description |
---|
11/21/2022 |
- Red Teaming is the process of using tactics, techniques, and procedures (TTPs) to emulate a real-world threat
- The goal is to measure the effectiveness of the people, processes, and technologies that come together to defend an environment
- A term originating from the United States military and adopted by the information security community
- Generally speaking, it's how easily actions can be observed by hostile intelligence
- This is a Latin phrase that translates to "first, do no harm" in English
- As Security professionals, we don't want to harm or weaken the security of our clients right?
- We are here to improve their security
- This is a framework that describes each phase an attacker must go through to compromise a target
- Reconnaissance
- Weaponize
- Delivery
- Exploitation
- Installation
- Command & Control (C2)
- Actions & Objectives