TTPs

Tactics, Techniques, and Procedures (aka. my notes)

Red Team Resources

Resources to define, understand the execution, and goals of Red Teaming. These resources have an emphasis on Enterprise Red Teaming in the cloud

Definition

• Red Team - Wikipedia
• Hacking Google | Red Team - Google
• Red teaming 101: What is red teaming? - Evan Anderson (IBM)

TTP

• Mitre Att&ck - Mitre
• NIST Glossary - Tactics, Techniques, and Procuedures - NIST
• NIST Glossary - Tactic, Technique, and Procedure - NIST
• What’s in a name? TTPs in Info Sec - Robby Winchester
• Red Team Guide - RED TEAM TRADECRAFT AND TTP GUIDANCE - Joe Vest and James Tubberville

Execution

• Red Teaming: Using Cutting-Edge Threat Simulation to Harden the Microsoft Enterprise Cloud - Scott Field
• GitLab - Red Team - Chris Moberly (Gitlab)
• Red Team Operations with Cobalt Strike (2019) - Raphael Mudge
• Advanced Threat Tactics Course and Notes (2015) - Raphael Mudge
• Cobalt Strike Blog - Raphael Mudge
• Dirty Red Team Tricks - Raphael Mudge and Rob Fuller
• Dirty Red Team Tricks 2.0 - Raphael Mudge
• Force Multipliers for Red Team Operations - Raphael Mudge
• Flying a Cylon Raider - Raphael Mudge
• In Memory Evasion (2018) - Raphael Mudge
• Red Teaming Back and Forth 5ever - Fuzzynop
• Bridging the gap - Lesson in adversarial tradecraft - harmj0y & enigma0x3
• Tradecraft Security Weekly - Security Weekly
• Red Team Infrastructure Wiki - bluescreenofjeff
• Red Teaming Experiments - spottheplanet

Cost of Breach

• IBM Data Breach - IBM
• Data Breach Investigation Report - Verizon
• What is the cost of a data breach? - Michael Hill (CSO online)
• 89 Must-Know Data Breach Statistics 2022 - Rob Sobers (Varonis)
• Annual Data Breaches US 2005 - 2022 - Statista Research Department

Books

• Red Team Development and Operations: A practical guide - Joe Vest and James Tubberville
• Red Team: How to Succeed by Thinking Like the Enemy - Micah Zenko
• Red Teaming - How Your Business Can Conquer the Competition by Challenging Everything - Bryce G. Hoffman