だぶるこんぱいる

A Guide to Building and Automating Red Team Infrastructure #1

2025年4月13日 RTO

Why

  • A dedicated server must be provisioned for each engagement to ensure environment isolation.
  • If the infrastructure is detected or quarantined, it must be redeployed quickly.
  • Manual setup is time-consuming and inefficient.
  • Manual configuration increases the risk of human error.

    • Goal

  • Enable fully automated deployment and teardown of Red Team infrastructure.

    • Architecture

    Image from Notion
  • Command & Control
  • Domain Fronting
  • Payload Hosting
  • Redirector
  • DNS

    • Next

  • We will explore the logic for implementing automation.