By: Felix Mendoza Introduction Red Teaming is often seen as the ultimate test of an organization’s defences. By simulating real-world attacks, red teams uncover vulnerabilities, test detection capabilities, and assess the overall resilience of targets. Yet, amid the tactics, tools, and creativity that define these operations, one critical element is frequently overlooked: log collection. Logs […]
Logs Don’t Lie: A Data-Driven Red Teaming Read More »
What is OSINT? From a red teamer’s standpoint, OSINT can be a useful tool for gathering information about a target organization or individual from the perspective of a red teamer. Vulnerabilities can be identified, attacks can be planned, and sensitive data can be accessed with this information. Red team members might use OSINT in the
Red Team Operations: Introduction to Open-Source Intelligence Read More »
Introduction In one of the recent engagements conducted by THEOS Red Team, the operators were tasked to simulate an APT scenario in one of our clients. This type of scenario covers the complete kill-chain starting with the reconnaissance of the target client, execution of attacks to gain an initial foothold, and eventually achieving the desired
Red Team Operations: Shortcut File as Initial Access Payload Read More »
Delivering Cyber Resilience
