Tarlogic Red Team has the purpose to simulate an unauthorized access to corporate systems through a sponsored external attack, a classic penetration, long-term persistence, corporate system privilege escalation, and even alteration and theft of business strategical information.
In order to fully understand the benefits of a Red Team, it should be differentiated from conventional penetration tests.
A penetration test (“pentest”) takes a snapshot of the security status for a limited number of assets at a given time and under specific conditions… Even though a penetration test is a great tool for revealing ad-ac network vulnerabilities, it does not provide contextualized information on the infrastructure global security. Time and scope limitations distort the results in relation to the actual security level status.
The Red Team periodically reports on findings and taken and future actions to a select group of people as directed by the client, so it can always stay updated on the campaign progress, as well as first-hand information on the defending team (Blue Team) performance.