purple team
Reactive Progress and Tradecraft Innovation
Detection as PredictionThe overarching goal of a security operations program is to prevent or mitigate the impact of an attacker gaining unauthorized access to an IT environment. In service of this mission, ...
Leveraging Wargaming Principles for Cyberdefense Exercises
Wargames are an excellent way to ensure your cyberdefense plans are solid and your processes are current ...
Security Boulevard
BSidesKC 2021 – David Evenden’s ‘Emulating The Adversary While Training The Defenders: Purple Teaming With MITRE ATT&CK’
Marc Handelman | | BSides, BSidesKC, Cryptology Education, cybersecurity education, defensive security, education, Industrial Security, Information Security, Infosec Education, MITRE ATT&CK, Offensive Security, purple team, security
Our thanks to BSidesKC for publishing their outstanding BSidesKC 2021 videos on the Conferences’ YouTube channel. Permalink ...
Threat Hunting Framework: Three Steps to Translate Threat Reports into Actionable Steps
Chi Doan | | case management, LogRhythm Labs, purple team, Ransomware, threat detection, Threat Research
Thanks to Sally Vincent and Dan Kaiser from the LogRhythm Labs team for developing the process and guiding content described in this post. Threat research can be an invaluable asset to security ...
WebApp Security, ‘My Experience Leading A Purple Team’
A terrific Red & Blue (in reality - Purple's the Word, in this case) Teaming Leadership post (via Robert A., posting on the Web Application Security Consortium List) detailing his experience leading ...
The Purple Team Pentest
Gunter Ollmann | | blue team, Penetration Testing, pentest, purple team, purple teaming, Red Team, security operations, SOC
It’s not particularly clear whether a marketing intern thought he was being clever or a fatigued pentester thought she was being cynical when the term “Purple Team Pentest” was first thrown around ...
Navigating the "Pentest" World
Gunter Ollmann | | blackbox pentest, bugbounty, ethical hacking, pentesting, purple team, redteam, whitebox pentest
The demand for penetration testing and security assessment services worldwide has been growing year-on-year. Driven largely by Governance, Risk, and Compliance (GRC) concerns, plus an evolving pressure to be observed taking information ...