REDIRECTORS

redirectors are intermediary systems or services that forward traffic to/from destinations. it allows actors to mask the origin and destination of the traffic. redirectors can be used to improve operational security (OPSEC), evade detection and ensures persistence. depending on the configuration, redirectors can route traffic the C2 Server or the Payload/Malware Server, etc.

IMPLEMENTATION

AWS CLOUDFRONT

  1. Create the C2 Server

  2. Create the Elastic Load Balancer (ELB)

  3. Configure the ELB to send its traffic to the C2 Server

  4. Configure the C2 Server to accept traffic coming from the ELB

  5. Create the Redirector last as it requires the ELB Origin Domain

    1. this notifies the redirector where to send its traffic

AZURE FRONT DOOR

  1. Create the C2 Server

  2. Create the Azure Front Door & CDN (redirector)

  3. Configure the redirector to pass traffic to the C2 Server

  4. Configure the C2 Server to accept and pass traffic to the redirector

NGINX

PreviousVPSNextAWS CLOUDFRONT

Last updated