Redc v2.0.0
Redc 2.0 is a milestone update. Based on internal feedback from v1.0, we have refactored the core interaction logic to resolve compatibility and template compilation issues. This release officially introduces AI-driven automation and powerful multi-template orchestration capabilities.
🚀 Key Features
🤖 LLM & AI-Native Support
- MCP & Skill Integration: Implemented the Model Context Protocol (MCP), allowing Large Language Models to directly interact with Red Team infrastructure via natural language (e.g., "Launch a Volcengine ECS instance").
- AI Template Generation: Simply describe your requirements, and the AI can generate Terraform scenario templates and Redc configurations based on existing logic.
- Conversational Management: Query cloud resource status and execute commands (like
whoamior file operations) directly through the chat interface.
🐳 Docker-like Operational Paradigm
We have redesigned the CLI to lower the learning curve by mapping the Terraform lifecycle to a Docker-like experience:
redc init: Initialize environment and download provider plugins (maps totf init).redc plan: Generate execution plans with parameter injection (maps totf plan).redc start <case_id>: Provision resources and display outputs (maps totf apply).redc stop <case_id>: Destroy resources to prevent unnecessary costs (maps totf destroy).
🎼 Redc Compose Orchestration
Introduced redc-compose.yaml for defining complex, dependency-driven hybrid cloud scenarios:
- Multi-Template Orchestration: Define service dependencies using
depends_on. - Hybrid Cloud Scheduling: Manage resources from different providers (Aliyun, AWS, Tencent Cloud, etc.) within a single configuration file.
- Lifecycle Hooks: Support for
setuptasks to execute cross-instance logic (e.g., registering a proxy node to a C2 server) after infrastructure provisioning. - Profiles: Switch between different deployment modes (e.g.,
prod,dev,attack) using the--profileflag.
📦 Ecosystem & Distribution
- Redc Registry: Launched the official scenario registry at redc.wgpsec.org to explore community-driven templates.
- One-Click Pull: Added the
redc pull [vendor]/[template]command to download scenarios remotely, similar to pulling Docker images.
🛡️ Optimizations & Improvements
- Cost Control:
- Full support for Spot/Preemptible Instances to significantly reduce costs for disposable infrastructure like proxy pools and scanning nodes.
- Integrated Cloudflare R2 object storage to minimize traffic fees for static resources.
- New Scenarios:
- Self-hosted Proxy Pools: Automatically generate Clash-compatible configurations.
- Distributed Scanning: Architecture support for scalable active/passive scanning clusters.
🛠️ Installation
Homebrew
brew tap wgpsec/tap
brew install wgpsec/tap/redcRedc v2.0.0
Redc 2.0 是一次重大升级,我们引入了 AI 驱动的基础设施管理、全新的 Docker-like 操作范式以及强大的多模版编排能力,旨在解决 v1.0 版本面临的兼容性与易用性问题。
🚀 核心特性更新
🤖 LLM 智能化支持 (AI-Native)
- MCP & Skill 接入:集成 Model Context Protocol,支持通过自然语言指令调用红队基础设施(如:“帮我开启一台火山引擎 ECS”)。
- 状态管理与交互:支持通过对话查询云资源状态、执行命令(如:
redc mcp sse)。 - AI 模版生成:支持通过自然语言描述需求,由 AI 自动参考现有逻辑生成 Terraform 场景模版与配置文件。
🐳 Docker-like 操作范式
重构了核心命令行交互,降低上手门槛,将 Terraform 生命周期映射为类 Docker 的四种状态:
redc init:初始化环境(对应tf init)redc plan:生成执行计划(对应tf plan)redc start <case_id>:启动服务并展示变更(对应tf apply)redc stop <case_id>:销毁资源与环境(对应tf destroy)
🎼 Redc Compose 编排
新增 redc-compose.yaml 支持,适用于复杂、多依赖的混合云场景构建:
- 多模版编排:支持定义服务间的依赖关系(
depends_on)。 - 混合云调度:支持在同一配置文件中同时管理阿里云、腾讯云、AWS 等不同厂商资源。
- 生命周期 Hooks:支持
setup后置任务,在设施启动后自动执行跨机器注册、C2 上线等逻辑。 - Profile 环境隔离:支持
--profile参数切换不同部署模式(如prod/dev)。
📦 生态与分发
- Redc Registry:上线官方场景仓库 redc.wgpsec.org,提供经过验证的高质量模版。
- 一键拉取:新增
redc pull [vendor]/[template]命令,支持像拉取镜像一样获取场景。
🛡️ 优化与改进
- 成本控制:
- 全面支持 Spot/抢占式实例,大幅降低代理池与扫描节点成本。
- 集成 Cloudflare R2 对象存储,实现静态资源流量费用最小化。
- 新场景支持:
- 新增自建代理池场景(自动生成 Clash 配置)。
- 新增分布式扫描与被动扫描平台架构支持。
🛠️ 安装与升级
Homebrew
brew install wgpsec/tap/redcFull Changelog: v2.0.0-beta.6...v2.0.0