Skip to main content

Posts

Showing posts from December, 2017

Thoughts on C2 Designs and Tradecraft

Howdy folks!

This post is basically me trying to get out some thoughts regarding design concepts for command and control infrastructures. As a red operator who is also responsible for managing our teams infra, this is one of my favourite topics.

I'm also currently working on a talk that I will be shopping around in 2018 on this very topic so I'm using this blog platform as one more tool to collect ideas and work out what will probably end up in the talk.

I want to start off by mentioning something that a wise man said to me recently when I posted the following question on Twitter:


Justin "@sixdub" Warner, someone I greatly respect, said:


Whether you agree or not, I think it's a valid point worth some thought. Red teams and the infosec community in general do very much like to push the envelope in ideas, complexity, tradecraft and the like. Threat actors do the same. A question I like to ask myself from time to time is, "Do offensive tactics and strategy driv…