Reactive Progress and Tradecraft Innovation

Reactive Progress and Tradecraft Innovation

Detection as PredictionThe overarching goal of a security operations program is to prevent or mitigate the impact of an attacker gaining unauthorized access to an IT environment. In service of this mission, ...
wargames cybersecurity ransomware strategy breach prevention strategy cybersecurity

Leveraging Wargaming Principles for Cyberdefense Exercises

Wargames are an excellent way to ensure your cyberdefense plans are solid and your processes are current ...
Security Boulevard
Example of a volume analysis showing how many times certain techniques are mentioned in a threat report

Threat Hunting Framework: Three Steps to Translate Threat Reports into Actionable Steps

Thanks to Sally Vincent and Dan Kaiser from the LogRhythm Labs team for developing the process and guiding content described in this post. Threat research can be an invaluable asset to security ...
WebApp Security, 'My Experience Leading A Purple Team'

WebApp Security, ‘My Experience Leading A Purple Team’

A terrific Red & Blue (in reality - Purple's the Word, in this case) Teaming Leadership post (via Robert A., posting on the Web Application Security Consortium List) detailing his experience leading ...
The Purple Team Pentest

The Purple Team Pentest

It’s not particularly clear whether a marketing intern thought he was being clever or a fatigued pentester thought she was being cynical when the term “Purple Team Pentest” was first thrown around ...
Navigating the "Pentest" World

Navigating the "Pentest" World

The demand for penetration testing and security assessment services worldwide has been growing year-on-year. Driven largely by Governance, Risk, and Compliance (GRC) concerns, plus an evolving pressure to be observed taking information ...