by obscuritylabs

obscuritylabs / RAI

Rapid Attack Infrastructure (RAI)

215 Stars 41 Forks Last release: Not found Apache License 2.0 103 Commits 0 Releases

Available items

No Items, yet!

The developer of this repository has not created any items for sale yet. Need a bug fixed? Help with integration? A different license? Create a request here:

Rapid Attack Infrastructure (RAI)

Red Team Infrastructure... Quick... Fast... Simplified

One of the most tedious phases of a Red Team Operation is usually the infrastructure setup. This usually entails
a teamserver or controller, domains, redirectors, and a Phishing server. Each of these have their own nuances when it comes to setup, but overall this setup process can take days. This process just seemed overly complex and time consuming. There are several issues that come to mind when considering how a painful and time consuming setup can impact a Red Team, but the most important thing to consider is: What if your domain(s) get burned and you need to spin up new infrastructure during the OP? Now if you're an internal Red Team this may not be an issue, but in the world of Red Team Consulting; time is money and could very well cost you your OP. With a RAI deployment, it can all be done in roughly ~1 hour. This includes everything from your Teamserver (CobaltStrike), redirectors to Phishing Servers with full DKIM, DMARC, SPF, etc.

Some of the major components of this infrastructure include:

  • CobaltStrike
  • Docker
  • GoPhish
  • Postfix
  • IPTables
  • Openssl  

Core Development:

  • Keelyn Roberts [Twitter] @real_slacker007 -- [Web] ObscurityLabs
  • Alexander Rymdeko-Harvey [Twitter] @Killswitch-GUI -- [Web] ObscurityLabs

Special Thanks:

We use cookies. If you continue to browse the site, you agree to the use of cookies. For more information on our use of cookies please see our Privacy Policy.