# Red Team - [HTTPS C2 Done Right NGINX](https://www.redteam.cafe/red-team/https-c2-done-right-nginx.md) - [Domain Front](https://www.redteam.cafe/red-team/domain-front.md) - [Firebase Domain Front - Hiding C2 as App traffic](https://www.redteam.cafe/red-team/domain-front/firebase-domain-front-hiding-c2-as-app-traffic.md) - [GoLang](https://www.redteam.cafe/red-team/golang.md) - [Red Team: How to embed Golang tools in C#](https://www.redteam.cafe/red-team/golang/red-team-how-to-embed-golang-tools-in-c.md) - [Red Team: Using SharpChisel to exfil internal network](https://www.redteam.cafe/red-team/golang/red-team-using-sharpchisel-to-exfil-internal-network.md) - [Converting your GO bins to Shellcode and Using them in C#](https://www.redteam.cafe/red-team/golang/converting-your-go-bins-to-shellcode-and-using-them-in-c.md): How to convert binaries compiled in golang to shellcode - [ShellCode Injection](https://www.redteam.cafe/red-team/shellcode-injection.md) - [magic\_mz\_x86 and magic\_mz\_x64](https://www.redteam.cafe/red-team/shellcode-injection/magic_mz_x86-and-magic_mz_x64.md) - [Process Hollowing DInvoke](https://www.redteam.cafe/red-team/shellcode-injection/process-hollowing-dinvoke.md) - [Shellcode Formatter](https://www.redteam.cafe/red-team/shellcode-injection/shellcode-formatter.md) - [DLL Sideloading](https://www.redteam.cafe/red-team/shellcode-injection/dll-sideloading.md): Not the perfect way, but the faster way - [InMemory Shellcode Encryption and Decryption using SystemFunction033](https://www.redteam.cafe/red-team/shellcode-injection/inmemory-shellcode-encryption-and-decryption-using-systemfunction033.md): Shellcode encoding using SystemFunction033 - [PowerShell](https://www.redteam.cafe/red-team/powershell.md) - [Enable Restricted Admin using powershell and use mimikatz for RDP](https://www.redteam.cafe/red-team/powershell/enable-restricted-admin-using-powershell-and-use-mimikatz-for-rdp.md) - [Powershell Custom Runspace](https://www.redteam.cafe/red-team/powershell/powershell-custom-runspace.md) - [Using Reflection for AMSI Bypass](https://www.redteam.cafe/red-team/powershell/using-reflection-for-amsi-bypass.md): Converting an already available AMSI Bypass to FULL in memory AMSI Bypass - [Database](https://www.redteam.cafe/red-team/database.md) - [Extract MSSQL Link Password](https://www.redteam.cafe/red-team/database/extract-mssql-link-password.md) - [MSSQL Link Crawl - OpenQuery Quotes Calculator](https://www.redteam.cafe/red-team/database/mssql-link-crawl-openquery-quotes-calulator.md): MSSQL Link Crawls - [DLL Sideloading](https://www.redteam.cafe/red-team/dll-sideloading.md) - [DLL Koppeling](https://www.redteam.cafe/red-team/dll-sideloading/dll-koppeling.md): Short guide on How to use the Koppeling project - [DLL Sideloading not by DLLMain](https://www.redteam.cafe/red-team/dll-sideloading/dll-sideloading-not-by-dllmain.md): Never run your payloads from the DLLMain - [Walking with Docker](https://www.redteam.cafe/red-team/walking-with-docker.md) - [Self-Hosting Havoc C2 / or any other C2 in Docker](https://www.redteam.cafe/red-team/walking-with-docker/self-hosting-havoc-c2-or-any-other-c2-in-docker.md): Running Havoc C2 server and client in Docker - [Breach Attack Simulation - Starting With OpenBAS](https://www.redteam.cafe/red-team/breach-attack-simulation-starting-with-openbas.md): Caldera has been in market for years, I have never tried it. I saw OpenBAS on my recommended lists in Github so I thought I might give it a try - [Update - OpenBAS to OPENAEV. Performing Adversary Emulation](https://www.redteam.cafe/red-team/update-openbas-to-openaev.-performing-adversary-emulation.md): OpenBAS changed its branding to OPENAEV. How to set it up and start working --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://www.redteam.cafe/red-team.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.