Invisible link to canonical for Microformats

Practical Purple Teaming


The art of collaborative defense

This website serves as a companion to the “Practical Purple Teaming: The Art of Collaborative Defence” book. Here you’ll find copies of the diagrams and code snippets present in the book, as well as supporting resources so you can explore concepts further.


The sections of this site are as follows:

Part I: How Purple Teaming Works

An introduction to purple teaming and associated frameworks and methodologies.

  • The Basics of Purple Teaming
  • Offensive and Defensive Frameworks
  • The Atomic Methodology
  • The Scenario-based Methodology

Get Started

Part II: Attack Emulation and Detection Lab

Get hands on with adversary emulation, popular tools and detection fundamentals.

  • Environment Setup
  • Collecting Telemetry
  • Network Monitoring, Event Tracing and Memory Scanning
  • Living-off-the-Land with Atomic Red Team
  • Active Directory Recon with MITRE Caldera
  • Domain Compromise with Mythic

Get Started

Part III: Organizing an Exercise

Learn more about reporting, tracking and operationalizing a purple team function.

  • Reporting and Tracking
  • Implementing a Purple Teaming Function

Get Started
Resources

Find links to the tools and projects used through the book.

Read More
Errata

See details of any updates or corrections to the book.

Read More