Red team testing is a specific application of penetration testing that tests your organization’s ability to detect an attack, respond, and minimize or negate its effect. Coalfire Labs acts as an attacker, attempting to exploit your organization without detection. Our red team escalates the nature of each attack to test the detection and response capabilities of your blue team (security monitoring and incident response) to answer these questions:
- Were you able to detect the attack?
- How long did it take to detect it?
- How long did it take to respond to the attack?
- Was the response the correct one?
Our red team testing attempts to compromise your environment through any method possible, including:
- External attacks against systems and infrastructure exposed to the internet
- Physical access attacks that covertly breach your physical security with the objective of gaining access to your systems or networks
- Pretexting and spear phishing campaigns against your organization
- Attacks against your wireless infrastructure
- Internal attacks on your network, after gaining a foothold or in an assumed breach scenario
Reporting on the red team cyber exercise
A formal report details all identified and potential threats and vulnerabilities, and provides recommendations for countermeasures to eliminate or mitigate these risks.
Why partner with Coalfire for red team testing?
- Each test is unique; our approach is tailored to meet business objectives specific to your company and provide strategic recommendations accordingly.
- We leverage tools built by our R&D team and customize payloads to test the limits of your detection and response capabilities.
- We are regular presenters and trainers at premier conferences, sharing techniques that power our work with the information security community.
- Our R&D work has been featured in “The Hacker Playbook 3: Practical Guide to Penetration Testing, Red Team Edition.”
- Our team holds more than 30 unique certifications, including GXPN, GPEN, GCIH, GWAPT, OSCP, OSCE, OSEE, CEH, GXPN, and CISSP.