Explore a comprehensive overview of red team and blue team tactics in cybersecurity through this 24-minute conference talk from GrrCON 2014. Dive into the world of "Hackmeville" to understand the dynamics between attacking and defending teams. Learn about effective strategies for both offensive and defensive cybersecurity, including good practices and lessons learned from real-world exercises. Discover the importance of the NIST Cybersecurity Framework, covering key aspects such as identification, protection, baselining, alerting, incident response, and recovery. Gain valuable insights and takeaways to enhance your cybersecurity skills and knowledge, along with resources for further learning and implementation.
Overview
Syllabus
Intro
About Me
Red Team/Blue Team
"Hackme"ville
Blue (Defending) Team
Red (Attacking) Team
Red Team Tactics
Blue Team Tactics
Good Practices
How the exercise unfolded...
So...what happened to Zulu?
Lessons Learned
So...Where do you go from here?
Cyber Security Framework (NIST)
Identify (Planning)
Protect
Baselining
Alerting/Notifications
Incident Response
Recover
Takeaways
Resources
