100 Days of Red Team | Uday Mittal | Substack

Leveraging WebSockets for Command and Control (C2) Communications

A proof of concept to explore how WebSockets can be leveraged for C2 communications and should they be?

Sep 19 •

Most Popular

Using Havoc C2 to bypass UAC

Feb 16 • Uday Mittal

Creating a simple beacon object file for Havoc C2

Feb 23 • Uday Mittal

Using PassGAN for effective password cracking

Apr 1 • Uday Mittal

Red Team Infrastructure - Deploying Havoc C2 via Terraform

May 17 • Uday Mittal

Recent posts

WebSockets handshake for red team professionals

A simple guide to understanding the WebSocket handshake and how red teams can leverage it.

Sep 17 •

Using Velociraptor as C2

Velociraptor repurposed as C2: explore its powers, risks, and real-world misuse in red team operations.

Aug 29 •

Misusing SaaS app integrations for persistence

Learn how attackers abuse SaaS integrations for hidden persistence and re-entry into enterprise environments.

Aug 28 •

Red Team perspective on AWS VPC Lattice

Exploring AWS VPC Lattice and how attackers could abuse it for stealth, movement, and hidden access paths.

Aug 27 •

The Art of Pretext: Building better backstories for social engineering - Part 3

Learn how to create research-backed, believable pretexts for social engineering ops.

Jun 15 •

The Art of Pretext: Building better backstories for social engineering - Part 2

Explore the key elements of a strong pretext that help red teams create convincing and resilient personas.

Jun 14 •

The Art of Pretext: Building better backstories for social engineering - Part 1

Learn why strong pretexts are vital for social engineering success and discover reasons why certain pretexts fail.

Jun 2 •

Abusing the AWS metadata API for privilege escalation

Learn how to leverage the AWS Metadata API to extract IAM role credentials and escalate privileges after compromising an EC2 instance.

Jun 1 •

Fundamentals

The role of deception in red team ops

Learn how red teams leverage deception for their tradecraft.

Mar 21 •

Evaluating security architecture from red team's perspective

Learn how to assess security architecture from a red team's perspective.

Mar 20 •

What is purple teaming?

Let's understand what purple teaming is and how it is tied to red team operations.

Mar 18 •

Applying Outside-In thinking to red team operations

Learn how to use Outside-In thinking strategy for red team operations.

Mar 17 •

Applying 4 Ways of Seeing to red team operations

Learn how the 4 Ways of Seeing technique can be used for red team operations to understand security threats from multiple perspectives.

Mar 16 •

What most red team professionals won't tell you

Read this before you aspire to become a red team professional.

Mar 10 •

What is red teaming?

Let's understand what it truly means to red team something.

Mar 8 •

The Red Team Pyramid of Pain

A model showing how progressively advanced red team tradecraft makes it harder for defenders to detect and respond.

Mar 7 •

Communicating results of a red team engagement

How to write a report for a red team engagement and considerations to keep in mind while creating the report.

Mar 6 •

Direct and indirect syscalls for red team operations

Learn what are direct and indirect syscalls and their differences for red team tradecraft.

Feb 24 •

Role of threat intelligence in a red team engagement

Learn how red teams leverage threat intelligence for an impactful assessment.

Feb 7 •

How to ensure that the red team is setup for success?

Learn about six best practices for the success of a red team.

Feb 3 •

#nojs-banner { position: fixed; bottom: 0; left: 0; padding: 16px 16px 16px 32px; width: 100%; box-sizing: border-box; background: red; color: white; font-family: -apple-system, "Segoe UI", Roboto, Helvetica, Arial, sans-serif, "Apple Color Emoji", "Segoe UI Emoji", "Segoe UI Symbol"; font-size: 13px; line-height: 13px; } #nojs-banner a { color: inherit; text-decoration: underline; } This site requires JavaScript to run correctly. Please turn on JavaScript or unblock scripts