C2 Infrastructure
Reference
C2 Protocols
HTTP/HTTPS
DNS
RDP, SSH, VPN
Redirectors
Use Filtering Redirectors [ Apache mod_rewrite, nginx ]
Domain Fronting & Payload redirectors
OPSec Considerations
Ensure all external Red Team infrastructure is locked down well.
Ensure payloads can run only in target environments.
Ensure web properties do not include attributable information.
Ensure all external systems store operating files with strong encryption.
Vet payloads & techniques for IoCs to aid blue teams in lessons learned phase.
Last updated