The Red Teaming exercise is a long-term adversary simulation involving sophisticated real-world cyber attacks initiated from the internet, without prior knowledge of the target infrastructure and/or configuration. The approach is goal oriented on a low-and-slow profile aiming to remain undetected by the security monitoring and adjacent controls in place, while demonstrating the impact of a successful targeted cyber attack from a seasoned red team.
The objectives of the Red Teaming exercise are:
The Red Teaming exercise is conducted by a dedicated experts team using tactical exploitation methods and a per-engagement C&C infrastructure, within a predefined exercise time window.