Red Teaming

Red Team Assessment

A Red Team Assessment is similar to a penetration test in many ways but is more targeted. The goal of the Red Team Assessment is NOT to find as many vulnerabilities as possible. The goal is to test the organization’s detection and response capabilities. The red team will try to get in and access sensitive information in any way possible, as quietly as possible. The Red Team Assessment emulates a malicious actor targeting attacks and looking to avoid detection, similar to an Advanced Persistent Threat (APT).

It uses adversary simulation i.e. using all possible means a malicious actor would utilize in a legitimate attack. Inclusion of customized scenarios unique to the sector in which the business is being operated. These scenarios could include scenarios such as using spear phishing to gain foothold within the network, malicious insider or compromised BYOD device.

Client Outcomes/Benefits

Provides an accurate view of risks, attack process that could be used to compromise critical business assets such as Domain Controllers, Intellectual property or credit card data. Effectiveness of your security monitoring capabilities as well as well as any gaps in incident response policy and procedures.