SourcePoint Versions Save

SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.

v3.2

4 months ago

Bug Fix

  • Fixed issue with one of the Magic_MZ options
  • Fixed syscall_method printout display
  • Fixed Post-Ex PE name generation array

v3.1

4 months ago

Bug Fix

  • Fixed issue random value generator for Magic_PE values
  • Fixed syscall_method syntax

v3.0

4 months ago

New Features

  • Added direct and indirect Syscall methods.
  • Added support for different HTTP beacon Libraries.
  • Created a dynamic set of Magic_MZ header values to help avoid any detection rules looking for MZ in the PE header.
  • Created a dynamic function to generate unique Magic_PE header values.
  • Added Thread spoofing.
  • Created a unique thread-spoofing list of 9 of the most common Windows base thread modules along with a random number generator to ensure each base address spoofed is unique.
  • Updated the Pipe list to ones that are no longer linked to any IOCs.
  • Updated PE_Clone options and values to reflect the latest versions with the most recent version of Windows.
  • Stripped out IOCs related to Bofs and in-memory execution.
  • Added triggers for Post-ex UDRL cleanup.

Bug Fix

  • Fixed path issue with some post-ex processes
  • Fixed strepp for powerpick

v2.4

1 year ago

Shout out to hsfetty for helping with this

Bug Fixes

  • Fixed indexing error for PE Name

v2.3

1 year ago

Shout out to Nahid5 for helping with this

New Features

  • Added support for all the new features of Cobalt Strike 4.6

Bug Fixes

  • Fixed some missing HTTPS-certificate
  • Update the README

v2.2

2 years ago

Huge shout out to Xenov-X for helping with these new features

New Features

  • Added customuriGET and customuriPOST arguments
  • Made valid SSL optional for custom profiles
  • Added support for custom user agent

Bug Fixes

  • Fixed some missing quotes in Peclone_list
  • Fixed numerous errors with Custom Profiles
  • Fixed missing quotes on struct variable
  • Fixed issue with Spawnto option "pcaui.exe"
  • Update the README

2.1

2 years ago

Bug Fixes

  • Fixed URI issue with Profile 7.
  • Fixed Stage Flag issue.

v2.1

2 years ago

Bug Fixes

  • Fixed URI issue with Profile 7.
  • Fixed Stage Flag issue.

2.0

2 years ago

New Features

  • Added Field-Keyword profile.
  • Updated Safebrowing URI profile to be more uniquely generated.
  • Added more random values for each profile.
  • Added 4 new DLL for spoofing.
  • Added more Verbose messages related to the profile generated.

Bug Fixes

  • Fixed HTTP-Forwarder header issue with Profile 4.

v1.3.1

2 years ago

Bug Fixes

  • Fixed typo with PE Clone option audioeng.dll.