by Hackers continue to abuse red team drill tools, the most common of which is Cobalt Strike, and later Brute Ratel C4 (BRC4), and Geacon developed in Go language, but these tools are mainly for IT network environment come. Recently, information security company Mandiant revealed a malware called CosmicEnergy, and pointed out that the original purpose of the program may be a tool for red team drills in industrial control environments.
