Red Team Picks Up Where Penetration Testing Leaves Off
Penetration testing is typically performed against a predefined number of targets provided by our customers and tests known exploits against known vulnerabilities. This type of testing is limited in scope and time. By it's nature it's great for identifying vulnerable systems, networks, and systemic security issues but only scratches the surface in identifying your company's risks. In contrast, the goal of a Red Team Assessment is to test the company’s defenses, their detection and response capacities. TBG’s Red Team takes a broader approach by assessing the susceptibility to real-world attack methods such as using social engineering to gain access to valid user credentials, attacking adjacent systems (not just the web server), physical attacks against the office space, deployment of malware or conducting wireless networking attacks against a trusted office network. Upon breaching the system by any means necessary, TBG's Red Team will try to stay there as long as possible without being detected, while collecting as much sensitive information as possible.