# Interesting Read

## Red Team Methodology

* [Hang Fire: Challenging our Mental Model of Initial Access](https://posts.specterops.io/hang-fire-challenging-our-mental-model-of-initial-access-513c71878767)
* [What I’ve Learned in Over a Decade of “Red Teaming”](https://medium.com/@dmchell/what-ive-learned-in-over-a-decade-of-red-teaming-5c0b685c67a2)
* [How to Create an Internal/Corporate Red Team](https://malcomvetter.medium.com/how-to-create-an-internal-corporate-red-team-1023027ea1e3)
* [The Problems With Today's Red Teaming](https://cyb3rops.medium.com/the-problems-with-todays-red-teaming-7b8ed1e735c9)
* [The Future of Adversaries is Software Development](https://malcomvetter.medium.com/the-future-of-adversaries-is-software-development-f599c3da2a9f)
* [What is the CISO Experience in a Red Team Exercise?](https://www.netspi.com/blog/executive/red-teaming/ciso-experience-in-red-team-exercise/)
* [DLS 2024 - RedTeam Fails - "Oops my bad I ruined the operation"](https://swisskyrepo.github.io/Drink-Love-Share-Rump/)
* [\[D24\] Circling Dragons: Red Team Lessons From Modern Breaches - Jason Lang](https://youtu.be/i2cJ1vYK5c8?si=Hh0uyZbyu1Op4D0D)
* [Engagement Guide: How to Prepare for Your Purple Team](https://trustedsec.com/blog/engagement-guide-how-to-prepare-for-your-purple-team)
* [The State of Art in Red Team is whatever you want to believe](https://x-c3ll.github.io/posts/Rant-Red-Team/)

## Technical Reference

* [CISA Red Team Engagement Report 1](https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-059a)
* [CISA Red Team Engagement Report 2](https://www.cisa.gov/news-events/cybersecurity-advisories/aa24-193a)
* [Adversary Emulation Plan](https://github.com/center-for-threat-informed-defense/adversary_emulation_library/tree/master/fin6/Emulation_Plan)

## Malware Development

* [Development Tradecraft DOs and DON'Ts](https://wikileaks.org/ciav7p1/cms/page_14587109.html)