RedCloud-OS: a Cloud Adversary Simulation Operating System for Red Teams

RedCloud OS

RedCloud OS is a Debian-based Cloud Adversary Simulation Operating System for Red Teams to assess the security of leading Cloud Service Providers (CSPs). It includes tools optimized for adversary simulation tasks within Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP).

Credentials

Username –> cwl

Password –> redcloud

Specs

Platform –> VMware Workstation [VMware player can also work, although we have not tested it yet]

RAM –> 8GB+ recommended; 4GB Minimum

No. of cores –> 4+ Cores recommended; 2 Minimum

Available Tools

AWS

• AWSCLI
• AWS Consoler
• AWS Escalate
• CloudCopy
• CloudJack
• CloudMapper
• CredKing
• Endgame
• Pacu
• Redboto
• weirdAAL

Azure

• AADCookieSpoof
• AADInternals
• AZ CLI
• AzureAD
• AzureHound
• BloodHound
• DCToolbox
• MFASweep
• MicroBurst
• Microsoft365 devicePhish
• MS Graph
• PowerUpSQL
• ROADtools
• TeamFiltration
• TokenTactics

GCP

• Gcloud CLI
• GCPBucketBrute
• GCP Delegation
• GCP Enum
• GCP Firewall Enum
• GCP IAM Collector
• GCP IAM Privilege Escalation
• GCPTokenReuse
• GoogleWorkspaceDirectoryDump
• Hayat

Multi-Cloud

• Cartography
• CCAT
• CloudBrute
• CloudEnum
• Cloud Service Enum
• Evilginx2
• Gitleaks
• Impacket
• Leonidas
• Modlishka
• Mose
• PurplePanda
• Responder
• ScoutSuite
• SkyArk
• Zphisher

Install & Use

Copyright (C) 2023 RedTeamOperations