A red-team assessment is similar to a penetration test, but is more targeted. The goal is to test the organization’s detection and response capabilities.

Objectives

1. Identify or confirm assessment scope/targets
2. Develop attack persona playbook/toolkit (dependant on client request)
3. Being engagement and emulate agreed upon attack persona while evaluating defense response

Deliverables

An actionable, remediation report which contains all identified vulnerable conditions, finding of attack path and recommended fix actions

Red team playbook - tactics, techniques and procedures

Post-assessment debrief and event reconstruction with client defense team