Are you building a Red Team Program this year? I support the idea! Here are some recent blog posts to help you build your case with management:
10 Benefits of Red Team Engagements: https://www.scythe.io/library/10-benefits-of-red-team-engagements
#redteam #infosec #adversaryemulation @scythe_io
10 Benefits of Red Team Engagements: https://www.scythe.io/library/10-benefits-of-red-team-engagements
#redteam #infosec #adversaryemulation @scythe_io
It is a good idea to have an industry proven framework and methodology documented to show you have a plan:
https://www.scythe.io/library/red-team-and-threat-led-penetration-testing-frameworks
#redteam #infosec #adversaryemulation @MITREattack
https://www.scythe.io/library/red-team-and-threat-led-penetration-testing-frameworks
#redteam #infosec #adversaryemulation @MITREattack
Testing for initial access and "getting" in provides some value but you may want to operate and run some engagements as "Assume Breach"
https://www.scythe.io/library/breaches-are-inevitable
#redteam #infosec #adversaryemulation #assumebreach
https://www.scythe.io/library/breaches-are-inevitable
#redteam #infosec #adversaryemulation #assumebreach
Building Attack Infrastructure is a lot of fun but with many things to consider. Check out this post I did with @jfslowik about Red Team Infrastructure and Malicious Actor infra.
https://www.scythe.io/library/attack-infrastructure-red-teams-vs-malicious-actors
#redteam #infrastructure #adversaryemulation
https://www.scythe.io/library/attack-infrastructure-red-teams-vs-malicious-actors
#redteam #infrastructure #adversaryemulation
Already building non-attributable infrastructure and wondering if the Executive Order of Know Your Customer for IaaS providers will affect you? Check this post out where @malcomvetter and I discuss ways to obtain non-attributable attack infra: https://www.scythe.io/library/red-team-non-attributable-infrastructure-and-the-executive-order
#redteam
#redteam
You can also check out the "So, you want to be red teamer?" Webcast @Jean_Maes_1994 and I did. #redteam
Lastly, if you want to learn how to build a Red Team Program check out the 2 day @SANSOffensive Red Team Exercises and Adversary Emulation course: https://sans.org/sec564
#redteam #SEC564
#redteam #SEC564