100 Days of Red Team
Subscribe
Sign in
Home
Red Team Training
GitHub
YouTube
Uday Mittal's Substack
About
Latest
Top
Discussions
WebSockets handshake for red team professionals
A simple guide to understanding the WebSocket handshake and how red teams can leverage it.
1 hr ago
•
Uday Mittal
August 2025
Using Velociraptor as C2
Velociraptor repurposed as C2: explore its powers, risks, and real-world misuse in red team operations.
Aug 29
•
Uday Mittal
1
Misusing SaaS app integrations for persistence
Learn how attackers abuse SaaS integrations for hidden persistence and re-entry into enterprise environments.
Aug 28
•
Uday Mittal
1
Red Team perspective on AWS VPC Lattice
Exploring AWS VPC Lattice and how attackers could abuse it for stealth, movement, and hidden access paths.
Aug 27
•
Uday Mittal
1
June 2025
The Art of Pretext: Building better backstories for social engineering - Part 3
Learn how to create research-backed, believable pretexts for social engineering ops.
Jun 15
•
Uday Mittal
The Art of Pretext: Building better backstories for social engineering - Part 2
Explore the key elements of a strong pretext that help red teams create convincing and resilient personas.
Jun 14
•
Uday Mittal
1
The Art of Pretext: Building better backstories for social engineering - Part 1
Learn why strong pretexts are vital for social engineering success and discover reasons why certain pretexts fail.
Jun 2
•
Uday Mittal
Abusing the AWS metadata API for privilege escalation
Learn how to leverage the AWS Metadata API to extract IAM role credentials and escalate privileges after compromising an EC2 instance.
Jun 1
•
Uday Mittal
1
May 2025
Ghost in the cloud: Abusing AWS SSM sessions for covert access
Learn how red teamers can abuse AWS SSM Session Manager to gain shell access to EC2 instances without SSH, public IPs, or open ports and escalate…
May 31
•
Uday Mittal
Red Team Infrastructure - Configure a domain name and SSL certificate via Terraform
Learn how to map the redirector machine to a domain name and configure a valid SSL certificate via Terraform.
May 20
•
Uday Mittal
Red Team Infrastructure - Deploying a redirector via Terraform
Learn how to deploy and configure a redirector machine in AWS via Terraform.
May 19
•
Uday Mittal
Red Team Infrastructure - Deploying Havoc C2 via Terraform
Learn how to deploy Havoc C2 (team server and client) in AWS via Terraform.
May 17
•
Uday Mittal
2
This site requires JavaScript to run correctly. Please
turn on JavaScript
or unblock scripts
