You're reading from Cybersecurity Attacks ‚Äì Red Team Strategies A practical guide to building a penetration testing program having homefield advantage

Product type Paperback

Published in Mar 2020

Publisher Packt

ISBN-13 9781838828868

Length 524 pages

Edition 1st Edition

Tools

Neo4j

Concepts

Cybersecurity

Author (1):

Johann Rehberger

View More author details

Table of Contents (17) Chapters

Preface

1. Section 1: Embracing the Red

2. Chapter 1: Establishing an Offensive Security Program FREE CHAPTER

3. Chapter 2: Managing an Offensive Security Team

4. Chapter 3: Measuring an Offensive Security Program

5. Chapter 4: Progressive Red Teaming Operations

6. Section 2: Tactics and Techniques

7. Chapter 5: Situational Awareness – Mapping Out the Homefield Using Graph Databases

8. Chapter 6: Building a Comprehensive Knowledge Graph

9. Chapter 7: Hunting for Credentials

10. Chapter 8: Advanced Credential Hunting

11. Chapter 9: Powerful Automation

12. Chapter 10: Protecting the Pen Tester

13. Chapter 11: Traps, Deceptions, and Honeypots

14. Chapter 12: Blue Team Tactics for the Red Team

15. Assessments

16. Another Book You May Enjoy

Leave a review - let other readers know what you think

Mapping out the cloud!

This section is important—in fact, it might be the most important takeaway from this part of the book.

The full power of a knowledge graph can be understood when we start mapping out data outside of our immediate network. Remember that earlier in the book we discussed how red teaming should focus on exploring the unknown and provide alternate analysis. Often, graphs are being built that stop within corporate on-premises boundaries. This is not where you should stop, though! This is because the graph is missing key assets that modern organizations leverage. In many cases, the most important assets are not on premises anymore. Consider cloud assets, such as AWS, Azure, Salesforce, Facebook, Twitter, and so on.

All of these are commonly targeted by adversaries. For instance, consider Twitter or Facebook account takeovers. There have been a large number of high-profile incidents in these regards, and they are often not even on the radar for red teams...