Our approach to purple team testing follows a collaborative approach with the clients blue team. IronSky assists the client blue team in developing an defensive matrix, based on the “Cyber Kill Chain” and “Att&ck Mitre” frameworks. We then iterate over attack chains, assisting the blue team in refining their surveillance system.
During the reconnaissance phase the IronSky team will gather as much information from publicly available information mostly from online sources (Open-source intelligence (OSINT)). The IronSky team will analyse this information to identify sensitive information that can assist the team further