
We have PTES (Penetration Testing Execution Standard) and OWASP, but where is the testing framework for Physical Penetration Testers? In this episode, Jeremiah briefly steps through the REDTEAMOPSEC Methodology -- the first framework of its kind for comprehensive, repeatable and consistent physical red team testing.
Based on his book, Physical Red Team Operations (https://amzn.to/2ZxOSkH) and taught in his Physical Red Team training ( https://attendee.gototraining.com/r/5764567247699878658 (https://attendee.gototraining.com/r/5764567247699878658) )
Jun 3, 2020
44 min

With the help of some talented friends, I recreate one of my favorite War Stories from the field. The underlying theme to this recreation is, expect the unexpected.
Thank you to Derek Sandbeck, Anje Mehr and my mother-in-law for lending their talents. An especially big shoutout to Derek for producing this episode along with the sound design, music composition, and arrangement.
This episode is supported by RedTeam Security Training - https://www.redteamsecuritytraining.com
Enjoy!
May 27, 2020
18 min

In this episode, Jeremiah covers one of his most asked questions, how to pivot into the Physical Red Team field. He breaks down a high-level approach to educate yourself on the topics separated into two categories, those with a technical background and those without.
Technical Background
Penetration Testing
BOOK: The Basics of Hacking And Penetration Testing
BOOK: Penetration Testing by Georgia Wiedman
BOOK: Kali Linux Revealed
TRAINING: Penetration Testing Fundamentals (Udemy)
TRAINING: Pen Testing with Kali (Offensive Security)
ADDITIONAL: Youtube for additional resources
Social Engineering
BOOK: The Art of Deception by Kevin Mitnick
BOOK: The Social Engineer’s Playbook by me (https://amzn.to/2H4iFXX)
BOOK: Social Engineering book by Chris Hadnagy
TRAINING: Social Engineering Expert by me (https://redteamsecuritytraining.com/social-engineering-expert/?__hstc=4686124.c0c309aa847b6f7827100a285db7c39a.1520009944552.1522690930965.1522694010954.78&__hssc=4686124.3.1522694010954&__hsfp=3183743550)
YOUTUBE: Social engineering content and tool usage (ie: Social Engineer’s Toolkit)
Physical Security
BOOK: Physical Red Team Operations book by me on Amazon (https://amzn.to/2ZxOSkH)
BOOK: Unauthorized Access by Will Allsopp
TRAINING: Physical Red Team Operations by me (https://redteam-training.thinkific.com/bundles/physical-red-team-operations-master-bundle?__hstc=4686124.cd42b548a67d0f19b61e217b6e8f8282.1587755612288.1589901274568.1589999615509.14&__hssc=4686124.1.1589999615509&__hsfp=3116077354)
TRAINING: Black Hat Trainings (Caution: often only focuses on lock picking)
TRAINING: Military or LE training, if possible (Caution: sometimes far too military leaning)
Non-technical Background
Information Technology Fundamentals
BOOK: CompTIA IT Fundamentals
BOOK: CompTIA A+ Study Guide
TRAINING: CompTIA IT Fundamentals Cert (ITF+)
TRAINING: CompTIA Security+ Cert Training
ADDITIONALLY: Search for fundamental courses on Udemy
LONG ROUTE: 2-year college program in IT Networking field
Information Security Fundamentals
BOOK: The Basics of Information Security by Jason Andress
BOOK: CompTIA Security+ Study Guide
TRAINING: CompTIA Security+ Cert Training
ADDITIONALLY: Search for fundamental courses on Udemy
LONG ROUTE: 2-year college program in IT Security field
Social Engineering
BOOK: The Art of Deception by Kevin Mitnick
BOOK: The Social Engineer’s Playbook by me (https://amzn.to/2H4iFXX)
BOOK: Social Engineering book by Chris Hadnagy
TRAINING: Social Engineering Expert by me (https://redteamsecuritytraining.com/social-engineering-expert/?__hstc=4686124.c0c309aa847b6f7827100a285db7c39a.1520009944552.1522690930965.1522694010954.78&__hssc=4686124.3.1522694010954&__hsfp=3183743550)
YOUTUBE: Social Engineering Tools (Social Engineers Toolkit, etc.)
OPTIONALLY: Search for HOW-TO courses on social engineering tools
Penetration Testing
BOOK: The Basics of Hacking And Penetration Testing
BOOK: Penetration Testing by Georgia Wiedman
BOOK: Kali Linux Revealed
TRAINING: Penetration Testing Fundamentals (Udemy)
TRAINING: Pen Testing with Kali (Offensive Security)
ADDITIONAL: Youtube for additional resources
Physical Security
BOOK: Physical Red Team Operations book by me on Amazon (https://amzn.to/2ZxOSkH)
BOOK: Unauthorized Access by Will Allsopp
TRAINING: Physical Red Team Operations by me (https://redteam-training.thinkific.com/bundles/physical-red-team-operations-master-bundle?__hstc=4686124.cd42b548a67d0f19b61e217b6e8f8282.1587755612288.1589901274568.1589999615509.14&__hssc=4686124.1.1589999615509&__hsfp=3116077354)
TRAINING: Black Hat Trainings (Caution: often too focused on lock picking)
TRAINING: Military or LE training, if possible (Caution: sometimes far too military...
May 21, 2020
24 min

Welcome to the very first episode of the REDTEAMOPSEC Podcast!
You know about Penetration Testing and you've heard about Red Teaming. But what is Physical Red Teaming?
In this episode, Jeremiah Talamantes, discusses briefly what the difference is between physical red teaming and traditional cyber red teaming. He also goes on to explain some of the benefits of stepping back and looking at an organization's security posture through a wider lens that includes, people, facilities and its digital infrastructure.
RedTeam Security Training
https://www.redteamsecuritytraining.com (https://www.redteamsecuritytraining.com)
May 14, 2020
17 min
