Difference between revisions of "Threat-Led Penetration Testing"
From Open Risk Manual
Wiki admin (talk | contribs) (Created page with "== Definition == '''Threat-Led Penetration Testing'''. (TLPT) [also known as Red Team Testing] A controlled attempt to compromise the cyber resilience of an entity by simulat...") |
Wiki admin (talk | contribs) |
||
Line 1: | Line 1: | ||
== Definition == | == Definition == | ||
− | '''Threat-Led Penetration Testing''' | + | '''Threat-Led Penetration Testing''' (TLPT), also known as Red Team Testing is a controlled attempt to compromise the cyber resilience of an entity by simulating the tactics, techniques and procedures of real-life threat actors. |
+ | |||
+ | TLPT is based on targeted [[Threat Intelligence]] and focuses on an entity’s people, processes and technology, with minimal foreknowledge and impact on operations. | ||
Line 8: | Line 10: | ||
[[Category:Cyber Risk]] | [[Category:Cyber Risk]] | ||
+ | [[Category:Threat Model]] |
Latest revision as of 10:30, 14 October 2021
Definition
Threat-Led Penetration Testing (TLPT), also known as Red Team Testing is a controlled attempt to compromise the cyber resilience of an entity by simulating the tactics, techniques and procedures of real-life threat actors.
TLPT is based on targeted Threat Intelligence and focuses on an entity’s people, processes and technology, with minimal foreknowledge and impact on operations.
Reference
- G-7 Fundamental Elements