Summary
This is a serious offensive security reference covering C2 infrastructure hardening, redirector architecture, and operational security discipline for extended engagements. You get concrete guidance on never exposing team servers directly (always bind localhost, tunnel through Cloudflare or websocat), building smart nginx redirectors that deflect blue team scanners to legitimate sites, and customizing malleable profiles to mimic real traffic like Teams or O365. The tiered infrastructure model is smart: burn high-reputation phishing domains fast, run active ops through short-haul HTTP beacons, and keep a separate long-haul DNS channel sleeping once a day for persistence. Staged payload thinking and LOLBin preference over powershell.exe show real world paranoia. Heavy on Cobalt Strike examples but the OPSEC principles transfer to any framework.
Install to Claude Code
npx -y skills add hypnguyen1209/offensive-claude --skill advanced-redteam --agent claude-codeInstalls into .claude/skills of the current project.
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →
On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →
An agent that runs the SEO playbooks that move rankings and ships PRs you control.
Get founding access →
Connect Claude to +800M contacts, +150M companies. Find & Enrich leads in chat.
Try For Free →Files
SKILL.md
Select a file.
Featured
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →An agent that runs the SEO playbooks that move rankings and ships PRs you control.
Get founding access →Connect Claude to +800M contacts, +150M companies. Find & Enrich leads in chat.
Try For Free →
