A few concepts have evolved over the years related to pen testing. Teaming is the concept in which three teams are made to check the security of a system in detail:
- One team is the attacking team, who sits outside the infrastructure. They are known as the red team.
- The second team is the defending team, who tries to expose the attacking team. They are known as the blue team.
- The third team is the purple team, who basically maximize the communication between the team and summarize the findings and strategies of the team in a single narrative before trying to improve the security of the system.
Let's take a look at these concepts in detail.
Red team
Pen testing is the art of testing any given network with legal permission and staying within certain boundaries. Pen testing may be done while knowing the complete infrastructure of the internal network and the people and processes involved in that network.
Red teams are the entities that are related to internal...