Summary
In this chapter, we have seen an overview of the infrastructure components that can be used to conduct to perform purple teaming exercises. As always with any kind of project, we must start small and simple before maturing our capabilities. Some solutions exist to help us automate, test, report, and document our assessments. We have seen the ART projects that can help us automate test cases one by one. We have also discussed Caldera and VECTR, two useful free solutions allowing us to define and test simulation/emulation plans. We also introduced Picus Security, which can help us to implement automated testing in a different way. Finally, we broached the topic of DevOps to identify mechanisms and tools that could ease our life when it comes to performing purple teaming exercises.
In the next chapter, we will go through the MITRE ATT&CK tactics at an atomic level to see how some of the most relevant attackers' techniques can be prevented, detected, and hunted.
