Red Team Confluence Wiki

 

Core Concept

Red Team

 

Red Team vs Penetration Test vs Vulnerability Assessment

 

OPSEC

 

Attack Life Cycle

 

Engagement Planning

 

Post-Engagement and Reporting

 

TTP

 

ATT&CK

 

 

External Reconnaissance

 

OSINT

 

DNS

 

whois

 

Social Media

 

Official Website

 

Passive Subdomain Enumeration

 

Dorking

 

 

Active Reconnaissance

 

Port Scan

 

Directory Bruteforce

 

 

Initial Access

 

Password-based Attack

 

Phishing

 

Exploit Public-facing Service

 

Valid Account

 

Supply Chain Pollution