InfoconDB

Presented at ShellCon 2018, Sept. 21, 2018, 2:40 p.m. (30 minutes)

Are you looking to rapidly improve your security posture or train a new member of your security organization? Are you a Blue Team member looking to cross train with Red Team or vice versa? Purple Teaming could be the answer to your problems. You may have already heard about Purple Teaming through a spare think piece online, casual mentions or even rage tweets, but few know what makes a Purple Team. In this talk I will cover how to build your own Purple Team function from the ground up using applied gap analysis, creating meaningful test cases, modifying tools, cross-training possibilities, and automation frameworks. We'll walk through the methodology together so you leave with the tools and experience you need to do it yourself. If implemented, this can give you a better knowledge of your security baseline, improvements in defenses, opportunities for internal training and mentorship, and an increased dialogue between Red and Blue.

Presenters:

Mary Sawyer
Mary Sawyer is a member of the Red Team at Palo Alto Networks. In addition to her work on the Red Team to stay ahead of the attackers by embracing their mentality, strategies and tactics to test the organization's security posture, Mary is also innovating on the Purple Team program. When she's not breaking things, Mary enjoys playing and writing original content for Dungeons and Dragons, eating spicy food, and hiking. Mary has a bachelor's degree in Computer Science, with a certificate in Information Security, from the University of Texas at Austin. She is a strong advocate for inspiring and empowering girls through technology. Twitter: @0x_90

Purple Team: Exposed

Presenters:

Links:

Similar Presentations: