Live Red Teaming Assignment: Real-World Engagement
Documented methodology and findings from a production red-team engagement — attack chain from initial access through lateral movement to domain dominance.
Everything in one place — the cybersecurity strategy playbook, the risk-quantification model, 54 open-source security scanners with full source, and published research and writing from 25 years in the field.
The foundational material behind PhalanxCyber — free, open, and built for practitioners.
A risk-based, framework-aligned strategy — six pillars, three transformation mandates, and the full framework landscape (NIST CSF 2.0, MITRE ATT&CK, OWASP, ISO 27001, IEC 62443 and more).
Aggregate findings into a unified risk score. FAIR-based Monte Carlo analysis, loss-exceedance curves, CTEM phases, and executive-ready reporting — an interactive Risk Operations Center.
Open-source security scanners across application, cloud, SaaS, ERP, network, OT/ICS, red-teaming, detection, and governance — each with its own detailed page, architecture, and usage.
Every scanner is fully open-source: read the code, review the detection logic, run it in your own environment, and open issues or pull requests. MIT-licensed and free to use.
The practitioner behind the platform — 25+ years across security engineering, threat intelligence, red teaming, and enterprise strategy, and the sole architect of all 54 repositories.
Follow along for new tools, technical research, and strategic analysis — with 21K+ practitioners in the PhalanxCyber community.
Published technical research and strategic analysis — red teaming, threat intelligence, AI in security, and enterprise defense.
A framework for prioritizing remediation in operational-technology environments where patching is constrained by uptime and safety.
Documented methodology and findings from a production red-team engagement — attack chain from initial access through lateral movement to domain dominance.
Deep-dive into a ransomware operation: C2 infrastructure, initial-access vectors, and defensive detection strategies for SOC teams.
How agentic AI systems can augment penetration testing — automating reconnaissance, vulnerability discovery, and exploit-chain construction.
A methodology for attacking Kubernetes — RBAC exploitation, container escapes, service-account abuse, and secrets exfiltration.
AD Certificate Services exploitation — how misconfigured certificate templates enable privilege escalation to domain administrator.
Whether it's a tool, a strategy discussion, or a research idea — start the conversation.