Tagred teams

The False Client

T

It’s one thing to red team; it’s another thing entirely for a red team to facilitate useful change. All red teaming is embedded within a culture, and savvy red teamers learn quickly that not all red team engagements are what they appear to be. Sometimes a client hires a red team to validate what the client already “knows” (typically then tying the red team’s hands through a set of overly...

The Seen and the Unseen

T

In his 1946 book Economics in One Lesson, Henry Hazlitt unfolds an interesting systems-oriented principle that we believe belongs in every red teamer’s toolkit. Often, Hazlitt tells us, the unseen is more important than the seen, even though we naturally tend to focus on the seen. Among other things, Hazlitt discusses public-works projects, which generate visible activity and tangible results...

‘Sitting Around Thinking’—Well … Yeah

&

I spoke briefly yesterday with a gentleman who runs a successful pentesting company. For the most part, I get what he does, but I don’t think he got what I do, nor did he seem inclined to ask any questions to find out exactly what that might be. (At one point, he described my version of red teaming as “sitting around thinking,” which, of course, doesn’t make money!)...

The Annoying Red Teamer: A Philosophical Approach to the Problem

T

Red teamers can be annoying. Sometimes the annoyance is justified, sometimes not. After all, who likes to be told that they overlooked a key assumption or failed to implement a sensible practice? It’s not surprising that many people resist even the idea of red teaming.       As red teamers, we often lament the shortsightedness of this resistance. What we don’t...

Categories

Terms of Use

Please read.