You're reading from Cybersecurity Attacks ‚Äì Red Team Strategies A practical guide to building a penetration testing program having homefield advantage

Product type Paperback

Published in Mar 2020

Publisher Packt

ISBN-13 9781838828868

Length 524 pages

Edition 1st Edition

Tools

Neo4j

Concepts

Cybersecurity

Author (1):

Johann Rehberger

View More author details

Table of Contents (17) Chapters

Preface

1. Section 1: Embracing the Red

2. Chapter 1: Establishing an Offensive Security Program FREE CHAPTER

3. Chapter 2: Managing an Offensive Security Team

4. Chapter 3: Measuring an Offensive Security Program

5. Chapter 4: Progressive Red Teaming Operations

6. Section 2: Tactics and Techniques

7. Chapter 5: Situational Awareness – Mapping Out the Homefield Using Graph Databases

8. Chapter 6: Building a Comprehensive Knowledge Graph

9. Chapter 7: Hunting for Credentials

10. Chapter 8: Advanced Credential Hunting

11. Chapter 9: Powerful Automation

12. Chapter 10: Protecting the Pen Tester

13. Chapter 11: Traps, Deceptions, and Honeypots

14. Chapter 12: Blue Team Tactics for the Red Team

15. Assessments

16. Another Book You May Enjoy

Leave a review - let other readers know what you think

Targeting telemetry collection to manipulate feature development

These days, most software sends data about its usage patterns back to the mothership. This collection can be quite extensive and includes what buttons a user clicks, and of course, what features are used, or not, used by customers. It might also include error messages so that they can learn what features commonly do not work correctly.

Your organization might make business decisions and start future feature development based on the telemetry information they've gathered.

What if an adversary or competitor manipulates the telemetry pipeline to cause de-investments in certain areas of your products or services?

As an example, during a red team operation at one point in my career, the team spoofed the operating system from which telemetry was sent. Instead of sending the Windows or Linux version, the red team sent millions of spoofed requests coming from a Commodore 64 up the telemetry endpoint.

The result...