Offsec Journey

C2 Infrastructure

Reference

Iredteam [Link]
Bluscreenofjeff [Link]
F-Secure- C3
Caddy Setup

C2 Protocols

HTTP/HTTPS
DNS
RDP, SSH, VPN

Redirectors

Use Filtering Redirectors [ Apache mod_rewrite, nginx ]
Domain Fronting & Payload redirectors

OPSec Considerations

Ensure all external Red Team infrastructure is locked down well.
Ensure payloads can run only in target environments.
Ensure web properties do not include attributable information.
Ensure all external systems store operating files with strong encryption.
Vet payloads & techniques for IoCs to aid blue teams in lessons learned phase.

PreviousMalware NextPhishing Infrastructure

Last updated 2 years ago