• Cyber
  • Aug 14, 2020
  • By QOMPLX

QOMPLX OSINT Expert Joe Gray Quoted on Red Teaming

QOMPLX OSINT Expert Joe Gray Quoted on Red Teaming

Joe Gray, Senior OSINT Specialist at QOMPLX was interviewed by Ericka Chickowski on the role of red team exercises  as part of 12 Hot Takes on How Red Teaming Takes Pen Testing to the Next Level.

The merits and flaws of pen testing are hotly debated. Pen testing is often restricted by equipment and rules of engagement; a pen test may not give the full picture. Red teaming is supposed to fill in those gaps, and provide a comprehensive view of a security situation.

“Organizations with an operational and tuned SOC can use such engagements to help identify flaws in processes and logic as opposed to software and hardware. More advanced techniques such as data exfiltration, establishing command and control (C2), and evading detection are more commonplace in red teaming than in penetration testing. Unlike a penetration test, red team engagements may last weeks or months as opposed to days or a couple of weeks,” says Joe Gray.

Other interviewees spoke on tactical vs. symptomatic issues, the benefits of having long-term red teams, and the interaction between pen testing and red teaming, among other topics.

Read the full article at Security Boulevard.

You might also be interested in

Upcoming Webinar: Dun & Bradstreet's Approach to Pre-Assessment CMMC Certification

Upcoming Webinar: Dun & Bradstreet's Approach to Pre-Assessment CMMC Certification

Join QOMPLX and DnB with the upcoming webinar: 'CMMC Certification: DnB's Approach to Pre-Assessment'

Read more
Threat Hunting After Solar Winds: Webinar Thursday

Threat Hunting After Solar Winds: Webinar Thursday

On Thursday, February 4th at 2:00 PM ET, QOMPLX’s Senior OSINT Specialist Joe Gray will lead a discussion on Threat Hunting After SolarWinds Solar Storm. Register now!

Read more
Q:CYBER Spots Lateral Movement as Used in the SolarWinds (Sunburst) Calamity

Q:CYBER Spots Lateral Movement as Used in the SolarWinds (Sunburst) Calamity

QOMPLX’s leading Q:CYBER software suite detections include Kerberoasting and Golden Ticket attacks, both of which have been reported as being leveraged during lateral movement phases against federal agencies and commercial entities over the course of several months.

Read more
Request a Demo

Interested in learning more?

Subscribe today to stay informed and get regular updates from QOMPLX.