Penetration testing engagements have typically been conducted in the same way for a long time now. The red team simulates an attack in isolation with the aim of finding exploitable vulnerabilities in an organisation’s network. In turn, the blue team is tasked to defend the network from the red team’s attack. This creates an environment in which you have two opposing teams constantly trying to outsmart each other, instead of working together as a team to achieve the primary goal of security testing, which is improving and strengthening the organisation’s security posture. To address this problem, a new methodology is required. Below we provide a short overview of this new methodology, called Simulated Targeted Attack and Response.
Link to PDF version: Simulated Targeted Attack and Response