Red team infrastructure creation and management platform.
Explore the docs »
API Reference
·
Landing Page
·
Report Bug
Table of Contents
Caution
Lodestar Forge is still in early development. Some feautres of the platform may be unstable and therefore all infrastructure should be verified manually, directly within your cloud provider console. We are not responsible for any unexpected billing which may occur due to bugs in the platform.
Introducing Lodestar Forge (or Forge), an infrastructure creation and management platform, specifically designed for red team engagements.
Red team operations often demand rapidly deployable, flexible, and covert infrastructure—yet existing tools are either too generalised, too manual, or not built with offensive operations in mind. Forge was created to fill this gap.
Forge is designed for operators - It abstracts away the complexity of managing infrastructure during engagements, so you can focus on what matters: executing your objectives. Whether you’re simulating APT-level threats, running internal red team campaigns, or building resilient test environments, Forge enables consistent and repeatable deployments at scale.
✅ Clean and simple UI - Ensures speed and usablility, allowing you to focus on what matters during a red team engagement.
✅ Cross-Cloud Compatibility - Forge supports deployments across multiple cloud providers (currently AWS and DigitalOcean), offering flexibility and redundancy.
✅ Scalability - Design infrastructure to scale horizontally, accommodating varying sizes of engagements and adapting to changing operational requirements.
✅ Modular Architecture - Design infrastructure components (e.g. C2 servers, redirectors, phishing servers) as interchangeable templates, allowing for flexible and reusable configurations tailored to specific engagement needs.
✅ Infrastructure as Code - Leverage tools like Terraform and Ansible to define, deploy, and manage infrastructure consistently across various environments.
This section lists any major frameworks/libraries used to make this project happen:
- React Framework: Next.js
- Component Library: shadcn/ui
- Database ORM: DrizzleORM
- Infrastructure as Code: Terraform
- Configurations as Code: Ansible
- General Docs: Aria Docs
- API Docs: Scalar
Below is the getting started guide for Forge. Please refer to the documentation here or steps below for our quickstart guide.
The following prerequisites are required to get started with Forge:
- Docker
- Docker Compose
The following prerequisites are required to deploy infrastructure with Forge:
- An AWS or Digital Ocean account
- Tailscale
To install Forge using the convenience script, execute the following command:
curl -fsSL https://install.lodestar-forge.com | sh- To get started with Forge, first clone this GitHub repository.
git clone https://github.com/c0nf1den71al/Lodestar-Forge-
Create a
.envenvironment file and customise your Forge instance. Please refer to example.env for an example configuration. -
Bring up Forge using Docker compose:
docker compose up
- Access Forge in a web browser at
http://your.hostname.com:3000/. You can authenticate with the default credentials, which will be displayed in the docker logs on first launch.
- Alternatively, to run Forge in development mode, clone this GitHub repository.
git clone https://github.com/c0nf1den71al/Lodestar-Forge-
Create a
.envenvironment file and customise your Forge instance. Please refer to example.env for an example configuration. -
Bring up Forge using Docker Compose:
docker compose -f docker-compose.dev.yml up
- Access Forge in a web browser at
http://your.hostname.com:3000/. You can authenticate with the default credentials, which will be displayed in the docker logs on first launch
Below is an outline of the planned features for the upcoming major releases of Lodestar Forge.
Version 0.1.x
- Digital Ocean support
- Landing page
- Stability improvements
- Modify existing file templates
Version 0.2.x
- Deployments "destroyed" state
- Ansible debugging options
- Improved domains functionality
- Working user account roles
- Appearance settings
- Quick install script and one-liner
- AWS IAM role support
- Integration "test connection" button
Version 0.3.x
- Template variable regex support
- Template dependencies
- Deployment sharing/import/export
Version 0.4.x
- Ansible galaxy support
- Additional templates
Future Releases
- Additional cloud providers
- Headscale support
See the open issues for a full list of proposed features (and known issues).
Contributions are what make the open source community such an amazing place to learn, inspire, and create. Any contributions you make are greatly appreciated.
If you have a suggestion that would make this better, please fork the repo and create a pull request. You can also simply open an issue with the tag "enhancement". Don't forget to give the project a star!
- Fork the Project
- Create your Feature Branch (
git checkout -b feature/AmazingFeature) - Commit your Changes (
git commit -m 'Add some AmazingFeature') - Push to the Branch (
git push origin feature/AmazingFeature) - Open a Pull Request
Distributed under the GNU General Public License v3.0 License. See LICENSE for more information.
Email: [email protected]
Project Link: https://github.com/c0nf1den71al/Lodestar-Forge
Below are some Acknowledgments / Shoutouts for some awesome people:
- @sudonoodle - One of my closest friends and an awesome red teamer. Provided invaluable advice (and emotional support).