Overview
Explore the intricacies of red team operations management through this RSA Conference talk. Delve into Wavestone's Abaddon software, designed to enhance red team operations by making them faster, more repeatable, and stealthier. Learn about value-added tools and extensive reporting capabilities. Gain insights into modern pentesting techniques, reconnaissance methods, command and control architecture, and infrastructure deployment. Discover strategies for deceiving SOCs using fake sites, understand OPSEC considerations, and explore physical intrusion aspects. Understand how Abaddon contributes to the offensive security community and learn ways to get involved in its development.
Syllabus
Intro
Red Team operations management
Reminder: What is a red team operation ?
But: why, on earth, another tool ?
Show me that tool!
Show me your reconnaissance !
Command and Control architecture
Far from enough: deploy the full infrastructure!
Show me that deployment!
Using a fake site to deceive the SOC
Under the hood
OPSEC thoughts
Parenthesis - What did you say? Physical intrusions ?
Build a tool that the offsec community will care about
Contribute!
Taught by
RSA Conference