Tuesday, May 17, 2022

Domain Fronting through Azure CDN

Guest blog post by one of our partners, Derek Johnson – Senior Cybersecurity Engineer at NTH

Domain Fronting is a MITRE ATT&CK technique (T1090.004) where the attacker takes advantage of the routing mechanism of Content Delivery Networks (CDNs) to bypass egress (outbound) controls and establish Command and Control (C2). Proxying C2 traffic through various hosts/domains is an ideal technique to not expose your SCYTHE (or any C2) server to the target organization directly. SCYTHE provides multipl…

Read More

Latest news
Related news