Applied Purple Teaming is for you if: 

  • You want to improve the efficiencies of your red and blue teams
  • You have interest in threat optics 
  • You want to implement a methodology for improving business processes around your security culture
  • Your business executives require ROI data to warrant further capital expenditure on threat-optic and threat-hunting initiatives 
  • You feel like your HR, Marketing, CISO, and IT Operations need to come together to discuss information security collaboratively 
This course will deep dive into what we call threat optics: auditing endpoints, centralizing logs, and visualizing results. Each student will leave the class having experienced a penetration test through three distinct perspectives each building on the previous. This will be done by performing a series common adversarial attacks (the Red Team) followed by an examination of defensive postures and detection methodology using open-source or free industry threat detection and defenses (the Blue Team). Finally, each of these attack / defend / hunt cycles will wrap up with reporting and communication methodology that drive inter-department collaboration and produce immediate actions for all stakeholders (the Purple Team)!


Still not sure if you’re ready to join? Check out our Atomic Purple Team Framework & Life Cycle webcast we recently recorded with Black Hills Information Security:

Have questions? Shoot us a message!

Prerequisites: Exposure to Active Directory




class attendee