Offensive Security
Purple Team
Optimize your detection and response capabilities with a collaborative security exercise between offensive and defensive teams.
Purple Team Engagements Encompasses Detection and Response Analysis, Controls Validation, and Defense Enablement
Detection and Response Analysis
Discover opportunities for prevention, detection, and response across each step of an executed attack chain.
Stand Alone Excercise
Praetorian engineers develop and perform an attack scenario with tactics, techniques and procedures based on the risk profile of the target environment. Our team then conducts interactive workshops with your security teams.
Engagement Setup
- Kickoff Meeting
- Finalize Objectives
- Create Session Schedule
- Schedule Approval
- Meetings Setup
TTP Creation
- Confirm Access
- Environment Familiarization
- Create & Tune TTPs
- Collaborate TTP Review
TTP Execution
- Collaborative Sessions
- Real-time TTP Execution
- Replay and Walkthrough
Documentation
- Reporting & Analysis
- Client Verification
- Technical Debrief
- Executive Debrief
Follow-On Excercise
The Praetorian engineers who conducted the initial exercise, such as a Red Team, replay the original attack chain execution in a collaborative, interactive fashion with your security team.
Preceding Engagement
Red Team or Attack Path Papping engagement that is executed preceding the Purple Team.
Debrief & Prioritization
- Read in the clients security team to findings from preceding engagement.
- Identify focus areas for TTP
TTP Execution
- Collaborative Sessions
- Real-time TTP Execution
- Replay and Walkthrough
Documentation
- Reporting and Analysis
- Client Verification
- Technical Debrief
- Executive Debrief
Controls Validation
Test and evaluate the effectiveness of your security controls through the simulation of attack chain components. Incorporate MITRE ATT&CK Framework TTPs through atomic testing of preventive and detection controls.
- Host-based security controls, such as EDR software and attack reduction rules
- Testing the effectiveness of policies and procedures
- Testing incident response plans
Defense Enablement
Praetorian engineers will implement detection engineering logic within your existing security technology stack. This process results in high- fidelity detection logic and response playbooks for your company.
Why Choose Praetorian
Praetorian Purple Team engagements provide collaborative exercises with the objective of improving a client’s ability to prevent, detect, and respond to attacks. Through the execution of tailored attack scenarios, we will evaluate the effectiveness of your organization’s defenses and provide actionable recommendations for improving security. Our engineers will put your security assumptions to the test and work interactively with you to close the gaps that expose your organization to the risk of compromise.
Offensive Security Engineers
Our experts have demonstrated expertise with enterprise environments, including traditional networking, cloud, and software environments.
Proven Methodology
Benchmark against the MITRE ATT&CK framework while experiencing real-time attack behaviors via the same attack vectors, tools, techniques, and procedures that modern adversaries use.
Innovative Enablement Platform
Our continuous offensive security platform underpins every engagement to streamline the relationship and allow our two teams to focus on uncovering high value, material risks.
Ready to Discuss Your Purple Team Initiative?
Praetorian’s Offense Security Experts are Ready to Answer Your Questions