This paper proposes a combined Red and Blue Team Methodology to guide the process of carrying out such security auditing and penetration testing tasks. Red and Blue Teams consist of various security auditing and penetration testing tasks which serve to determine the current security baseline in an organisation. The practice of Red and Blue Teams has demonstrated that various data gathering, assessment and technological based activities form the foundation. In this way, the different activities were organised so as to structure and guide the execution of a combined Red and Blue Team.
Reference:
Veerasamy, N. 2009. High-level methodology for carrying out combined red and blue teams. 2nd International Conference on Computer and Electrical Engineering (ICCEE 2009), Dubai. 28-30 December 2009, pp 416-420
Veerasamy, N. (2009). High-level methodology for carrying out combined red and blue teams. http://hdl.handle.net/10204/3968
Veerasamy, Namosha "High-level methodology for carrying out combined red and blue teams." (2009) http://hdl.handle.net/10204/3968
Veerasamy N. High-level methodology for carrying out combined red and blue teams. 2009; http://hdl.handle.net/10204/3968.