SlideShare a Scribd company logo

Continuous Automated Red Teaming (CART) - Bikash Barai

Download as PPTX, PDF
A
AllanGray11

Bikash Barai discusses the evolving landscape of offensive attack simulation and highlights critical industry challenges such as shadow IT, misconfigurations, and the need for continuous security testing. He emphasizes the dangers of exposed data, with statistics on leaked passwords and vulnerable networks, and outlines advancements in offensive security, including automated red teaming and attack surface management. Firecompass, co-founded by Barai, offers tools for continuous monitoring and automated assessments to proactively identify and manage digital risks.

Technology
1 of 24
Downloaded 13 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
Most read
22
23
Most read
24
The Future of Offensive Attack Simulation Bikash Barai
About Me • Founded multiple cyber security product companies • Currently Co-founder of FireCompass • Internet-wide monitoring and attack platform • Cyber Security Advisory Board for multiple companies • Multiple patents in cyber security • Spoke at RSA USA, RSA Singapore, Interop, TEDx etc • Recognizations : Fortune 40-under-40, UC Berkeley, etc • Passionate about algorithms, human mind, meditation, magic &
Key Industry Challenges
Top Industry Challenges • Shadow IT & Incomplete Asset Inventory • Testing partial assets - we miss shadow IT, Preprods etc • Misconfigurations • Testing “some times” vs “continuous attacks” • Security Testing Gen 1 is report based …. Gen 2 should be continuous & alert based ( Think SOC evolution)
Database Exposure • # of open databases (Mysql, Mongo, ES, Redis): 500K • # Sample Size of Data Exposed: ~ 20 TB
Code Leaks • Sample Enterprise Code Leaks: 12K + • 15% of cases internal employees leaked credentials, keys and sensitive information such as private keys, AD passwords, mail server passwords, even Pay slips. • CI/CD tools such as Jenkins, GoCD etc. leads to exposed code and remote code execution. 6
Exposed & Open DevOps Tools
Open Cloud Resources • +10K public Elastic Block Store (EBS) snapshots from 3,213 accounts. • +400 public Relational Database Service (RDS) snapshots from 200+ accounts. • +700K public Amazon Machine Images (AMIs) from +20K accounts. • +16K public IPs of exposed AWS managed ElasticSearch clusters that could have their contents stolen or data possibly deleted - this means 17% of AWS-managed ElasticSearch servers with public IPs were misconfigured. • More than 500 Million AWS Buckets Indexed hosting Terabytes of Data.
Exposed Network Services • 80% of large organisations has • Multiple exposed UAT servers • Vulnerable WordPress/Zoomla • Telnet/FTP • Open vulnerable routers • 30% of organizations had • Open LDAP • Open RDP • Open SMB/RPC
Leaked Passwords • Number of Leaked passwords reached 6.7 Billion by end of Jan 2019 • 40%+ of Organizations could be breached just using leaked passwords • Found 5+ common password patterns for every major organisation.
Offensive Security Landscape
Red Team Landscape Point-in-Time Assessment SimulatedAttacks Red Team Landscape Breach & Attack Simulation Continuous Automated Red Teaming Cyber Ranges Pen Testing Red Team Services Bug Bounty Programs Point-in-Time Assessment Continuous Testing SimulatedAttacks RealWorldAttacks Credits: Gartner
Blue Team Landscape InternalAssets Blue Team Landscape SimulatedAttacks Asset Management Attack Surface Management VA - Vulnerability Assessment Vulnerability App Assessment Scanners DRP - Digital Footprinting Security Rating Services More Depth More Breadth InternalAssets ExternalAssets Credits: Gartner
Depth vs Breadth Breadth Depth VA Pen Test Digital Footprinting Cyber Ranges BAS CART/ ASM Credits: Gartner
Key Trends In Offensive Security Landscape
Attack Surface Management ( ASM ) • Specialized internet wide monitoring to discover • Exposed Attack Surface • Orphaned DB, Pre-prod systems • Shadow IT • Key Use Cases • Asset Inventory • Vulnerability Management • Shadow IT Discovery
Continuous Automated Red Teaming • Moving from Point in time Red Teaming to continuous discovery of attack surface and continuous attacks • Attackers are attacking all the assets all of the time vs Organizations testing some assets some of the time • Use Cases • Vulnerability and Risk Management • Security control validation • Ransomware attack surface discovery • Nation state actor and other adversary simulation
Purple Teaming Adoption • Red and Blue Teams collaboratively improving security posture • Use Cases • Security control gap detection • Security control improvement
Hybrid = Man + Machine Effective combination of Automation / AI and manual augmentation
About FireCompass
FireCompass - Continuous Automated Red Teaming (CART) & Attack Surface Management (ASM) Index - Fast Internet based recon on 3 Billion+ IPs using headless browser - Deep, Dark and Surface web OSINT data collection - Intel collection from 3rd party sources like Shodan, Threat Intel, Honeypot feeds etc.. -Indexing using proprietary FireCompass Big Data Platform Discover Attack Prioritize - Use AI and ML algorithms to Attribute all your digital assets and near real time view of your Digital Attack Surface - Misconfigured DB servers/ S3 cloud buckets - Code leaks, leaked credentials - Vulnerabilities - Internet infrastructure, Web apps, Mobile apps - Exposed pre-prod systems - Exposed services like APIs, FTP Servers, Open Ports - Conduct Port Scanning & Network VA - Conduct DAST and OWASP Top 10 attacks on web based applications - Conduct DAST, SAST and IAST attacks on Mobile applications - Active Social Engineering attacks - Multi-Stage attacks to find out possible Attack paths --Continuous Monitoring & Alerts to detect changes in your Attack surface and new risks - Identify, Analyze and prioritize digital risks
Thank You
The Future of Offensive Attack Simulation Bikash Barai
The Future of Offensive Attack Simulation Bikash Barai

More Related Content

PPTX
CyberOps.pptx
AhmedRobaid1
 
PDF
Stopping zero day threats
Zscaler
 
PDF
Types of Threat Actors and Attack Vectors
LearningwithRayYT
 
PPTX
Adversary Emulation using CALDERA
Erik Van Buggenhout
 
PDF
Cissp combined notes
Joshua Fonseca
 
PDF
Threat Hunting with Splunk Hands-on
Splunk
 
PPTX
Threat hunting in cyber world
Akash Sarode
 
PDF
Cybersecurity Roadmap for Beginners
Sanjeev Kumar Jaiswal
 
CyberOps.pptx
AhmedRobaid1
 
Stopping zero day threats
Zscaler
 
Types of Threat Actors and Attack Vectors
LearningwithRayYT
 
Adversary Emulation using CALDERA
Erik Van Buggenhout
 
Cissp combined notes
Joshua Fonseca
 
Threat Hunting with Splunk Hands-on
Splunk
 
Threat hunting in cyber world
Akash Sarode
 
Cybersecurity Roadmap for Beginners
Sanjeev Kumar Jaiswal
 

What's hot (20)

PPTX
CISA Training - Chapter 4 - 2016
Hafiz Sheikh Adnan Ahmed
 
PDF
Nist 800 82
majolic
 
PDF
FIRST CTI Symposium: Turning intelligence into action with MITRE ATT&CK™
Katie Nickels
 
PPTX
Check point Infinity Overview
Moti Sagey מוטי שגיא
 
PDF
Introduction to QRadar
PencilData
 
PDF
IT Risk Management
Tudor Damian
 
PDF
Email security presentation
SubhradeepMaji
 
PPTX
Phishing Awareness Training.pptx
Hajar Bouchriha
 
PPTX
SOC training
Kirill Ermakov
 
PDF
Introduction to red team operations
Sunny Neo
 
PDF
Using MITRE PRE-ATTACK and ATTACK in Cybercrime Education and Research
MITRE - ATT&CKcon
 
PPTX
Cyber Threat Hunting Workshop
Digit Oktavianto
 
PDF
Threat Hunting
Splunk
 
PDF
Top Cybersecurity Threats and How SIEM Protects Against Them
SBWebinars
 
PDF
Purple Team Exercises - GRIMMCon
Jorge Orchilles
 
PPTX
SIEM presentation final
Rizwan S
 
PDF
Cyber Security Awareness
Ramiro Cid
 
PDF
SentinelOne Buyers Guide
Exclusive Networks ME
 
PPT
Information Security Policies and Standards
Directorate of Information Security | Ditjen Aptika
 
PDF
Cybersecurity for Critical National Infrastructure
Dr David Probert
 
CISA Training - Chapter 4 - 2016
Hafiz Sheikh Adnan Ahmed
 
Nist 800 82
majolic
 
FIRST CTI Symposium: Turning intelligence into action with MITRE ATT&CK™
Katie Nickels
 
Check point Infinity Overview
Moti Sagey מוטי שגיא
 
Introduction to QRadar
PencilData
 
IT Risk Management
Tudor Damian
 
Email security presentation
SubhradeepMaji
 
Phishing Awareness Training.pptx
Hajar Bouchriha
 
SOC training
Kirill Ermakov
 
Introduction to red team operations
Sunny Neo
 
Using MITRE PRE-ATTACK and ATTACK in Cybercrime Education and Research
MITRE - ATT&CKcon
 
Cyber Threat Hunting Workshop
Digit Oktavianto
 
Threat Hunting
Splunk
 
Top Cybersecurity Threats and How SIEM Protects Against Them
SBWebinars
 
Purple Team Exercises - GRIMMCon
Jorge Orchilles
 
SIEM presentation final
Rizwan S
 
Cyber Security Awareness
Ramiro Cid
 
SentinelOne Buyers Guide
Exclusive Networks ME
 
Information Security Policies and Standards
Directorate of Information Security | Ditjen Aptika
 
Cybersecurity for Critical National Infrastructure
Dr David Probert
 
Ad

Similar to Continuous Automated Red Teaming (CART) - Bikash Barai (20)

PDF
Deepfence.pdf
Vishwas N
 
PPTX
Delivering User Behavior Analytics at Apache Hadoop Scale : A new perspective...
Cloudera, Inc.
 
PPTX
Iurii Garasym. The future crimes and predestination of cyber security. Though...
IT Arena
 
PDF
Keynote : AI & Future Of Offensive Security
Priyanka Aash
 
PDF
Finding the needle in the haystack: how Nestle is leveraging big data to defe...
Big Data Spain
 
PDF
Cisco Connect 2018 Malaysia - Risk less, achieve more with proactive security
NetworkCollaborators
 
PPTX
OSINT for Proactive Defense - RootConf 2019
RedHunt Labs
 
PDF
DETECTE E INVESTIGUE LAS AMENAZAS AVANZADAS
Cristian Garcia G.
 
PPTX
Big Bang Theory: The Evolution of Pentesting High Security Environments
Joe McCray
 
PPTX
Defending Enterprise IT - beating assymetricality
Claus Cramon Houmann
 
PPTX
Agile Network India | DevSecOps - The What and the Why | Ritesh Shregill
AgileNetwork
 
PPTX
Indianapolis Splunk User Group Dec 22
WesComer2
 
PDF
[cb22] Keynote: Underwhelmed: Making Sense of the Overwhelming Challenge of C...
CODE BLUE
 
PPTX
Cyber Attack Survival: Are You Ready?
Radware
 
PDF
Reducing Your Attack Surface
Alert Logic
 
PPTX
TakeDownCon Rocket City: Research Advancements Towards Protecting Critical As...
EC-Council
 
PDF
BSides Lisbon - Data science, machine learning and cybersecurity
Tiago Henriques
 
PPTX
Presentation infra and_datacentrre_dialogue_v2
Claus Cramon Houmann
 
PPT
From The Hidden Internet: Lesson From 12 Months Of Monitoring
Priyanka Aash
 
PPTX
IT Security and Wire Fraud Awareness Slide Deck
Don Gulling
 
Deepfence.pdf
Vishwas N
 
Delivering User Behavior Analytics at Apache Hadoop Scale : A new perspective...
Cloudera, Inc.
 
Iurii Garasym. The future crimes and predestination of cyber security. Though...
IT Arena
 
Keynote : AI & Future Of Offensive Security
Priyanka Aash
 
Finding the needle in the haystack: how Nestle is leveraging big data to defe...
Big Data Spain
 
Cisco Connect 2018 Malaysia - Risk less, achieve more with proactive security
NetworkCollaborators
 
OSINT for Proactive Defense - RootConf 2019
RedHunt Labs
 
DETECTE E INVESTIGUE LAS AMENAZAS AVANZADAS
Cristian Garcia G.
 
Big Bang Theory: The Evolution of Pentesting High Security Environments
Joe McCray
 
Defending Enterprise IT - beating assymetricality
Claus Cramon Houmann
 
Agile Network India | DevSecOps - The What and the Why | Ritesh Shregill
AgileNetwork
 
Indianapolis Splunk User Group Dec 22
WesComer2
 
[cb22] Keynote: Underwhelmed: Making Sense of the Overwhelming Challenge of C...
CODE BLUE
 
Cyber Attack Survival: Are You Ready?
Radware
 
Reducing Your Attack Surface
Alert Logic
 
TakeDownCon Rocket City: Research Advancements Towards Protecting Critical As...
EC-Council
 
BSides Lisbon - Data science, machine learning and cybersecurity
Tiago Henriques
 
Presentation infra and_datacentrre_dialogue_v2
Claus Cramon Houmann
 
From The Hidden Internet: Lesson From 12 Months Of Monitoring
Priyanka Aash
 
IT Security and Wire Fraud Awareness Slide Deck
Don Gulling
 
Ad

Recently uploaded (20)

PPTX
TechTalks-8-2019-Service-Management-ITIL-Refresh-ITIL-4-Framework-Supports-Ou...
bonakiduza1024
 
PPTX
OMC Textile Division Presentation 2021.pptx
JahangirAlam816069
 
PDF
Transform Your ITIL® 4 & ITSM Strategy with AI in 2025.pdf
PDCA Consulting
 
PDF
Hindi spoken digit analysis for native and non-native speakers
IAESIJAI
 
PDF
Heart disease approach using modified random forest and particle swarm optimi...
IAESIJAI
 
PDF
1 - Historical Antecedents, Social Consideration.pdf
tuazon2030627
 
PDF
project resource management chapter-09.pdf
ssuser00e6e21
 
PDF
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
PDF
ENT215_Completing-a-large-scale-migration-and-modernization-with-AWS.pdf
ssuser28425f
 
PPTX
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
PDF
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
PDF
Microsoft Solutions Partner Drive Digital Transformation with D365.pdf
Microsoft Dynamics
 
PDF
Video forgery: An extensive analysis of inter-and intra-frame manipulation al...
IAESIJAI
 
PPTX
TLE Review Electricity (Electricity).pptx
JayPolicarpio2
 
PDF
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 
PDF
Assigned Numbers - 2025 - Bluetooth® Document
Bloombase
 
PDF
Mushroom cultivation and it's methods.pdf
mailmeonrishi
 
PPTX
cloud_computing_Infrastucture_as_cloud_p
mainakbhattacharya20
 
PDF
gpt5_lecture_notes_comprehensive_20250812015547.pdf
Chinchu40
 
PDF
Zenith AI: Advanced Artificial Intelligence
Biz Preneurs
 
TechTalks-8-2019-Service-Management-ITIL-Refresh-ITIL-4-Framework-Supports-Ou...
bonakiduza1024
 
OMC Textile Division Presentation 2021.pptx
JahangirAlam816069
 
Transform Your ITIL® 4 & ITSM Strategy with AI in 2025.pdf
PDCA Consulting
 
Hindi spoken digit analysis for native and non-native speakers
IAESIJAI
 
Heart disease approach using modified random forest and particle swarm optimi...
IAESIJAI
 
1 - Historical Antecedents, Social Consideration.pdf
tuazon2030627
 
project resource management chapter-09.pdf
ssuser00e6e21
 
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
ENT215_Completing-a-large-scale-migration-and-modernization-with-AWS.pdf
ssuser28425f
 
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
Microsoft Solutions Partner Drive Digital Transformation with D365.pdf
Microsoft Dynamics
 
Video forgery: An extensive analysis of inter-and intra-frame manipulation al...
IAESIJAI
 
TLE Review Electricity (Electricity).pptx
JayPolicarpio2
 
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 
Assigned Numbers - 2025 - Bluetooth® Document
Bloombase
 
Mushroom cultivation and it's methods.pdf
mailmeonrishi
 
cloud_computing_Infrastucture_as_cloud_p
mainakbhattacharya20
 
gpt5_lecture_notes_comprehensive_20250812015547.pdf
Chinchu40
 
Zenith AI: Advanced Artificial Intelligence
Biz Preneurs
 

Continuous Automated Red Teaming (CART) - Bikash Barai

  • 1. The Future of Offensive Attack Simulation Bikash Barai
  • 2. About Me • Founded multiple cyber security product companies • Currently Co-founder of FireCompass • Internet-wide monitoring and attack platform • Cyber Security Advisory Board for multiple companies • Multiple patents in cyber security • Spoke at RSA USA, RSA Singapore, Interop, TEDx etc • Recognizations : Fortune 40-under-40, UC Berkeley, etc • Passionate about algorithms, human mind, meditation, magic &
  • 4. Top Industry Challenges • Shadow IT & Incomplete Asset Inventory • Testing partial assets - we miss shadow IT, Preprods etc • Misconfigurations • Testing “some times” vs “continuous attacks” • Security Testing Gen 1 is report based …. Gen 2 should be continuous & alert based ( Think SOC evolution)
  • 5. Database Exposure • # of open databases (Mysql, Mongo, ES, Redis): 500K • # Sample Size of Data Exposed: ~ 20 TB
  • 6. Code Leaks • Sample Enterprise Code Leaks: 12K + • 15% of cases internal employees leaked credentials, keys and sensitive information such as private keys, AD passwords, mail server passwords, even Pay slips. • CI/CD tools such as Jenkins, GoCD etc. leads to exposed code and remote code execution. 6
  • 7. Exposed & Open DevOps Tools
  • 8. Open Cloud Resources • +10K public Elastic Block Store (EBS) snapshots from 3,213 accounts. • +400 public Relational Database Service (RDS) snapshots from 200+ accounts. • +700K public Amazon Machine Images (AMIs) from +20K accounts. • +16K public IPs of exposed AWS managed ElasticSearch clusters that could have their contents stolen or data possibly deleted - this means 17% of AWS-managed ElasticSearch servers with public IPs were misconfigured. • More than 500 Million AWS Buckets Indexed hosting Terabytes of Data.
  • 9. Exposed Network Services • 80% of large organisations has • Multiple exposed UAT servers • Vulnerable WordPress/Zoomla • Telnet/FTP • Open vulnerable routers • 30% of organizations had • Open LDAP • Open RDP • Open SMB/RPC
  • 10. Leaked Passwords • Number of Leaked passwords reached 6.7 Billion by end of Jan 2019 • 40%+ of Organizations could be breached just using leaked passwords • Found 5+ common password patterns for every major organisation.
  • 12. Red Team Landscape Point-in-Time Assessment SimulatedAttacks Red Team Landscape Breach & Attack Simulation Continuous Automated Red Teaming Cyber Ranges Pen Testing Red Team Services Bug Bounty Programs Point-in-Time Assessment Continuous Testing SimulatedAttacks RealWorldAttacks Credits: Gartner
  • 13. Blue Team Landscape InternalAssets Blue Team Landscape SimulatedAttacks Asset Management Attack Surface Management VA - Vulnerability Assessment Vulnerability App Assessment Scanners DRP - Digital Footprinting Security Rating Services More Depth More Breadth InternalAssets ExternalAssets Credits: Gartner
  • 14. Depth vs Breadth Breadth Depth VA Pen Test Digital Footprinting Cyber Ranges BAS CART/ ASM Credits: Gartner
  • 15. Key Trends In Offensive Security Landscape
  • 16. Attack Surface Management ( ASM ) • Specialized internet wide monitoring to discover • Exposed Attack Surface • Orphaned DB, Pre-prod systems • Shadow IT • Key Use Cases • Asset Inventory • Vulnerability Management • Shadow IT Discovery
  • 17. Continuous Automated Red Teaming • Moving from Point in time Red Teaming to continuous discovery of attack surface and continuous attacks • Attackers are attacking all the assets all of the time vs Organizations testing some assets some of the time • Use Cases • Vulnerability and Risk Management • Security control validation • Ransomware attack surface discovery • Nation state actor and other adversary simulation
  • 18. Purple Teaming Adoption • Red and Blue Teams collaboratively improving security posture • Use Cases • Security control gap detection • Security control improvement
  • 19. Hybrid = Man + Machine Effective combination of Automation / AI and manual augmentation
  • 21. FireCompass - Continuous Automated Red Teaming (CART) & Attack Surface Management (ASM) Index - Fast Internet based recon on 3 Billion+ IPs using headless browser - Deep, Dark and Surface web OSINT data collection - Intel collection from 3rd party sources like Shodan, Threat Intel, Honeypot feeds etc.. -Indexing using proprietary FireCompass Big Data Platform Discover Attack Prioritize - Use AI and ML algorithms to Attribute all your digital assets and near real time view of your Digital Attack Surface - Misconfigured DB servers/ S3 cloud buckets - Code leaks, leaked credentials - Vulnerabilities - Internet infrastructure, Web apps, Mobile apps - Exposed pre-prod systems - Exposed services like APIs, FTP Servers, Open Ports - Conduct Port Scanning & Network VA - Conduct DAST and OWASP Top 10 attacks on web based applications - Conduct DAST, SAST and IAST attacks on Mobile applications - Active Social Engineering attacks - Multi-Stage attacks to find out possible Attack paths --Continuous Monitoring & Alerts to detect changes in your Attack surface and new risks - Identify, Analyze and prioritize digital risks
  • 23. The Future of Offensive Attack Simulation Bikash Barai
  • 24. The Future of Offensive Attack Simulation Bikash Barai