George Polivka
George Polivka has been a tech enthusiast for over two decades. With a knack for software development, architectural design, and enterprise auditing, he's now on the front lines securing network borders as a Red Teamer. George boasts a collection of tech certifications, from the foundational A+ Technician to the prestigious OSCP. When he's not busy fortifying networks, you can find George immersed in cybersecurity challenges on Hack the Box, honing his skills and uncovering new tricks of the trade. Lately, he's been delving into cutting-edge research on deploying infrastructure and tooling to empower red team operators, making networks tremble.
Session
"Rolling out the C2: Red Team Infrastructure in 2024" will explore the intricacies of establishing a robust Command and Control (C2) infrastructure in an Azure Cloud environment. The presentation will guide attendees through deploying an open-source Tailscale Overlay VPN using Headscale, and utilizing a GitLab code repository for version control and secure storage of malicious zero-day code developed by the team's secdev engineers. The talk will also demonstrate setting up traffic redirectors using Nginx Proxy Manager, and securing systems and networks using CIS benchmarked Operating Systems (OSes) and Azure Network Security Group (NSG) rules. Additionally, it will cover implementing rootless Docker containerization and configuring reverse shell handlers for Metasploit and Cobalt Strike. By the end of the session, participants will gain a comprehensive understanding of building a resilient C2 infrastructure for red team operations in 2024.