -Dcobaltstrike.server_port=50050 -Djavax.net.ssl.keyStore=./cobaltstrike.store -Djavax.net.ssl.keyStorePassword=123456 -server -XX:+AggressiveHeap -XX:+UseParallelGC
program arguments:
ip pwd def.profile
MANIFEST.MF:
将Main-Class设置为server.TeamServer
Manifest-Version: 1.0
Ant-Version: Apache Ant 1.8.2
Created-By: 1.7.0_75-b13 (Oracle Corporation)
Main-Class: server.TeamServer
Add-Exports: java.desktop/sun.swing java.desktop/sun.swing.table java.de
sktop/sun.swing.plaf.synth java.desktop/com.sun.java.swing.plaf.windows
java.desktop/sun.awt.shell java.desktop/com.sun.awt java.base/sun.secu
rity.action
Add-Opens: java.desktop/javax.swing.plaf.synth java.desktop/javax.swing.
plaf.basic java.desktop/javax.swing java.desktop/javax.swing.tree java.
desktop/java.awt.event
Synthetica-Version: 2.30.0 Build 16
Multi-Release: true
Main-Class: server.TeamServer
或者不更改MANIFEST.MF文件,增加一个debugger configuration,Main Class为server.TeamServer
设置好之后即可正常调试teamserver。