SmartNet_Logo Xanh 1
<linearGradient id="sl-pl-cycle-svg-grad01" linear-gradient(90deg, #ff8c59, #ffb37f 24%, #a3bf5f 49%, #7ca63a 75%, #527f32)
0%
Loading ...

Outflank – Red Team Experts

OST is a powerful toolset created by Red Teamers, for Red Teams. Outflank Security Tooling (OST) is a diverse suite of tools developed by the Red Team experts at Outflank. Numerous powerful tools have been developed by them after many…

Thông tin chi tiết


Details

OST is a powerful toolset created by Red Teamers, for Red Teams

Outflank Security Tooling (OST) is a diverse suite of tools developed by the Red Team experts at Outflank. Over years of research, they have developed numerous powerful tools—some of which have been shared with the community, while others are too potent for public release.

With OST, Outflank has bundled their internal tools and delivered them as a service tailored for high-end offensive security service providers, including Red Teams, adversary simulation, or advanced penetration testing teams.

These tools allow users to simulate the exact techniques applied by certain APT (Advanced Persistent Threat) groups and cybercriminal organizations, which are not available in publicly released tools. They also enable all team members to perform complex and deeply technical tasks seamlessly, with a high degree of assurance and OPSEC (Operational Security) safety. OST tools are explicitly developed to bypass modern defenses and detection tools, making your offensive security team operate much more efficiently.

How OST Benefits Your Red Team

  • Save time and money: OST is continuously updated with new attack techniques and procedures (TTPs) by a dedicated team of hackers and developers. This saves OST users significant time and cost in developing and maintaining a full in-house toolset.

  • Operate smarter: Outflank’s founders have hired some of the brightest minds in the industry to dedicate extensive time to research and development, embedding their findings directly into the available toolset. This means your team can rapidly elevate their knowledge, technology, and operational capabilities. Supported by comprehensive documentation, your team will know exactly how these tools execute.

  • Power up the entire cyber kill chain: Smaller teams can leverage external development. Outflank’s toolset provides your team with a shortcut through difficult phases such as initial access, EDR evasion, and OPSEC-safe lateral movement. OST includes techniques that have not been published or weaponized by other red teams.

  • Utilize battle-tested tools: The toolset is identical to the one used by Outflank’s own experts. This means OST is purpose-built to perform reliably in sensitive, real-world target environments.

A Featured Collection of Tools

The toolset is under continuous development. OST currently features 10 specialized tools, including (with more to come!):

  • Payload Generation: Create advanced and unique payloads. This tool contains numerous OPSEC and anti-forensic features to help users evade Antivirus (AV) and EDR solutions, while remaining easy to use for all team members.

  • Office Intrusion Pack: Utilize high-quality macro techniques for phishing attacks using MS Office documents. Built on Outflank’s latest research, this pack includes multiple non-public techniques to ensure your team successfully establishes initial access.

  • Stego Loader: Hide your payloads inside images using steganography techniques, mimicking the tactics of notorious APT groups (e.g., APT29 and Turla).

  • Lateral Pack: Stay completely under the radar of EDR products during lateral movement. This toolset utilizes various modern and unpublished techniques.

  • Stage 1 (Pre-C2 Tooling): OST’s pre-C2 toolset. Deploy OPSEC-safe actions such as reconnaissance. Make informed decisions before expanding your footprint and dropping C2 frameworks like Cobalt Strike, Mythic, or Covenant, bypassing and leaving antivirus and EDR products in the past.

  • Hidden Desktop: Interact covertly with the target’s screen. Users can move the mouse and open GUI applications on a hidden desktop on the target machine. This feature is far superior to traditional VNC or RDP; the compromised user can continue working completely unaware of your presence. This is perfect for post-exploitation activities on targets, such as gaining unauthorized access to a customer’s payment application.

Web Portal and Slack Support

  • Your team members can access OST via an online portal—the preferred delivery method for modern red teams, allowing easy access, continuous updates, and instant upgrades.

  • The portal includes comprehensive documentation for the tools, covering everything from high-level concepts to technical and operational details. Outflank ensures your team understands exactly how these tools work.

  • Technical support is provided directly via Slack, where Outflank team members themselves are readily available to answer questions. The Slack channel is also the ideal venue to discuss development ideas and upcoming additions to OST.