This website serves as a companion to the “Practical Purple Teaming: The Art of Collaborative Defence” book. Here you’ll find copies of the diagrams and code snippets present in the book, as well as supporting resources so you can explore concepts further.
The sections of this site are as follows:
Part I: How Purple Teaming Works
An introduction to purple teaming and associated frameworks and methodologies.
- The Basics of Purple Teaming
- Offensive and Defensive Frameworks
- The Atomic Methodology
- The Scenario-based Methodology
Part II: Attack Emulation and Detection Lab
Get hands on with adversary emulation, popular tools and detection fundamentals.
- Environment Setup
- Collecting Telemetry
- Network Monitoring, Event Tracing and Memory Scanning
- Living-off-the-Land with Atomic Red Team
- Active Directory Recon with MITRE Caldera
- Domain Compromise with Mythic
Part III: Organizing an Exercise
Learn more about reporting, tracking and operationalizing a purple team function.
- Reporting and Tracking
- Implementing a Purple Teaming Function