Leading your remediative Red Team

Presented at Disobey 2020, Feb. 14, 2020, 8:45 p.m. (120 minutes)

This workshop is an introduction to the red teaming process and leading of a red team engagement according to our research which can be downloaded from here. We created a comprehensive model for leading a red team engagement which emphasizes the collaboration between pentesters, developers and the client, capitalizing on communication and agile working methods.

The workshop covers the full scope of a red team engagement. Focus will be on planning the engagement and remediations: - Plan - Are we doing the right things? - Engage - Are we doing the things right? - Provide - What should we do next?

The workshop consists of lecture and short exercises in intelligence, targeting and planning of a red teaming engagement. No computers will be used, just pen, paper and a creative mind.

Presenters:

• Kimmo Frilander - Planning officer
  Kimmo is a MSc in cybersecurity and interested in combining the realms of physical and digital security. He can also fix cars and stuff.
• Jussi 'TuoJussi' Tuovinen - Principal research scientist
  Jussi is a MSc in cybersecurity and a PhD student in University of Jyväskylä specializing in offensive security. He is also below the average hacker but a decent chef.

Links:

• https://disobey.fi/2020/profile/leading_your_red_team

Similar Presentations:

• DerbyCon 8.0 Evolution (2018) / Red Teaming gaps and musings
• DerbyCon 3.0 All in the Family (2013) / Seeing red in your future?
• BSidesLV 2017 / Purple Team: How This Color Can Help You And Your Organisation Learn and Get Better