ABSTRACT

Client/ Server Model for Automated Red Teaming   [open pdf - 1MB]

From the thesis Abstract: "Red Team testing is a proven method to improve cybersecurity on organizational networks. However, due to the low availability of required expertise in this field, red teaming is prohibitively expensive to conduct on a large scale. In response, the Office of the Secretary of Defense has sponsored research to build a Red Team in a Box (RTIB) tool to perform many of the basic red team functions without requiring the user to have in-depth knowledge of red teaming tools and techniques. This research has resulted in the prototype implementation of CARTT, the Cyber Automated Red Team Tool. This thesis extended CARTT from its current stand-alone host-based implementation to include the ability to identify potential targets on a range network, communicate results to a command node, and respond to orders to attack from the command node. Redesigning the CARTT as a client/server system allows system administrators to access the tool remotely, affording increased cybersecurity throughout the Navy's networks while reducing the cost of red teaming. Additionally, the client/server model mitigates the risk of having Metasploit and OpenVAS installed on machines throughout these target networks. A messaging system was implemented that facilitates a command and control channel between users."

Author:
Publisher:
Date:
2020-12
Copyright:
Public Domain
Retrieved From:
Naval Postgraduate School, Dudley Knox Library: https://calhoun.nps.edu/
Format:
pdf
Media Type:
application/pdf
URL:
Help with citations