Two More Days to Get a $400 Amazon Gift Card with qualifying OnDemand course purchase! Don't Miss Out!


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

Purple Teaming: The Pen-Test Grows Up

  • Thursday, August 22, 2019 at 3:30 PM EDT (2019-08-22 19:30:00 UTC)
  • Bryce Galbraith

You can now attend the webcast using your mobile device!



With 20+ years of experience in the ethical hacking field, and a few million miles, I've seen a lot. As a consultant, I've seen firsthand the inner workings of organizations across the industry sectors. As an instructor, I've had the unique privilege of conversing with thousands of professionals from around the world. I've seen their faces, I've heard their stories, I've felt their frustrations.

I've spent my entire career studying adversarial Tactics, Techniques, and Procedures (TTPs) to seek understanding, so I can help others understand how adversaries do what they do. I've learned many things along the way. Including, not to sugar-coat harsh realities sometimes. So, here goes...

1.   If you're relying on an annual pen-test and traditional static defenses to defend against advanced adversaries - you're toast.

2.   If your Red and Blue Teams see each other as the adversary and measure their success by the other's failure - you're toast.

3.   If compliance is the goal - you're burnt toast.

But, with a few adjustments and a change in alignment, organizations can begin to effectively prevent, detect, and respond to real-world TTPs through adversary emulation and Purple Teaming!

This webcast will cover:

  • Why your annual pen-test is a recipe for disaster, and what you can do about it.
  • Why many Red and Blue Teams are ineffective despite their efforts, and how to turn this around.
  • Several real-world TTPs that adversaries utilize (including demos) to completely dominate organizations, shockingly fast.
  • How to begin to perform adversary emulation and Purple Teaming.
  • Several helpful tools and resources you can begin to explore immediately...

As Einstein wisely stated, Insanity is doing the same thing over and over again and expecting different results.

There is a better way...

Speaker Bio

Bryce Galbraith

As a contributing author of the internationally bestselling book Hacking Exposed: Network Security Secrets & Solutions, Bryce helped bring the secret world of hacking out of the darkness and into the public eye. Bryce has held security positions at global ISPs and Fortune 500 companies, he was a member of Foundstone's renowned penetration testing team and served as a senior instructor and co-author of Foundstone's Ultimate Hacking: Hands-On course series. Bryce is currently the owner of Layered Security where he provides specialized vulnerability assessment and penetration testing services for clients. He teaches several of the SANS Institute's most popular courses and develops curriculum around current topics. He has taught the art of ethical hacking and countermeasures to thousands of IT professionals from a who's who of top companies, financial institutions, and government agencies around the globe. Bryce is an active member of several security-related organizations, he holds several security certifications and speaks at conferences around the world.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.