Take a screenshot without injection for Cobalt Strike. I only made minor optimizations to the existing code, and made it support the ability to get a complete screenshot when global scaling is initiated on Windows.
- git clone the repo
- open the solution in Visual Studio
- Build project BOF
- import the ScreenshotBOFPlus.cna script into Cobalt Strike
- use the command screenshot_plus
beacon> screenshot_plus
[*] Running screenshot without injection
...
- if take sceenshot successfully, you should find a screenshot on View-Screenshots
usual disclaimer here, I am not responsible for any crimes against humanity you may commit or nuclear war you may cause using this piece of poorly written code.