DOCSLIB.ORG

Agile and Scalable Process for Cyber Red Teaming Using Adaptive Planning and Execution Framework

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Agile and Scalable Process for Cyber Red Teaming Using Adaptive Planning and Execution Framework Jussi Tuovinen & Kimmo Frilander MILITARIZING RED TEAMING – AGILE AND SCALABLE PROCESS FOR CYBER RED TEAMING USING ADAPTIVE PLANNING AND EXECUTION FRAMEWORK UNIVERSITY OF JYVÄSKYLÄ FACULTY OF INFORMATION TECHNOLOGY 2019 ABSTRACT Tuovinen, Jussi & Frilander, Kimmo Militarizing red teaming – Agile and scalable process for cyber red teaming using adaptive planning and execution framework Jyväskylä, University of Jyväskylä, 2019, 147 pp. Cyber Security Supervisor: Professor Martti Lehto The goal of red teaming is to create better plans, policies, procedures and prod- ucts in any domain by challenging the current ones. This calls for assessment and critique of status quo. Red teaming is about mitigating future risks and communi- cating bad news. Red teaming research has focused in adversary emulation and penetration testing practices somewhat disregarding the remediations which are the key in building better security. Cyber threats are evolving and so should cyber red teaming research. Red teaming efforts should be conducted through a comprehensive planning and execution process which considers the complete in- formation security lifecycle starting from planning of intelligence activities and ending to implementing remediations for security to the target organization. Red teaming should be a process that can be understood and adopted by organization and it should be also transparent and traceable. The research problem was to cre- ate a comprehensive agile red teaming framework by combining adaptive plan- ning and execution framework in information security context. Design science research methodology was used to solve this challenge. Solid knowledge base and environment description about red teaming and information security was completed in accordance with information systems research framework. Adap- tive planning and execution framework, intelligence, targeting and agile meth- odologies were introduced to support the creation of the framework. Challenges in red teaming were identified by a survey to five cyber security companies. Chal- lenges were remediated by success factors identified from literature and survey. The framework was created, and it underwent two Delphi iterations with subject matter experts. Main result of the study is the comprehensive agile red teaming framework which incorporates the remediations drawn from subject matter ex- perts, military and agile methods. The scope of this study was wide and therefore results can be considered general. The significance of the created framework lies in its novelty and possibilities to adapt it to any red teams’ purposes due to gen- eral outcome. Framework delivers a good basis for future work. Keywords: Red teaming, cyber security, information security, risk management, penetration testing, intelligence, targeting, military decision making, mission command, agile. TIIVISTELMÄ Tuovinen, Jussi & Frilander, Kimmo Red teamingin militarisaatio - Ketterä ja skaalautuva kyber red teaming prosessi käyttäen adaptiivista suunnittelu- ja toimeenpanomallia Jyväskylä, Jyväskylän yliopisto, 2019, 147 pp. Kyberturvallisuus Ohjaaja: Professori Martti Lehto Red teaming toiminnan tavoitteena on luoda parempia suunnitelmia, tuotteita tai käytänteitä millä tahansa toimialalla haastamalla ja kyseenalaistamalla nykyisiä malleja. Toiminnan ytimessä on etenkin tulevaisuuden riskien hallinta ja huonojen uutisten kommunikointi. Nykyinen red teaming tutkimus on painottunut pitkälti teknisiin penetraatiotestauksen käytänteisiin ja uhkatoiminnan mallintamiseen. Ongelmien korjaaminen on jäänyt osin paitsioon, vaikka se on edellytys paremman turvallisuuden rakentamiselle. Kyberuhat kehittyvät jatkuvasti, joten red teaming tutkimuksen tulee myös kehittyä. Red teaming tulisi toteuttaa kokonaisvaltaisena suunnittelu- ja toimeenpanoprosessina, joka huomioi koko turvallisuuden elinkaaren alkaen tiedustelusta ja suunnittelusta päättyen kohdeorganisaation turvallisuuden kehittämiseen. Red teamingin tulisi olla ymmärrettävä, läpinäkyvä ja jäljitettävissä oleva prosessi, jonka organisaatiot voivat omaksua. Tutkimusongelmana oli luoda kokonaisvaltainen ja ketterä red teamingin toimintamalli sotilaallisen adaptiivisen suunnittelun ja toimeenpanon mallin pohjalta kyberturvallisuuden viitekehyksessä. Ongelman ratkaisemiseen käytettiin suunnittelutieteellistä metodologiaa tietojärjestelmätutkimuksen viitekehyksessä. Ensin luotiin perusta ja tutkimusympäristön kuvaus tietoturvasta sekä red teamingistä. Sitten esiteltiin adaptiivinen suunnittelu- ja toimeenpanomalli, tiedustelu ja maalittaminen sekä ketteriä menetelmiä. Tämän jälkeen viidelle kyberturvallisuusyritykselle toteutettiin kyselytutkimus red teaming toiminnan haasteista. Tulokset analysoitiin teemoittelemalla ja haasteisiin vastattiin luomalla red teamingin kokonaisvaltainen toimintamalli tutkimuskirjallisuuden sekä kyselytutkimuksen menestystekijöiden perusteella. Mallia testattiin yritysten asiantuntijoille suunnatulla kaksikierroksisella Delphi kyselyllä. Tutkimuksen tuloksena syntyi kokonaisvaltainen red teamingin toimintalli mihin sisällytettiin asiantuntijoiden kehitysesityksiä sekä sotilaallisten ja ketterien menetelmien parhaita käytänteitä. Tutkimuksen viitekehys oli hyvin laaja ja tämän vuoksi tulokset eivät ole yksityiskohtaisia. Laaditun toimintamallin suurin merkitys on sen uutuusarvossa ja pohjassa jatkokehittämiselle. Avainsanat: Red teaming, kyberturvallisuus, informaatioturvallisuus, riskienhallinta, penetraatiotestaus, tiedustelu, maalittaminen, suunnitteluprosessi, tilannejohtaminen, ketteryys. FIGURES FIGURE 1 Application of ISRF Framework to DSRM. ........................................... 15 FIGURE 2 How Noise and Bias affect accuracy (Kahneman et al., 2016)............ 17 FIGURE 3 Methods and techniques for red teaming (Davis, 1962). .................... 28 FIGURE 4 Various types of red teams. (Modified from Fleming (2010)) ............ 32 FIGURE 5 Information system combined (Zachman, 1987; Raggad, 2010 and Boell & Cecez-Kecmanovic, 2015). ...................................................................................... 36 FIGURE 6 Updated IS Success model (DeLone & McLean, 2003) ........................ 36 FIGURE 7 Information Security Life Cycle (Raggad, 2010) modified by Frilander & Tuovinen (2019) to “Information System Security Lifecycle”. .......................... 38 FIGURE 8 Risk analysis paradigms for control selection (Baskerville, 1991) ..... 40 FIGURE 9 Risk management stages (Tsohou et al., 2006). .................................... 41 FIGURE 10 Components of an information security management system (ISACA Germany Chapter e.V, 2013) ...................................................................................... 44 FIGURE 11 Examples of the drivers of key risks (The Institute of Risk Management, 2002) ..................................................................................................... 45 FIGURE 12. NIST Risk management framework (NIST, 2013). ............................ 47 FIGURE 13 Three-tiered risk management approach (NIST, 2013). .................... 48 FIGURE 14 Information security policy process model (Knapp et al., 2009) ..... 50 FIGURE 15 Cyclic risk driven information security process. ................................ 52 FIGURE 16 Phases and Courses of Action Matrix (Hutchins et al., 2011). ......... 56 FIGURE 17 Risk management and implementation relations. (NIST, 2017) ...... 66 FIGURE 18. Planning activities and functions. (US Joint Chiefs of Staff, 2017) . 67 FIGURE 19 Interdependency of planning, intelligence and operations (US Joint Chiefs of Staff, 2013b); supplemented with execution and assessment. .............. 68 FIGURE 20 The planning construct (Department of the army, 2010b) ................ 70 FIGURE 21 Planning process (US Joint Chiefs of Staff, 2017) and The Army problem solving method combined (Department of the army, 2010b) ............... 71 FIGURE 22 Operational art (US Joint Chiefs of Staff, 2017) .................................. 74 FIGURE 23 The OODA ”Loop” Sketch (Boyd, 1996) ............................................. 77 FIGURE 24 the operations process (Department of the Army, 2012) .................. 78 FIGURE 25 Achieving understanding (Department of the Army, 2012) ............ 78 FIGURE 26 Mission command warfighting function tasks (Department of the Army, 2012) adapted to red teaming by Frilander & Tuovinen ........................... 79 FIGURE 27 Components of mission command system (Department of the Army, 2012) ............................................................................................................................... 80 FIGURE 28 Relationship of data, information and intelligence (US Joint Chiefs of Staff, 2013). Modified by Tuovinen/Frilander 2019. .............................................. 83 FIGURE 29 Simple intelligence cycle. ....................................................................... 83 FIGURE 30 The intelligence process. (US Joint Chiefs of Staff, 2013) .................. 85 FIGURE 31 Joint Targeting Cycle. (US Joint Chiefs of Staff, 2013b) ..................... 87 FIGURE 32 Target development relations. (US Joint Chiefs of Staff, 2013b) ...... 88 FIGURE 33 F2T2E2A – Cycle (kill chain). (US Joint Chiefs of Staff, 2013b) ........ 89 FIGURE 34 Scrum process cycle (Schlauderer et al., 2015).................................... 94 FIGURE 35 Agile goals, means and enablers (Laanti, 2012). ................................ 96 FIGURE 36 The agile enterprise big picture (Leffingwell, 2007) .........................
Load more

Recommended publications
  • A Roadmap for Cybersecurity Research
    A Roadmap for Cybersecurity Research November 2009 Contents Executive Summary ................................................................................................................................................iii Introduction ..............................................................................................................................................................v Acknowledgements .................................................................................................................................................ix Current Hard Problems in INFOSEC Research 1. Scalable Trustworthy Systems ...................................................................................................................1 2. Enterprise-Level Metrics (ELMs) ..........................................................................................................13 3. System Evaluation Life Cycle ...................................................................................................................22 4. Combatting Insider Threats ....................................................................................................................29 5. Combatting Malware and Botnets ..........................................................................................................38 6. Global-Scale Identity Management ........................................................................................................50 7. Survivability of Time-Critical Systems ..................................................................................................57
    [Show full text]
  • KPMG Report A4
    + = TAKING SECURITY TESTING TO THE NEXT LEVEL 5 MAY 2014 STAN HEGT HAVE YOU EVER ENCOUNTERED AN ADVERSARY THAT RAN NESSUS FROM A MEETING ROOM? PENETRATION TESTING vs RED TEAMING Penetration Testing Red Teaming Gain oversight of vulnerabilities Goal Test resilience against real attacks Predefined subset Scope Realistic access paths Focus on preventive controls Tested controls Focus on detection and response Focus on efficiency Test method Focus on realistic simulation Mapping, scanning, exploiting Test techniques Attacker TTPs Very limited Post-exploitation Extensive focus on crown jewels Part of development lifecycle Positioning Periodical exercise RED TEAMING – THE APPROACH The Red Team . Uses the same Tactics, Techniques and Procedures (TTPs) as real adversaries . Red team members must be on top of threat intelligence . Team members must have operational versatility The Blue Team . Is not only the security team (but also users, IT, management) . Does not know if an incident is real or triggered by a red team . Measure improvement: mean time to detect (MTTD) and mean time to recovery (MTTR) THE APPROACH – CYBER KILL CHAIN METHODOLOGY Transmission of the Select targets and attack via physical, Install “malware” to Complete actions and determine attack email, web, or social gain remote control achieve the red flags methods engineering Before the Hack T-1 T0 After the Hack T+1 Recon Weaponize Deliver Exploit Install Control Execute Establish command & Develop the attack Successful penetration control throughout the methods – access gained network Developed by Lockheed Martin, Intelligence-Driven Computer Network Defense THE ASSUME COMPROMISE MODEL Recon Weaponize Deliver Exploit Install Control Execute Focus on last steps in Kill Chain .
    [Show full text]
  • Inside a Hacker's Mind
    1 © MazeBolt Technologies. All Rights Reserved. 2 Table of Contents Introduction 3 The Evolving Hacker Community 4 What motivates Hackers 4 Modus Operandi of DDoS Hackers 5 Best Practices to Mitigate DDoS Attacks: 8 Summary: Beating Hackers at their Own Game 8 References 9 Table of Figures Figure 1 – Anonymous Hackers Mask _______________________________________________________________ 3 Figure 2 - A Tweet by the Anonymous Group ________________________________________________________ 4 Figure 3 - Another Tweet by Anonymous ____________________________________________________________ 5 Index of Tables Table 1 - Cost of DDoS Services on the Dark Net ________________________________________________________________ 6 © MazeBolt Technologies. All Rights Reserved. 3 Introduction It was in 1974 that the first DDoS attack was launched when David Dennis—a 13-year-old learned about a new command that could be run on CERL’s PLATO terminals. Called “external” or “ext,” the command could cause the terminal to lock up—requiring a shutdown and power- on to regain functionality. He tested his knowledge which forced several users to power off simultaneously. In the 45 years since its inception, this form of attack has gained the status of the most persistent and damaging of all cyber-attacks. The next milestone in DDoS attacks occurred in August 1999, when a hacker used a tool called `Trinoo’ or `Trin00’, to disable the University of Minnesota’s computer network for more than two days. Trinoo is one of the first publicly available DDoS programs and a ground-setter for other widely available DDoS tools that would emerge in the future. Using a compromised host, the attacker executes automated processes to make a list of vulnerable machines.
    [Show full text]
  • Comptia® Security+ SY0-601 Cert Guide
    CompTIA® Security+ SY0-601 Cert Guide Omar Santos Ron Taylor Joseph Mlodzianowski A01_Santos_Fm_pi-plii_1.indd 1 01/06/21 2:49 pm CompTIA® Security+ SY0-601 Cert Guide Editor-in-Chief Copyright © 2022 by Pearson Education, Inc. Mark Taub All rights reserved. No part of this book shall be reproduced, stored in Product Line Manager a retrieval system, or transmitted by any means, electronic, mechanical, Brett Bartow photocopying, recording, or otherwise, without written permission from the publisher. No patent liability is assumed with respect to the use of the Executive Editor information contained herein. Although every precaution has been taken in Nancy Davis the preparation of this book, the publisher and author assume no respon- Development Editor sibility for errors or omissions. Nor is any liability assumed for damages Christopher A. Cleveland resulting from the use of the information contained herein. ISBN-13: 978-0-13-677031-2 Managing Editor ISBN-10: 0-13-677031-2 Sandra Schroeder Library of Congress Control Number: 2021935686 Senior Project Editor ScoutAutomatedPrintCode Tonya Simpson Copy Editor Trademarks Chuck Hutchinson All terms mentioned in this book that are known to be trademarks or ser- vice marks have been appropriately capitalized. Pearson IT Certification Indexer cannot attest to the accuracy of this information. Use of a term in this book Erika Millen should not be regarded as affecting the validity of any trademark or service mark. Proofreader Abigail Manheim Warning and Disclaimer Technical Editor Every effort has been made to make this book as complete and as accurate Chris Crayton as possible, but no warranty or fitness is implied.
    [Show full text]
  • Specialized Cyber Red Team Responsive Computer Network Operations
    TALLINN UNIVERSITY OF TECHNOLOGY DOCTORAL THESIS 25/2019 Specialized Cyber Red Team Responsive Computer Network Operations BERNHARDS BLUMBERGS TALLINNUNIVERSITYOFTECHNOLOGY SchoolofInformationTechnologies DepartmentofSoftwareScience ThedissertationwasacceptedforthedefenceofthedegreeofDoctorofPhilosophy(cyber security)on2ndofApril,2019 Supervisor: Dr. Rain Ottis, Department of Software Science, School of Information Technologies, Tallinn University of Technology Tallinn, Estonia Co-supervisor: Dr. Risto Vaarandi Department of Software Science, School of Information Technologies, Tallinn University of Technology Tallinn, Estonia Opponents: Professor Dr. Hiroki Takakura, National Institute of Informatics, Tokyo, Japan Fregattenkapitän PD Dr. Dr. habil. Robert Koch, Bundeswehr University of Munich, Munich, Germany Defence of the thesis: 27th of May, 2019, Tallinn Declaration: Hereby I declare that this doctoral thesis, my original investigation and achievement, submitted for the doctoral degree at Tallinn University of Technology, has not been submittedforanyacademicdegreeelsewhere. Bernhards Blumbergs signature Copyright: Bernhards Blumbergs, 2019 ISSN 2585-6898 (publication) ISBN 978-9949-83-413-6 (publication) ISSN 2585-6901 (PDF) ISBN 978-9949-83-414-3 (PDF) TALLINNA TEHNIKAÜLIKOOL DOKTORITÖÖ 25/2019 Vastutegevusele orienteeritud punase meeskonna küberoperatsioonid BERNHARDS BLUMBERGS Contents LIST OF PUBLICATIONS 7 AUTHOR’S CONTRIBUTIONS TO THE PUBLICATIONS 8 LIST OF ACRONYMS 10 LIST OF FIGURES 11 LIST OF TABLES 12 1 INTRODUCTION 15
    [Show full text]
  • Connected, More at Risk Addressing Cybersecurity Concerns for Tribal Organizations
    1/7/2019 More Connected, More at Risk Addressing Cybersecurity Concerns for Tribal Organizations January 10, 2019 To Receive CPE Credit › Individuals • Participate in entire webinar • Answer polls when they are provided › Groups • Group leader is the person who registered & logged on to the webinar • Answer polls when they are provided • Complete group attendance form • Group leader sign bottom of form • Submit group attendance form to [email protected] within 24 hours of webinar › If all eligibility requirements are met, each participant will be emailed their CPE certificate within 15 business days of webinar 1 1/7/2019 Presenter Rex Johnson Director [email protected] Introductions Rex Johnson, CISSP®, CISA®, CIPT, PMP®, PCIP™ Director Health Care, Financial Services, Not-for-Profit, Government, Education, Telecommunications & Manufacturing Industries 2 1/7/2019 Breaches Are Continuing … Reported Breaches by Year 1579 2017 totals: • 1,579 breaches total 1600 • 178,955,069 records exposed 1400 1091 1200 2018 update through Dec. 5, 2018: • 1,138 breaches 1000 783 780 614 • 561,782,485 records 800 471 421 600 400 200 0 2011 2012 2013 2014 2015 2016 2017 Source: ID Theft Center https://www.idtheftcenter.org 2018 – Data Breach Category Y-T-D Summary (12/5/2018) Incident vs. Breaches Incident Breach › Security event that › Incident that results in compromises integrity, the confirmed confidentiality or disclosure—not just availability of an potential exposure—of information asset data to an unauthorized party Source: Verizon 2018 Data Breach Investigations Report 3 1/7/2019 Breaches Are Costing More & More Average cost per Likelihood of a Average total cost Companies that lost or stolen recurring breach of a data breach record within two years contained a breach in $3.86 million $148 27.9% less than 30 days saved more than $1 Up from $3.62 million 2017 was $141 27.7% last year million vs.
    [Show full text]
  • Red Team Analysis of Information Security Measures and Response
    International Research Journal of Engineering and Technology (IRJET) e-ISSN: 2395-0056 Volume: 07 Issue: 04 | Apr 2020 www.irjet.net p-ISSN: 2395-0072 Red Team Analysis of Information Security Measures and Response Khushboo Amin1, Dr. Priyanka Sharma2 1 Student, School of Information Technology & Cyber Security, Raksha Shakti University, Gujarat, India 2Dean, Research & Development, Raksha Shakti University, Gujarat, India ---------------------------------------------------------------------***--------------------------------------------------------------------- Abstract - This research attempts to develop a factor As we all know today, the cybersecurity threat landscape understanding of Red Team assessment strategies in computer may be a dynamic one and is continually changing. The cyber and data security. The Red Team is a 'cultured form' of attacker of today uses a combination of both traditional and assessment that identifies weaknesses during a quite advanced hacking techniques. On top of this, new variants of information and security system. This research aims to identify the existing malicious threat actors are seen daily. Red and define the form of dimensions of the Red Team's Teaming may be a full-scope, multi-layered attack simulation effectiveness from the customer, management, individual, and designed to live how well a company's people and networks, team member to strengthen the knowledge system's security applications and physical security controls can withstand an and performance. The Red Team generally addresses the attack
    [Show full text]
  • Principles of Cyberwarfare
    Cyberwarfare Principles of Cyberwarfare Cyberwarfare is different from classic kinetic warfare and therefore requires a review of basic warfare principles to differentiate it from armed conflict in the traditional sense. RAYMOND lassic, kinetic warfare principles have been not an exhaus- C. PARKS derived from thousands of years of expe- tive list, nor is it AND DAVID rience as Tsun Tzu, Carl von Clausewitz, intended as the P. DUGGAN Antoine-Henri Jomini, Basil Henry Liddel- final definitive Sandia CHart, and others have documented. Some kinetic one. Instead, these principles are a continuation of the National warfare principles apply to cyberwarfare, others have discussion with the cyberwarfare community that we Laboratories no meaning in cyberwarfare, and a few may actually began with our first article. We chose principles from be antagonistic to cyberwarfare. practical experience. When we follow these princi- The principles of warfare guide warfighting at the ples, we win; when we do not follow them, we lose. strategic, operational, and tactical levels. They’re the enduring bedrock of US military doctrine, derived Definitions from practical experience and the wisdom of those To present our cyberwarfare principles, we must define who documented that experience. Those who fol- our terms. Dan Kuehl defines cyberspace as “an opera- lowed these principles have won, and those who did tional domain whose distinctive and unique character is not have lost. Clearly, we do not have thousands of framed by the use of electronics and the electro magnetic years of experience in cyberwarfare, so we have to spectrum to create, store, modify, exchange and ex- start with what we have had.
    [Show full text]
  • Ethical Hacking Terminology
    Ethical Hacking Terminology Table of Contents Terminology .................................................................................................................................... 2 Terminology -1 ................................................................................................................................ 3 Terminology -2 ................................................................................................................................ 5 Defense in Depth ............................................................................................................................ 6 Confidentiality, Integrity and Availability ....................................................................................... 8 The "Ease of Use" Triangle ............................................................................................................ 11 Types of Hackers – Black Hats ....................................................................................................... 13 Types of Hackers – Gray Hats ....................................................................................................... 15 Types of Hackers – White Hats ..................................................................................................... 17 Hacktivism ..................................................................................................................................... 18 Required Ethical Hacking Skills ....................................................................................................
    [Show full text]
  • Protect Your Properties from Cyber Attacks!
    Protect Your Properties from Cyber Attacks! MNP Cyber Security Presentation Presented by: Danny Timmins, National Cyber Security Leader 2017 Cyber Security MNP Technology Solutions • Cyber Security Overview • Cyber Crime Tactics and Techniques o Hacking (Penetration Testing) o Social Engineering (Malware/Crimeware) o Red Teaming • Considerations Page 2 Lessons from the field • Canada’s 5th Largest Accounting | Tax | Consulting • 4500 Team Members • 80 Offices coast to coast • 55 Cyber Security Professionals Nationally Page 3 MNP is more than an Accounting Firm • Digital Strategy • Operational Technology • Portal Development • IoT • Business Continuity • Cyber Security & Risk • Workplace Collaboration • Data Analytics • CRM/ERP • DevOps • Cloud Strategy • Auditing Page 4 Predictions ➢99% of vulnerabilities exploited will continue to be the ones known by security/IT professionals. ➢The single most impactful enterprise activity to improve security will be patching. ➢The second most impactful enterprise activity to improve security will be removing web server vulnerabilities. Page 5 Predictions ➢Internet of Things will grow to an installed base of 20.4 billion. ➢A third of successful attacks experienced will be on their shadow IT resources. ➢Companies are using more than 15 times more cloud services to store critical company data than CIOs were aware of. ➢Nearly eight in ten (77%) of decision makers admit to using a third-party cloud application without approval. Page 6 What’s happening in the industry? Damages have started to increase in Canada - Casino Rama is an example of damages increasing ….30+ Million Canada’s new privacy laws will require breach notice and affect private sector operations in Canada. (Digital Privacy Act)…do you know your data Cyber Insurance…how much do you need …is it focused on the correct areas Page 7 What’s happening in the industry? Mandatory cyber audits coming for publicly traded companies in Canada….
    [Show full text]
  • The Applied Critical Thinking Handbook
    Red Teaming Handbook v7 Points of Contact UFMCS http://usacac.army.mil/cac2/UFMCS/index.asp University of Foreign Military and Cultural Studies TRISA (TRADOC G2 Intelligence Support Activity) 803 Harrison Drive, Building 467, Room 315 Ft Leavenworth, KS 66027-2308 FAX 913-684-3887 DSN 552 Director 913-684-3860 Operations 913-684-3857 Security 913-684-4336 Technology 913-684-4339 Curriculum 913-684-4321 Instructors 913-684-3892/3959 SMEs 913-684-4323/4338 Librarians 913-785-3001/3081 Enrollment 1. Go to https://www.atrrs.army.mil/atrrscc/search.aspx 2. Select a Fiscal Year, i.e., 2015. 3. Select the School Code: 159 (UFMCS). 4. Click Search the ATRRS course catalog button (near the bottom). 5. Select a UFMCS course from the table. Page i Red Teaming Handbook v7 Table of Contents CHAPTER I: Introduction ....................................................1 Why Red Teaming? ...........................................................1 What is Red Teaming? ......................................................2 How is Red Teaming Conducted? .....................................4 How is a UFMCS Education Unique? ................................5 Why this Red Teaming Handbook? ...................................7 Summary ...........................................................................8 Endnotes ...........................................................................8 CHAPTER II: Self-Awareness .............................................9 What is Self-Awareness? ..................................................9 Who Am I? .....................................................................
    [Show full text]
  • The Rise of China's Hacking Culture: Defining Chinese Hackers
    California State University, San Bernardino CSUSB ScholarWorks Electronic Theses, Projects, and Dissertations Office of aduateGr Studies 6-2016 The Rise of China's Hacking Culture: Defining Chinese Hackers William Howlett IV California State University - San Bernardino Follow this and additional works at: https://scholarworks.lib.csusb.edu/etd Part of the Asian Studies Commons, Criminology and Criminal Justice Commons, International Relations Commons, Politics and Social Change Commons, and the Science and Technology Studies Commons Recommended Citation Howlett, William IV, "The Rise of China's Hacking Culture: Defining Chinese Hackers" (2016). Electronic Theses, Projects, and Dissertations. 383. https://scholarworks.lib.csusb.edu/etd/383 This Thesis is brought to you for free and open access by the Office of aduateGr Studies at CSUSB ScholarWorks. It has been accepted for inclusion in Electronic Theses, Projects, and Dissertations by an authorized administrator of CSUSB ScholarWorks. For more information, please contact [email protected]. THE RISE OF CHINA’S HACKING CULTURE DEFINING CHINESE HACKERS A Thesis Presented to the Faculty of California State University, San Bernardino In Partial Fulfillment of the Requirements for the Degree Master of Arts in Social Sciences and Globalization by William Sedgwick Howlett June 2016 THE RISE OF CHINA’S HACKING CULTURE DEFINING CHINESE HACKERS A Thesis Presented to the Faculty of California State University, San Bernardino by William Sedgwick Howlett June 2016 Approved by: Cherstin Lyon, Committee Chair, Social Sciences and Globalization Jeremy Murray, Committee Member, History Jose Munoz, Committee Member, Sociology © 2016 William Sedgwick Howlett ABSTRACT China has been home to some of the most prominent hackers and hacker groups of the global community throughout the last decade.
    [Show full text]