A Lesson from the Okta Incident: Scaling Purple Teaming for Better Controls Validation
This week, Okta shared a postmortem for its recent incident. Much has been said...
Posts about
Purple Team (3)
Building an Internal Red Team? Go Purple first
I was chatting with a SANS STI student, Antonio Piazza, on Twitter and we...
Summiting the Pyramid of Pain: The TTP Pyramid
A Special Thanks The TTP Pyramid expands David Bianco’s Pyramid of Pain. We...
Breaking Down LOLBAS Attacks With The Help Of Hunter-gatherers
A few weeks ago , while watching the Hadza: Last of the First documentary, I...
Simplifying the MITRE ATT&CK Framework
INTRODUCTION Before we get into the nitty gritty of things, I’d like to...
Adaptive Adversary Emulation (Part 1): Execution Details
TLDR: SCYTHE’s Adversary Emulation Lead Tim Schulz revisits his SANS...
You can’t detect 0-day exploits but… you can detect what happens next
TLDR: One of the best-known ways to gain access into an organization and...
Introducing the Purple Team Maturity Model
TL; DR: Here at SCYTHE, we created a great deal of purple team content...
Why assume breach?
TL;DR: Are you wondering why you and your organization should assume...
