Created
October 29, 2021 05:29
-
-
Save leonjza/66d28ec123b95c942de52536cbd0b324 to your computer and use it in GitHub Desktop.
Cobalt Strike Clone Executable Signature for code-signer Malleable Profile block
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # clone the certificate for SysInternals TCPView.exe and save | |
| # it as cert.pfx | |
| $o = Get-PfxCertificate -FilePath .\tcpview.exe | |
| $cl = New-SelfSignedCertificate -CloneCert $o | |
| $p = ConvertTo-SecureString -String "password" -Force -AsPlainText | |
| Export-PfxCertificate -FilePath cert.pfx -Cert $cl -Password $p |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/sh | |
| keytool -importkeystore -srckeystore cert.pfx -srcstoretype pkcs12 -destkeystore cert.jks -deststoretype JKS | |
| keytool -v -list -keystore cert.jks |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment