infosecn1nja/gist:97b4b2e5132ae9d3d18448b3f7f7aa93

## gistfile1.txt
Make a rule that allows port 80/443 access only from redirector:

iptables -A INPUT -p tcp -s <REDIRECTOR_IP> --dport 443 -j ACCEPT
iptables -A INPUT -p tcp --dport 443 -j DROP

iptables -A INPUT -p tcp -s <REDIRECTOR_IP> --dport 80 -j ACCEPT
iptables -A INPUT -p tcp --dport 80 -j DROP

Change default port teamserver :
sed -i 's/50050/<PORT>/g' /path/cobaltstrike/teamserver
	Make a rule that allows port 80/443 access only from redirector:

	iptables -A INPUT -p tcp -s <REDIRECTOR_IP> --dport 443 -j ACCEPT
	iptables -A INPUT -p tcp --dport 443 -j DROP

	iptables -A INPUT -p tcp -s <REDIRECTOR_IP> --dport 80 -j ACCEPT
	iptables -A INPUT -p tcp --dport 80 -j DROP

	Change default port teamserver :
	sed -i 's/50050/<PORT>/g' /path/cobaltstrike/teamserver