You're reading from Cybersecurity Attacks ‚Äì Red Team Strategies A practical guide to building a penetration testing program having homefield advantage

Product type Paperback

Published in Mar 2020

Publisher Packt

ISBN-13 9781838828868

Length 524 pages

Edition 1st Edition

Tools

Neo4j

Concepts

Cybersecurity

Author (1):

Johann Rehberger

View More author details

Table of Contents (17) Chapters

Preface

1. Section 1: Embracing the Red

2. Chapter 1: Establishing an Offensive Security Program FREE CHAPTER

3. Chapter 2: Managing an Offensive Security Team

4. Chapter 3: Measuring an Offensive Security Program

5. Chapter 4: Progressive Red Teaming Operations

6. Section 2: Tactics and Techniques

7. Chapter 5: Situational Awareness – Mapping Out the Homefield Using Graph Databases

8. Chapter 6: Building a Comprehensive Knowledge Graph

9. Chapter 7: Hunting for Credentials

10. Chapter 8: Advanced Credential Hunting

11. Chapter 9: Powerful Automation

12. Chapter 10: Protecting the Pen Tester

13. Chapter 11: Traps, Deceptions, and Honeypots

14. Chapter 12: Blue Team Tactics for the Red Team

15. Assessments

16. Another Book You May Enjoy

Leave a review - let other readers know what you think

Operation Vigilante – using the red team to fix things

An interesting idea to entertain is pathing vulnerabilities when compromising systems. This is a tactic that real adversaries have been applying as well, to prevent them from being kicked out of an environment by another adversary.

Rather than solely exploiting a vulnerability to gain access, the red team can deploy fixes during exploitation as well. I have been calling these Fixploits. Deploying Fixploits is an interesting tactic and if done in collaboration with the blue team, it can help improve the overall understanding of the attack surface and even improve the security posture.

Some adversaries are known to patch the vulnerabilities that enabled them to exploit a system. This is unusual for a red team to do, though, since there are dedicated patching, hardening, and blue teams that take care of remediating issues.

However, the red team can also offer to help. Proposing efforts like this can lead to the formation...