Chapter 5: Red Team Infrastructure

As we learned in the previous chapter, purple teaming involves the capacity to mimic attack techniques in order to test and improve your overall security level. Once we have selected the Tactics, Techniques, and Procedures (TTPs) we want to test, we will need to start preparing them. To do so, we will need to install some servers and configure them in order to execute the selected TTPs. However, before jumping into action, we will start by looking at specific distributions that come with preinstalled tools to help us perform the assessment. Initially, this distribution and toolbox can be used as an all-in-one infrastructure. Then, to gradually increase the complexity of our assessments and goals, we will discuss ...