awesome-red-team-infrastructure
github.com/tigthor/awesome-red-team-infrastructure ↗All resources about Red Team Infrastructure
Use this list with your AI agent
Add the Context Awesome MCP server to Claude, Cursor, or any MCP client, then ask:
"Show me further resources on domain fronting resources from awesome-red-team-infrastructure"
Installation instructions →What's inside
Other Third-Party C2
- 2016 Metasploit RCE Static Key Deserialization
- 2017 Metasploit Meterpreter Dir Traversal Bugs
- 20 Linux Server Hardening Security Tips - nixCraft
nixCraft
- canisrufus (GitHub Repo)
- Cobalt Strike 3.5.1 Important Security Update - Raphael Mudge
Raphael Mudge
- Cobalt Strike over external C2 – beacon home in the most obscure ways
Cobalt Strike
- A Brave New World: Malleable C2 - Will Schroeder (@harmj0y)
Will Schroeder (@harmj0y)
- Cobalt Strike 2.0 - Malleable Command and Control - Raphael Mudge
Malleable Command and Control - Raphael Mudge
- Cobalt Strike 3.6 - A Path for Privilege Escalation - Raphael Mudge
A Path for Privilege Escalation - Raphael Mudge
- How to Write Malleable C2 Profiles for Cobalt Strike - Jeff Dimmock
Jeff Dimmock
- In-Memory Evasion (Video series) - Raphael Mudge
Raphael Mudge
- Malleable Command and Control Documentation - cobaltstrike.com
cobaltstrike.com
Further Resources
- Advanced Threat Tactics (2 of 9): Infrastructure - Raphael Mudge
Raphael Mudge
- A Vision for Distributed Red Team Operations - Raphael Mudge (@armitagehacker)
Raphael Mudge (@armitagehacker)
- Cloud-based Redirectors for Distributed Hacking - Raphael Mudge
Raphael Mudge
- DNS Propogation Checker
- How to Build a C2 Infrastructure with Digital Ocean – Part 1 - Lee Kagan (@invokethreatguy)
Lee Kagan (@invokethreatguy)
- Infrastructure for Ongoing Red Team Operations - Raphael Mudge
Raphael Mudge
Cobalt Strike Phishing
- Advanced Threat Tactics (3 of 9) - Targeted Attacks - Raphael Mudge
Targeted Attacks - Raphael Mudge
- Cobalt Strike Blog - What's the go-to phishing technique or exploit?
What's the go-to phishing technique or exploit?
- Cobalt Strike - Spear Phishing documentation
Spear Phishing documentation
- Spear phishing with Cobalt Strike - Raphael Mudge
Raphael Mudge
Domain Fronting
- Alibaba CDN Domain Fronting - Vincent Yiu (@vysecurity)Further Resources on Domain Fronting
Vincent Yiu (@vysecurity)
- CloudFlare Domain Fronting: an easy way to reach (and hide) a malware C&C - @theMiddle (Medium)Further Resources on Domain Fronting
@theMiddle (Medium)
- CloudFront HijackingFurther Resources on Domain Fronting
- CloudFrunt GitHub RepoFurther Resources on Domain Fronting
- Domain Fronting via Cloudfront Alternate Domains - Vincent Yiu (@vysecurity)
Vincent Yiu (@vysecurity)
- Domain Fronting: Who Am I? - Vincent Yiu (@vysecurity)Further Resources on Domain Fronting
Vincent Yiu (@vysecurity)
Specific Hardening Resources
- @andrewchiles - Andrew Chiles
Andrew Chiles
- @armitagehacker - Raphael Mudge
Raphael Mudge
- Attack Infrastructure Logging (4-part series) - Gabriel Mathenge (@_theVIVI)
Gabriel Mathenge (@_theVIVI)
- Automated Empire Infrastructure
- Automated Red Team Infrastructure Deployment with Terraform - Part 1
- Automated Red Team Infrastructure Deployment with Terraform - Part 2
HTTP(S)
- An In-Depth Guide to mod_rewrite for ApacheOther Apache mod_rewrite Resources
- Apache mod_rewrite Grab BagPayloads and Web Redirection
- Apache mod_rewrite IntroductionOther Apache mod_rewrite Resources
- Automating Apache mod_rewrite and Cobalt Strike ProfilesOther Apache mod_rewrite Resources
- Cobalt Strike HTTP C2 Redirectors with Apache mod_rewrite - Jeff DimmockC2 Redirection
Jeff Dimmock
- Combatting Incident Responders with Apache mod_rewritePayloads and Web Redirection
Categorization and Blacklist Checking Resources
Showing a sample of 133 resources. View the full list on GitHub →