Not sure which Service you need? Talk with our experts to get some information.
Not sure which Service you need? Talk with our experts to get some information.
Our adversary simulation exercises, whether penetration testing or red team operations, are conducted to fulfill two primary objectives. One: establish a baseline of risks and impacts posed by various attack vectors to the environment and provide actionable recommendations to strengthen the overall security posture. Two: actively exercise the entire security program by training incident responders and security personnel to respond to a breach by advanced threat actors.
Gain access through phishing, physical access, or ceding access (assume initial access)
Gather information about the environment that leads to potential attack chains to achieve impact objectives – capture all defensive technologies in play to determine procedural adjustments for evasion
Attempt to elevate access throughout the environment on endpoints, applications, and relevant target systems
Establish short and long-term footholds throughout the network to maintain access in the event the defensive capability detects and mitigates an attack chain
Demonstrate impacts of a successful breach – gain access to sensitive data, test detection capabilities by simulating a data exfiltration, etc.
Penetration testing should be used by organizations to understand the full impact of a potential breach and evaluate how effective their security controls work to protect their most critical assets. Our team of experts will work with you to design an engagement that will achieve the greatest impact on augmenting your risk visibility into your environment.
The difference in our approach is that we insist on impact objective driven testing. Whether we are attempting to access sensitive information, breach network security boundaries, or access management systems, you can be sure that our time is efficiently spent on testing your capability to protect those objectives.
SpecterOps red team operations go beyond standard penetration testing by providing holistic simulation of advanced threat actors and exercising your defensive capabilities at all levels. Red team activities use adversary Tactics, Techniques, and Procedures (TTPs) to provide a realistic assessment of the true risk posed by an attack by advanced threats.
Your incident responders and defensive staff will be able to use their processes, defensive technology and staff training to attempt to identify and eradicate an active breach scenario, with the goal of identifying flaws and closing those gaps to ensure your defenses are running at optimal performance. Activities will include advanced network exploitation and escalation TTPs, social engineering, defense evasion, war gaming and focus on completion of specific impact and defensive training objectives.
Physical intrusion assessments provide a robust approach to evaluating a site’s susceptibility to physical attack. Our assessment team will catalog all external entry and exit points to identify areas of weakness, then use those entry points to attempt intrusion. As every site is different, our operators come armed with an assortment of tools to bypass both technical and non-technical controls.
To demonstrate impact, our assessment team can use onsite access gained from the physical assessment to facilitate a network breach and serve as an attack vector for penetration testing and red team operations.
A full planning phase tailored to achieve maximum impact of the assessment
Real time communication and collaboration during the assessment execution window
Executive and technical level briefings with your staff to outline findings, observations, and the attack chain
Comprehensive write-ups in a full report detailing every facet of the engagement – all potential entry vectors and entry attempts will be documented
A gap analysis of TTPs that were utilized during the engagement and recommendations for detection improvements
Copyright 2018 Specter Ops, Inc. All Rights Reserved.
