{"id":5137,"date":"2023-06-27T16:25:23","date_gmt":"2023-06-27T19:25:23","guid":{"rendered":"https:\/\/base4sec.com\/sin-categorizar\/purple-teaming-operaciones-y-matices\/"},"modified":"2024-12-12T18:26:29","modified_gmt":"2024-12-12T21:26:29","slug":"purple-teaming-operaciones-y-matices","status":"publish","type":"post","link":"https:\/\/base4sec.com\/en\/technical-en\/purple-teaming-operaciones-y-matices\/2023\/06\/27\/","title":{"rendered":"Purple teaming: Operations and Nuances"},"content":{"rendered":"<p class=\"cuerpo-nota\">In the field of cybersecurity, we recognize the term Purple Team although we are not always clear about its scope or purpose within the cybersecurity objectives. In this post we will make an introduction to the different types of Purple Team exercises, their scope, how these are developed according to the needs of each organization. And how we can differentiate it from other types of protective functions.<\/p>\n<p><span class=\"subtitulo-nota\">Context<\/span><\/p>\n<p>Offensive and defensive cybersecurity operations are known as Red Team and Blue Team. Concepts adopted from the military field (of course) introduced in the 1960s as concepts, although modalities used almost two thousand years ago (320 AD) always with the aim of simulating conflicts based on real war strategy rules to prepare for upcoming real battles.<\/p>\n<p>The Red and Blue team approach was established as a form of interaction in which at least one party pretended to be an enemy. This idea has since been adopted in the cybersecurity domain to enable testing from an adversarial mindset through threat replication and the development of countermeasures based on the results of such testing.<\/p>\n<p><center><img decoding=\"async\" src=\"https:\/\/wwww.base4sec.com\/assets\/images\/blog\/nota_46a.png\" \/><\/center><\/p>\n<p class=\"cuerpo-nota\">\n<p><center>Red Team Methodology (NIST SP 800-115)<\/center><\/p>\n<p class=\"cuerpo-nota\">\n<p class=\"cuerpo-nota\">It is clear that the Red Team and Blue Team approach, which we can now consider traditional, provides good results, but presents some problems in its implementation when a medium or high level of maturity is reached in the operations of each of them.<\/p>\n<p>One observation that emerges from the way each team operates and after analyzing deliverables, is that &#8220;The Red Team always wins&#8221;, since it is practically always possible to detect some vulnerability to exploit, while the Blue Team is always &#8220;behind&#8221; and \u201ctries to keep up&#8221;. This disconnect between the approaches may be due in part to the lack of communication and the configuration of perspectives, but also due to the way operations are designed, they point to different, often contradictory, results, as the success of one looks like the failure of the other.<\/p>\n<p>It is the opposite nature of the teams that generates this competitive perspective, which leads to secrecy between the teams and causes them to operate in isolation from each other. Among the undesirable results we find that the Blue Team progressively begins to build defenses to protect itself from the Red Team and neglects the real threat.<\/p>\n<p><center><img decoding=\"async\" src=\"https:\/\/wwww.base4sec.com\/assets\/images\/blog\/nota_46b.png\" \/><\/center><\/p>\n<p class=\"cuerpo-nota\">\n<p><center>Comparison of Red and Blue Team Methodologies<\/center><\/p>\n<p class=\"cuerpo-nota\">\n<p class=\"cuerpo-nota\">This is where the Purple approach has emerged, which is focused on using collaboration and information sharing to achieve the same objectives. An approach that, while not new, has been maturing and adapting according to the environments in which it is developed.<\/p>\n<p><span class=\"subtitulo-nota\">Not just a matter of colors<\/span><\/p>\n<p>Typically, the concept of Purple that we recognize is nothing more or less than the combination of the Red Team and the Blue Team (as if they were pigments and not operations with high complexity and increasing challenges). It is here that we find limited definitions of the Purple Team such as &#8220;One team for small organizations that cannot hire people for defensive tasks and another for offensive tasks&#8221; or &#8220;A meeting between Red and Blue Team&#8221;.<\/p>\n<p>A Purple Team Exercise takes forward the principles of both Red Team and Blue Team to evaluate and improve the detection systems (and other aspects) of an organization. It focuses on both offensive and defensive tasks, which gives them a different perspective. Typically, penetration testing can be performed with the addition of in-depth knowledge of the assets provided by the defensive teams, allowing security to be evaluated from a different perspective.<\/p>\n<p>This is useful to maximize the\u00a0<b>effectiveness<\/b>\u00a0and\u00a0<b>potential<\/b>\u00a0of the Red and Blue Team separately, but this approach also integrates cyber threat intelligence (CTI), vulnerability analysis and security architecture.<\/p>\n<p><center><img decoding=\"async\" src=\"https:\/\/wwww.base4sec.com\/assets\/images\/blog\/nota_46c.png\" \/><\/center><\/p>\n<p class=\"cuerpo-nota\">\n<p><center>The BAD Pyramid &#8211; (Daniel Miessler 2019)<\/center><\/p>\n<p class=\"cuerpo-nota\">\n<p class=\"cuerpo-nota\">The idea of a team that combines perspectives aims to bridge the gap between offensive and defensive approaches by focusing on a more collaborative methodology. It can also help assess and mitigate unique threats, such as insiders, (which have one of the greatest potential for negative impact on a business).<\/p>\n<p>We can say that in Purple Team operations, the testing is more targeted, as the offensive objective is to evaluate specific security controls while the defensive objective is to test specific preventive measures and skill sets simultaneously.<\/p>\n<p><span class=\"subtitulo-nota\">Scale and nuances<\/span><\/p>\n<p>Considering &#8220;Purple&#8221; as &#8220;The continuous collaboration between cybersecurity teams with varied skills to test, measure and improve resilience to threats and attacks&#8221; we can find a variety of implementations for this type of operations.<\/p>\n<p>We will now develop some methodological details for these operations as described by Scythe in their &#8220;Purple Team Exercise Framework (PTEF)&#8221;.<\/p>\n<p><center><img decoding=\"async\" src=\"https:\/\/wwww.base4sec.com\/assets\/images\/blog\/nota_46d.png\" \/><\/center><\/p>\n<p class=\"cuerpo-nota\">\n<p class=\"cuerpo-nota\"><span class=\"subtitulo-nota\">Purple Team Exercises<\/span><\/p>\n<p>A Purple Team exercise is a cybersecurity assessment with a complete understanding of the environment, attendees collaborate to design a threat, attack, detect and respond. The attack activity is exposed and shown to attendees as it unfolds in real time, the defense team in turn shares how each step is detected and how they respond accordingly. Purple Team exercises are hands-on, participants work together in open discussions on each attack technique and defense expectation to test, measure and improve people, processes and technology in real time.<\/p>\n<p>These exercises are emulations of Tactics, Techniques and Procedures (TTP) driven by cyber threat intelligence that allow for the identification and remediation of gaps in the organization&#8217;s security posture.<\/p>\n<p><center><img decoding=\"async\" src=\"https:\/\/wwww.base4sec.com\/assets\/images\/blog\/nota_46e.png\" \/><\/center><\/p>\n<p class=\"cuerpo-nota\">\n<p><center>Purple Team Exercise Stages (Scythe PTEF)<\/center><\/p>\n<p class=\"cuerpo-nota\">\n<p class=\"cuerpo-nota\"><span class=\"subtitulo-nota\">Operationalized Purple Team<\/span><\/p>\n<p>The operationalized Purple Team is a virtual team, which is activated when new TTPs with impact to the environment are detected. These are analyzed, discussed and emulated to build and continuously improve detection and response.<\/p>\n<p><center><img decoding=\"async\" src=\"https:\/\/wwww.base4sec.com\/assets\/images\/blog\/nota_46f.png\" \/><\/center><\/p>\n<p class=\"cuerpo-nota\">\n<p class=\"cuerpo-nota\"><span class=\"subtitulo-nota\">Dedicated Purple Team<\/span><\/p>\n<p>More mature organizations are beginning to find particular value in these types of operations, forcing them to establish dedicated teams to perform these tasks. These specific roles vary from exercise coordinators to offensive or defensive profiles with collaboration-focused objectives.<\/p>\n<p><span class=\"subtitulo-nota\">Some conclusions<\/span><\/p>\n<p>The development of Purple Teaming operations has its origin based on an operational and tactical disconnection between teams performing the same tasks that we can expect from a Purple Team. Their choice, as well as their effectiveness, will be fully related to the culture and maturity of the different offense and defense operations of the organization.<\/p>\n<p>It is an interesting trigger (and not accidental) that the concept of &#8220;Purple Team&#8221; is a combination of functions typically performed by color-coded teams. Although as mentioned earlier the concept may be limited, this possibility of &#8220;mixing it up&#8221; gives us a kick-start to allow us to develop new skills from the tools we currently have. Finally, to improve cybersecurity.<\/p>\n<p>&nbsp;<\/p>\n<div class=\"col-lg-4 nota-left d-flex justify-content-between flex-column\">\n<div class=\"referencia-nota\">\n<div class=\"referencias-nota-title\">\n<h5>References<\/h5>\n<\/div>\n<div>\n<p>\u2981 NIST SP 800-115, \u201cTechnical Guide to Information<br \/>\nSecurity Testing and Assessment\u201d (2021)<\/p>\n<p>\u2981 Siddharth Chowdhury, \u201cPerceptions of purple teams<br \/>\namong cybersecurity professionals\u201d (2019)<\/p>\n<p>\u2981 Scythe, \u201cPurple Team Exercise Framework (PTEF)\u201c<br \/>\n<a href=\"https:\/\/github.com\/scythe-io\/purple-team-exercise-framework\">https:\/\/github.com\/scythe-io\/..<\/a><\/p>\n<p>\u2981 Namosha Veerasamy, \u201cHigh-level Methodology for<br \/>\nCarrying out Combined Red and Blue Teams\u201d (2009)<\/p>\n<p>\u2981 Justin Warner, \u201cCommon Ground Part 1:<br \/>\nRed Team History &amp; Overview\u201d (2016)<br \/>\n<a href=\"https:\/\/sixdub.medium.com\/common-ground-part-1-red-team-history-overview-82803bbdc975\">https:\/\/sixdub.medium.com\/common-ground-part..<\/a><\/p>\n<\/div>\n<\/div>\n<\/div>\n<div><\/div>\n","protected":false},"excerpt":{"rendered":"<p>In the field of cybersecurity, we recognize the term Purple Team although we are not always clear about its scope or purpose within the cybersecurity objectives. In this post we will make an introduction to the different types of Purple Team exercises, their scope, how these are developed according to the needs of each organization. [&hellip;]<\/p>\n","protected":false},"author":5,"featured_media":5065,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_wpcom_ai_launchpad_first_post":false,"footnotes":"","jetpack_post_was_ever_published":false},"categories":[259],"tags":[],"class_list":["post-5137","post","type-post","status-publish","format-standard","has-post-thumbnail","category-technical-en"],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v27.9 (Yoast SEO v27.9) - https:\/\/yoast.com\/product\/yoast-seo-premium-wordpress\/ -->\n<title>Purple teaming: Operations and Nuances - BASE4 Security<\/title>\n<meta name=\"description\" content=\"BASE4 Security, consultora de ciberseguridad con presencia en Argentina, Chile, Per\u00fa, Colombia, M\u00e9xico y Espa\u00f1a. Servicios de CyberSOC, Red Team, GRC y Zero Trust.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/base4sec.com\/en\/technical-en\/purple-teaming-operaciones-y-matices\/2023\/06\/27\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Purple teaming: Operations and Nuances\" \/>\n<meta property=\"og:description\" content=\"An\u00e1lisis t\u00e9cnico y estrategia de ciberseguridad por el equipo de BASE4 Security. Insights sobre CyberSOC, Red Team, GRC y Zero Trust para LATAM y Espa\u00f1a.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/base4sec.com\/en\/technical-en\/purple-teaming-operaciones-y-matices\/2023\/06\/27\/\" \/>\n<meta property=\"og:site_name\" content=\"BASE4 Security\" \/>\n<meta property=\"article:published_time\" content=\"2023-06-27T19:25:23+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-12-12T21:26:29+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/base4sec.com\/wp-content\/uploads\/2024\/12\/blog_46.png\" \/>\n\t<meta property=\"og:image:width\" content=\"600\" \/>\n\t<meta property=\"og:image:height\" content=\"600\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Base4 Security Research\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Base4 Security Research\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"6 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/base4sec.com\\\/en\\\/technical-en\\\/purple-teaming-operaciones-y-matices\\\/2023\\\/06\\\/27\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/base4sec.com\\\/en\\\/technical-en\\\/purple-teaming-operaciones-y-matices\\\/2023\\\/06\\\/27\\\/\"},\"author\":{\"name\":\"Base4 Security Research\",\"@id\":\"\\\/#\\\/schema\\\/person\\\/5905e7398728c03dbec3772861bd4f99\"},\"headline\":\"Purple teaming: Operations and Nuances\",\"datePublished\":\"2023-06-27T19:25:23+00:00\",\"dateModified\":\"2024-12-12T21:26:29+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/base4sec.com\\\/en\\\/technical-en\\\/purple-teaming-operaciones-y-matices\\\/2023\\\/06\\\/27\\\/\"},\"wordCount\":1150,\"commentCount\":0,\"publisher\":{\"@id\":\"\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/base4sec.com\\\/en\\\/technical-en\\\/purple-teaming-operaciones-y-matices\\\/2023\\\/06\\\/27\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/base4sec.com\\\/wp-content\\\/uploads\\\/2024\\\/12\\\/blog_46.png\",\"articleSection\":[\"Technical\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/base4sec.com\\\/en\\\/technical-en\\\/purple-teaming-operaciones-y-matices\\\/2023\\\/06\\\/27\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/base4sec.com\\\/en\\\/technical-en\\\/purple-teaming-operaciones-y-matices\\\/2023\\\/06\\\/27\\\/\",\"url\":\"https:\\\/\\\/base4sec.com\\\/en\\\/technical-en\\\/purple-teaming-operaciones-y-matices\\\/2023\\\/06\\\/27\\\/\",\"name\":\"Purple teaming: Operations and Nuances - BASE4 Security\",\"isPartOf\":{\"@id\":\"\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/base4sec.com\\\/en\\\/technical-en\\\/purple-teaming-operaciones-y-matices\\\/2023\\\/06\\\/27\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/base4sec.com\\\/en\\\/technical-en\\\/purple-teaming-operaciones-y-matices\\\/2023\\\/06\\\/27\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/base4sec.com\\\/wp-content\\\/uploads\\\/2024\\\/12\\\/blog_46.png\",\"datePublished\":\"2023-06-27T19:25:23+00:00\",\"dateModified\":\"2024-12-12T21:26:29+00:00\",\"description\":\"BASE4 Security, consultora de ciberseguridad con presencia en Argentina, Chile, Per\u00fa, Colombia, M\u00e9xico y Espa\u00f1a. Servicios de CyberSOC, Red Team, GRC y Zero Trust.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/base4sec.com\\\/en\\\/technical-en\\\/purple-teaming-operaciones-y-matices\\\/2023\\\/06\\\/27\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/base4sec.com\\\/en\\\/technical-en\\\/purple-teaming-operaciones-y-matices\\\/2023\\\/06\\\/27\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/base4sec.com\\\/en\\\/technical-en\\\/purple-teaming-operaciones-y-matices\\\/2023\\\/06\\\/27\\\/#primaryimage\",\"url\":\"https:\\\/\\\/base4sec.com\\\/wp-content\\\/uploads\\\/2024\\\/12\\\/blog_46.png\",\"contentUrl\":\"https:\\\/\\\/base4sec.com\\\/wp-content\\\/uploads\\\/2024\\\/12\\\/blog_46.png\",\"width\":600,\"height\":600,\"caption\":\"POR: Diego Staino (Cybersecurity Researcher & Trainer)\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/base4sec.com\\\/en\\\/technical-en\\\/purple-teaming-operaciones-y-matices\\\/2023\\\/06\\\/27\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Inicio\",\"item\":\"https:\\\/\\\/base4sec.com\\\/en\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Purple teaming: Operations and Nuances\"}]},{\"@type\":\"WebSite\",\"@id\":\"\\\/#website\",\"url\":\"\\\/\",\"name\":\"BASE4 Security\",\"description\":\"Your cyber ally\",\"publisher\":{\"@id\":\"\\\/#organization\"},\"alternateName\":\"B4\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"\\\/#organization\",\"name\":\"BASE4 Security\",\"url\":\"\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/base4sec.com\\\/wp-content\\\/uploads\\\/2024\\\/10\\\/Logo_policromo_negativo.png\",\"contentUrl\":\"https:\\\/\\\/base4sec.com\\\/wp-content\\\/uploads\\\/2024\\\/10\\\/Logo_policromo_negativo.png\",\"width\":372,\"height\":227,\"caption\":\"BASE4 Security\"},\"image\":{\"@id\":\"\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.linkedin.com\\\/company\\\/base4-security\"],\"description\":\"BASE4 Security es una consultora de ciberseguridad B2B con prop\u00f3sito, fundada en Argentina y con operaciones en Argentina, Chile, Per\u00fa, Colombia, M\u00e9xico y Espa\u00f1a. Ofrece servicios de CyberSOC, Red Team, GRC, Identity Security, Cloud Security y Application Security para empresas en SOLA y NOLA.\",\"email\":\"info@base4sec.com\",\"telephone\":\"02262653623\",\"legalName\":\"BASE4 Security\",\"foundingDate\":\"2008-01-16\",\"numberOfEmployees\":{\"@type\":\"QuantitativeValue\",\"minValue\":\"51\",\"maxValue\":\"200\"}},{\"@type\":\"Person\",\"@id\":\"\\\/#\\\/schema\\\/person\\\/5905e7398728c03dbec3772861bd4f99\",\"name\":\"Base4 Security Research\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/2fd8bd108b76c23a0df95f08c42f3f8653e30a2562d252777bc2a74096d212e4?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/2fd8bd108b76c23a0df95f08c42f3f8653e30a2562d252777bc2a74096d212e4?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/2fd8bd108b76c23a0df95f08c42f3f8653e30a2562d252777bc2a74096d212e4?s=96&d=mm&r=g\",\"caption\":\"Base4 Security Research\"},\"url\":\"https:\\\/\\\/base4sec.com\\\/en\\\/author\\\/cliteplo\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Purple teaming: Operations and Nuances - BASE4 Security","description":"BASE4 Security, consultora de ciberseguridad con presencia en Argentina, Chile, Per\u00fa, Colombia, M\u00e9xico y Espa\u00f1a. Servicios de CyberSOC, Red Team, GRC y Zero Trust.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/base4sec.com\/en\/technical-en\/purple-teaming-operaciones-y-matices\/2023\/06\/27\/","og_locale":"en_US","og_type":"article","og_title":"Purple teaming: Operations and Nuances","og_description":"An\u00e1lisis t\u00e9cnico y estrategia de ciberseguridad por el equipo de BASE4 Security. Insights sobre CyberSOC, Red Team, GRC y Zero Trust para LATAM y Espa\u00f1a.","og_url":"https:\/\/base4sec.com\/en\/technical-en\/purple-teaming-operaciones-y-matices\/2023\/06\/27\/","og_site_name":"BASE4 Security","article_published_time":"2023-06-27T19:25:23+00:00","article_modified_time":"2024-12-12T21:26:29+00:00","og_image":[{"width":600,"height":600,"url":"https:\/\/base4sec.com\/wp-content\/uploads\/2024\/12\/blog_46.png","type":"image\/png"}],"author":"Base4 Security Research","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Base4 Security Research","Est. reading time":"6 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/base4sec.com\/en\/technical-en\/purple-teaming-operaciones-y-matices\/2023\/06\/27\/#article","isPartOf":{"@id":"https:\/\/base4sec.com\/en\/technical-en\/purple-teaming-operaciones-y-matices\/2023\/06\/27\/"},"author":{"name":"Base4 Security Research","@id":"\/#\/schema\/person\/5905e7398728c03dbec3772861bd4f99"},"headline":"Purple teaming: Operations and Nuances","datePublished":"2023-06-27T19:25:23+00:00","dateModified":"2024-12-12T21:26:29+00:00","mainEntityOfPage":{"@id":"https:\/\/base4sec.com\/en\/technical-en\/purple-teaming-operaciones-y-matices\/2023\/06\/27\/"},"wordCount":1150,"commentCount":0,"publisher":{"@id":"\/#organization"},"image":{"@id":"https:\/\/base4sec.com\/en\/technical-en\/purple-teaming-operaciones-y-matices\/2023\/06\/27\/#primaryimage"},"thumbnailUrl":"https:\/\/base4sec.com\/wp-content\/uploads\/2024\/12\/blog_46.png","articleSection":["Technical"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/base4sec.com\/en\/technical-en\/purple-teaming-operaciones-y-matices\/2023\/06\/27\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/base4sec.com\/en\/technical-en\/purple-teaming-operaciones-y-matices\/2023\/06\/27\/","url":"https:\/\/base4sec.com\/en\/technical-en\/purple-teaming-operaciones-y-matices\/2023\/06\/27\/","name":"Purple teaming: Operations and Nuances - BASE4 Security","isPartOf":{"@id":"\/#website"},"primaryImageOfPage":{"@id":"https:\/\/base4sec.com\/en\/technical-en\/purple-teaming-operaciones-y-matices\/2023\/06\/27\/#primaryimage"},"image":{"@id":"https:\/\/base4sec.com\/en\/technical-en\/purple-teaming-operaciones-y-matices\/2023\/06\/27\/#primaryimage"},"thumbnailUrl":"https:\/\/base4sec.com\/wp-content\/uploads\/2024\/12\/blog_46.png","datePublished":"2023-06-27T19:25:23+00:00","dateModified":"2024-12-12T21:26:29+00:00","description":"BASE4 Security, consultora de ciberseguridad con presencia en Argentina, Chile, Per\u00fa, Colombia, M\u00e9xico y Espa\u00f1a. Servicios de CyberSOC, Red Team, GRC y Zero Trust.","breadcrumb":{"@id":"https:\/\/base4sec.com\/en\/technical-en\/purple-teaming-operaciones-y-matices\/2023\/06\/27\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/base4sec.com\/en\/technical-en\/purple-teaming-operaciones-y-matices\/2023\/06\/27\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/base4sec.com\/en\/technical-en\/purple-teaming-operaciones-y-matices\/2023\/06\/27\/#primaryimage","url":"https:\/\/base4sec.com\/wp-content\/uploads\/2024\/12\/blog_46.png","contentUrl":"https:\/\/base4sec.com\/wp-content\/uploads\/2024\/12\/blog_46.png","width":600,"height":600,"caption":"POR: Diego Staino (Cybersecurity Researcher & Trainer)"},{"@type":"BreadcrumbList","@id":"https:\/\/base4sec.com\/en\/technical-en\/purple-teaming-operaciones-y-matices\/2023\/06\/27\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Inicio","item":"https:\/\/base4sec.com\/en\/"},{"@type":"ListItem","position":2,"name":"Purple teaming: Operations and Nuances"}]},{"@type":"WebSite","@id":"\/#website","url":"\/","name":"BASE4 Security","description":"Your cyber ally","publisher":{"@id":"\/#organization"},"alternateName":"B4","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"\/#organization","name":"BASE4 Security","url":"\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"\/#\/schema\/logo\/image\/","url":"https:\/\/base4sec.com\/wp-content\/uploads\/2024\/10\/Logo_policromo_negativo.png","contentUrl":"https:\/\/base4sec.com\/wp-content\/uploads\/2024\/10\/Logo_policromo_negativo.png","width":372,"height":227,"caption":"BASE4 Security"},"image":{"@id":"\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.linkedin.com\/company\/base4-security"],"description":"BASE4 Security es una consultora de ciberseguridad B2B con prop\u00f3sito, fundada en Argentina y con operaciones en Argentina, Chile, Per\u00fa, Colombia, M\u00e9xico y Espa\u00f1a. Ofrece servicios de CyberSOC, Red Team, GRC, Identity Security, Cloud Security y Application Security para empresas en SOLA y NOLA.","email":"info@base4sec.com","telephone":"02262653623","legalName":"BASE4 Security","foundingDate":"2008-01-16","numberOfEmployees":{"@type":"QuantitativeValue","minValue":"51","maxValue":"200"}},{"@type":"Person","@id":"\/#\/schema\/person\/5905e7398728c03dbec3772861bd4f99","name":"Base4 Security Research","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/2fd8bd108b76c23a0df95f08c42f3f8653e30a2562d252777bc2a74096d212e4?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/2fd8bd108b76c23a0df95f08c42f3f8653e30a2562d252777bc2a74096d212e4?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/2fd8bd108b76c23a0df95f08c42f3f8653e30a2562d252777bc2a74096d212e4?s=96&d=mm&r=g","caption":"Base4 Security Research"},"url":"https:\/\/base4sec.com\/en\/author\/cliteplo\/"}]}},"jetpack_featured_media_url":"https:\/\/base4sec.com\/wp-content\/uploads\/2024\/12\/blog_46.png","_links":{"self":[{"href":"https:\/\/base4sec.com\/en\/wp-json\/wp\/v2\/posts\/5137","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/base4sec.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/base4sec.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/base4sec.com\/en\/wp-json\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/base4sec.com\/en\/wp-json\/wp\/v2\/comments?post=5137"}],"version-history":[{"count":1,"href":"https:\/\/base4sec.com\/en\/wp-json\/wp\/v2\/posts\/5137\/revisions"}],"predecessor-version":[{"id":5274,"href":"https:\/\/base4sec.com\/en\/wp-json\/wp\/v2\/posts\/5137\/revisions\/5274"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/base4sec.com\/en\/wp-json\/wp\/v2\/media\/5065"}],"wp:attachment":[{"href":"https:\/\/base4sec.com\/en\/wp-json\/wp\/v2\/media?parent=5137"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/base4sec.com\/en\/wp-json\/wp\/v2\/categories?post=5137"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/base4sec.com\/en\/wp-json\/wp\/v2\/tags?post=5137"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}