red team

term

securityhacking

A group that plays the adversary to test an organization's defences realistically.

A red team goes beyond a pentest: it emulates a real threat actor's goals and patience, testing people and processes as well as technology, often without the defenders knowing. It exists to answer "could a determined attacker get in", not just "is this box patched".

Also known as: red-team, red teaming

All glossary entries