17. Dominic Mortimer: Unified Red Team Automation with Red Commander
Deploying and managing complex Red Team infrastructure is painful, with a never ending list of cloud providers and services required. Red Commander, provides a simple user friendly web front end to unify, deploy and control all engagement assets across numerous providers within a single application.
Following in the footsteps of tools like Ghostwriter Red Commander utilises the powerful ORM features of Django combined with Ninja API to orchestrate the management and deployment of interlinked and dependent Red Team infrastructure.
Sick and tired of hundreds of deployment scripts, with multiple config files that need editing for every engagement in which you enter the same information from one cloud portal into another input field just to make Terraform go brrr. With Red Commander the aim was to utilise, store and process information from various cloud systems and track them to specific user defined projects. In a similar way that Ghostwriter allowed the tracking of Domains and infrastructure, Red Commander steps in to completely manage the process from start to finish.
The demonstration and talk will take the audience through creating complex and inter dependent Red Team infrastructure in a few clicks, while utilising the latest platforms and design philosophies such as Tailscale, RedELK and Caddy to create covert, reliable and customisable infrastructure.
Red Commander currently supports the following:
-Automated Deployment of numerous modules including logging, teamservers, phishing systems, nginx redirectors, caddy redirectors, domain fronting services, cdns and lambda redirectors.
-Automatic Malprofile passing for OST Stage1 and CobaltStrike configurations to create dynamically generated caddy and nginx profiles.
-Linked assets tracking to allow projects and resources to be independently deployed for separate projects.
-Route53 domain management and tracking.
-Automatic Mailgun domain registration and configuration.
-Full RedELK integration and support on all modules.
-Current support for AWS,Azure,Fastly,Cloudflare,Mailgun.
-Automatic relationships between resources, tracked domains and deployments allow easy configuration without all the copy and pasting.
-Domain monitoring using virus total.
-Team Task Tracking
-Detailed Notes and full WYSIWYG editor support throughout.
Смотрите видео 17. Dominic Mortimer: Unified Red Team Automation with Red Commander онлайн без регистрации, длительностью часов минут секунд в хорошем качестве. Это видео добавил пользователь x33fcon 17 Июль 2024, не забудьте поделиться им ссылкой с друзьями и знакомыми, на нашем сайте его посмотрели 987 раз и оно понравилось 25 людям.