- ホーム
- > 洋書
- > 英文書
- > Computer / General
Full Description
Many organizations have chosen to forgo traditional security tests in favour of collaborative assessments - or 'purple team' tests, for the way they combine offensive ('red team') and defensive ('blue team') elements - in which offensive and defensive teams work together to measure and improve the organization's resilience to attacks. Practical Purple Teaming outlines common purple team methodologies, offensive and defensive frameworks, and real-world threat research to craft realistic test cases. Readers will use a dedicated lab environment to execute attacks common to the modern threat landscape, then consider ways of tuning defences to detect and prevent the activity. Along the way, they'll be introduced to a number of open-source tools for emulating enterprise environments, automating attacks, crafting intelligent alerts, and more. Covers numerous free tools readers could use in their own purple team exercises, offensive frameworks, and defensive technologies.
Contents
Introduction
Part I: How Purple Teaming Works
Chapter 1: The Basics of Purple Teaming
Chapter 2: Offensive and Defensive Frameworks
Chapter 3: The Atomic Methodology
Chapter 4: The Scenario-based Methodology
Part II: Attack Emulation and Detection Lab
Chapter 5: Enviromnent Setup
Chapter 6: Collecting Telemetry
Chapter 7: Network Scanning and Event Tracing
Chapter 8: Living-off-the-Land with the Atomic Red Team Library
Chapter 9: Active Directory Recon with the Caldera Framework
Chapter 10: Domain Compromise with the Mythic Framework
Part III: Organizing an Exercise
Chapter 11: Reporting and Tracking
Chapter 12: Implementing Purple Teaming
Appendix A: Supplemental Tables
