loading
Loading content
loading
Also known as red team
A red team plays the adversary. Instead of cataloging every flaw, the team picks an objective like reaching a payroll database or domain admin, then works toward it the way a real attacker would, using phishing, exploitation, stolen credentials, and physical access where scope allows. The goal is to measure detection and response, not only to find bugs.
This separates red teaming from a standard penetration testing engagement, which aims for breadth of findings. A red team accepts a narrow, deep path and tries to stay quiet, so the exercise tests whether the blue team notices the intrusion, how fast they react, and where the kill chain breaks down. Engagements often run for weeks and assume a determined attacker with patience.
The operation chains familiar phases. After an initial foothold the team performs privilege escalation to gain higher access, then lateral movement to reach systems that hold the objective, leaving as small a footprint as possible.
In a Trickest workflow you automate the reconnaissance that feeds a red team, mapping external assets, exposed services, and leaked credentials on a schedule so operators spend their hours on the access path rather than rebuilding the target picture each engagement.
Related terms