This slide deck is from Toby Kohlenberg, a red team technical lead at Intel. While focused on cyber security, many of its key points are applicable to other domains. An important take away is red teaming is about as foggy as San Francisco, so the definition and approach may vary depending on the practitioner. That’s fine, as long as the service provider and client are on the same page.
Using Kohlenberg’s taxonomy, AISC conducts
Threat Simulation/attack modeling.
Note: Emulation has been changed to simulation. Emulation implies exactness, whereas simulation implies a model with a certain degree of fidelity. With regards to drone threats, we feel simulation more correctly captures the ambiguities that come with human behavior and technology.
[slideshare id=81283357&doc=redteamingisprobablynotforyou-171027130521]
(Credit: Toby Kohlenberg)