Is your organization looking to validate the effectiveness of its security program? A purple team exercise may help measure your ability to detect and respond to a security incident before experiencing an actual incident. A purple team exercise combines the capabilities of offensive (red) and defensive (blue) security operations. It’s not an actual team, but … Continue reading "Introduction to Purple Teaming"
Read MoreCategory: Purple Team
OSCP Dump/ Purple Team Exercise Presentation
It’s been awhile since I posted. I’ve been finalizing my OSCP dump / purple team presentation for my team. I gave the presentation last week, and overall, thought it went well. We ran through 4 vulnerable machines, ran into a couple snags, but were able to power through. I think I need to shorten the … Continue reading "OSCP Dump/ Purple Team Exercise Presentation"
Read MorePurple Team Exercises: Zoidberg
Purple Team Exercises: Kif
Purple Team Exercises: Bureaucrat
Purple Team Scenario: Professor
Purple Team Prep Continues…
I’m almost done my purple team exercises… it’s been quite a challenge. The red team aspect takes me around 2-3 hours, and I expect the blue team exercises to take about the same time. I was able to run through each machine command by command and complete the challenges without issue today. I have full … Continue reading "Purple Team Prep Continues…"
Read MorePurple Team, Finishing Touches & Wifi Pentesting
I’m almost ready to deliver the purple team exercises to my team at SDSC. We might have an issue or two overloading my network with scans, but i’ll attempt to stagger them. Since Security Onion performs full packet capture, I previously ran through the exercises, and will provide the team with a pcap of this … Continue reading "Purple Team, Finishing Touches & Wifi Pentesting"
Read MorePurple Team Training Idea
I’m trying to find a constructive way to share the knowledge I gained from the OSCP. I’m brainstorming a purple team training session I might submit to local con’s. During my OSCP, I found some great online offsec labs and resources, but didn’t find any that tie actions to blue team exercise. That’s what this … Continue reading "Purple Team Training Idea"
Read More