You're reading from Cybersecurity Attacks ‚Äì Red Team Strategies A practical guide to building a penetration testing program having homefield advantage

Product type Paperback

Published in Mar 2020

Publisher Packt

ISBN-13 9781838828868

Length 524 pages

Edition 1st Edition

Tools

Neo4j

Concepts

Cybersecurity

Author (1):

Johann Rehberger

View More author details

Table of Contents (17) Chapters

Preface

1. Section 1: Embracing the Red

2. Chapter 1: Establishing an Offensive Security Program FREE CHAPTER

3. Chapter 2: Managing an Offensive Security Team

4. Chapter 3: Measuring an Offensive Security Program

5. Chapter 4: Progressive Red Teaming Operations

6. Section 2: Tactics and Techniques

7. Chapter 5: Situational Awareness – Mapping Out the Homefield Using Graph Databases

8. Chapter 6: Building a Comprehensive Knowledge Graph

9. Chapter 7: Hunting for Credentials

10. Chapter 8: Advanced Credential Hunting

11. Chapter 9: Powerful Automation

12. Chapter 10: Protecting the Pen Tester

13. Chapter 11: Traps, Deceptions, and Honeypots

14. Chapter 12: Blue Team Tactics for the Red Team

15. Assessments

16. Another Book You May Enjoy

Leave a review - let other readers know what you think

Summary

In this chapter, we highlighted a set of ideas for performing red teaming operations that might be less commonly performed but are nevertheless important to elevate the security maturity of an organization.

We discussed threats such as cryptocurrency mining, privacy violations, and targeting red and blue teams during operations. To further raise security awareness across the organization, exercises can include members of the leadership team as well. Another area we explored briefly was the manipulation of data to achieve objectives. This could be as simple as modifying telemetry to manipulate future investments, or more advanced machine learnings attacks to trick algorithms and models.

For some of the described exercises, proper planning must be done, as well as getting authorization from proper stakeholders, including legal counsel. For scenarios that are off the table and need to be done operationally, we discussed doing tabletop exercises to cover the spirit of the...