Infrastructure Obfuscation for Red Teams

  <p>Traditional C2 infrastructure is easily flagged by threat intelligence feeds. This brief covers the deployment of ephemeral redirectors using serverless cloud functions.</p>
  <h3>Architecture</h3>
  <p>Using AWS Lambda and Azure Functions as front-end redirectors allows us to rotate IP addresses dynamically and blend in with legitimate traffic. We can also enforce strict logic to only forward traffic that matches specific C2 profiles, dropping scanners and curious blue teamers.</p>