Search icon CANCEL
Subscription
0
Cart icon
Your Cart (0 item)
Close icon
You have no products in your basket yet
Arrow left icon
Explore Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Free Learning
Arrow right icon
Arrow up icon
GO TO TOP
Purple Team Strategies

You're reading from   Purple Team Strategies Enhancing global security posture through uniting red and blue teams with adversary emulation

Arrow left icon
Product type Paperback
Published in Jun 2022
Publisher Packt
ISBN-13 9781801074292
Length 450 pages
Edition 1st Edition
Arrow right icon
Authors (4):
Arrow left icon
David Routin David Routin
Author Profile Icon David Routin
David Routin
Samuel Rossier Samuel Rossier
Author Profile Icon Samuel Rossier
Samuel Rossier
Simon Thoores Simon Thoores
Author Profile Icon Simon Thoores
Simon Thoores
Michael Molho Michael Molho
Author Profile Icon Michael Molho
Michael Molho
Arrow right icon
View More author details
Toc

Table of Contents (20) Chapters Close

Preface 1. Part 1: Concept, Model, and Methodology
2. Chapter 1: Contextualizing Threats and Today's Challenges FREE CHAPTER 3. Chapter 2: Purple Teaming – a Generic Approach and a New Model 4. Chapter 3: Carrying out Adversary Emulation with CTI 5. Chapter 4: Threat Management – Detecting, Hunting, and Preventing 6. Part 2: Building a Purple Infrastructure
7. Chapter 5: Red Team Infrastructure 8. Chapter 6: Blue Team – Collect 9. Chapter 7: Blue Team – Detect 10. Chapter 8: Blue Team – Correlate 11. Chapter 9: Purple Team Infrastructure 12. Part 3: The Most Common Tactics, Techniques, and Procedures (TTPs) and Defenses
13. Chapter 10: Purple Teaming the ATT&CK Tactics 14. Part 4: Assessing and Improving
15. Chapter 11: Purple Teaming with BAS and Adversary Emulation 16. Chapter 12: PTX – Purple Teaming eXtended 17. Chapter 13: PTX – Automation and DevOps Approach 18. Chapter 14: Exercise Wrap-Up and KPIs 19. Other Books You May Enjoy

Challenges with today's approach

As we just saw, different teams (red, blue, and more) have different objectives, constraints, and approaches in a cybersecurity environment. They don't have a standardized methodology for collaboration, and this leads both teams to encounter issues, and also disadvantages the overall security posture of the organization.

The following table describes some common issues that impact both the red and blue teams. It also explains how purple teaming may help to prevent these failures.

Additionally, though each team experiences problems specific to it, we wanted to highlight a few of the issues faced by blue teams in particular, and how a new approach to security teams could help to tackle these:

As a defender or an ethical hacker, it is very likely that you recognize some (if not all) of these issues. We briefly demonstrated how purple teaming could help everyone to solve some of the problems we are facing with today's approach. Before deep-diving into the purple teaming chapter, we will finish this chapter with an overview of the regulatory landscape. Once again, this will highlight the need for a new approach, but observed this time from the point of view of regulators.

You have been reading a chapter from
Purple Team Strategies
Published in: Jun 2022
Publisher: Packt
ISBN-13: 9781801074292
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Renews at $19.99/month. Cancel anytime
Banner background image