Refining the PoinTER “human firewall” pentesting framework

Archibald, Jacqueline; Renaud, Karen

doi:10.1108/ics-01-2019-0019

Cited by 7 publications

(2 citation statements)

References 33 publications

(41 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The summary of literature review is presented in table 1. In our proposed approach we have derived human pentest approach from this research article with title "Refining the PoinTER 'human firewall' pentesting framework" [28] and induced it in adversary emulation process.…”

Section: Related Workmentioning

confidence: 99%

Offensive Security: Towards Proactive Threat Hunting via Adversary Emulation

et al. 2021

View full text Add to dashboard Cite

Attackers increasingly seek to compromise organizations' systems and data with advanced methods, often utilising legitimate tools. In the main, organisations employ reactive approaches to cyber security, focused on rectifying immediate incidents and preventing repeat attacks, through protections such as Security Information and Event Management (SIEM), firewalls, anti-spam/anti-malware solutions and system patches have been demonstrated to have significant weaknesses in addressing modern attacks. Proactive approaches, have been seen as part of the solution to this problem. However, techniques such as vulnerability and penetration testing (VAPT) are recognised as having limited scope and only working with threats that have already been discovered. Promising methods such as threat hunting are gaining momentum, enabling organisations to identify and rapidly respond to any potential attacks, though they have been criticised for their significant cost. In this paper, we present a novel model for uncovering tactics, techniques, and procedures (TTPs) through offensive security, specifically threat hunting via adversary emulation. The proposed technique is based on a novel approach of inducing adversary emulation (mapping each respective phase) model inside the threat hunting approach. The experimental results show that the proposed approach exploits the threat hunting via adversary emulation and has countervailing effects on hunting advance level threats. Moreover, the threat detection ability of the proposed approach utilizes minimum resources. The proposed approach can be exploited to develop the offensive security-aware environment for organizations to uncover advanced attack mechanisms and test their ability for attack detection.

show abstract

Section: Related Workmentioning

confidence: 99%

Offensive Security: Towards Proactive Threat Hunting via Adversary Emulation

et al. 2021

View full text Add to dashboard Cite

show abstract

“…Cyber-attacks' impact on SMEs can be significant regarding financial losses and reputational damage. A study by [4] found that SMEs in the Netherlands lost an average of £65,000 per cyber-attack. Furthermore, the reputational damage caused by a cyber-attack can be particularly damaging for SMEs, as they may struggle to regain the trust of their customers and partners.…”

Section: Introductionmentioning

confidence: 99%

Implementation of Cybersecurity Situation Awareness Model in Saudi SMEs

Almoaigel,

Abuabid

2023

IJACSA

View full text Add to dashboard Cite

Saudi Small and Medium-sized Enterprises (SMEs) are witnessing rapid growth in technology and innovation. However, this growth is accompanied by increased cybersecurity threats, which pose significant challenges for SMEs. Cyber threats are becoming more complex and sophisticated, with SMEs becoming prime targets due to their weaker cybersecurity defenses. Hence, there exists a rich literature on critical challenges facing SMEs. Existing literature on these challenges addresses many research issues (e.g., finance, technology adoption, and management) associated with SMEs. However, one critical issue that has so far received no rigorous attention is cybersecurity situation awareness for research in the SME context. Thus, this study used a quantitative approach aiming to empirically test a model of cybersecurity situational awareness that can support SMEs in Saudi Arabia to implement cybersecurity measures and precautions with efficacy. An online survey of 350 participants was conducted to collect the research data. The study identified a significant positive relationship between Cyber Situational Awareness (Csa) and Implementation of Cybersecurity Controls (Icsc), suggesting that enhancing awareness can contribute to better control implementation. The study identified a significant positive relationship between Cyber Situational Awareness (Csa) and Implementation of Cybersecurity Controls (Icsc), suggesting that enhancing awareness can contribute to better control implementation. Finally, the paper provides several interesting findings and outlines future research directions.

show abstract

Ethical Principles for Designing Responsible Offensive Cyber Security Training

Heiding

Lagerström

2021

IFIP Advances in Information and Communication Technology

View full text Add to dashboard Cite

Refining the PoinTER “human firewall” pentesting framework

Cited by 7 publications

References 33 publications

Offensive Security: Towards Proactive Threat Hunting via Adversary Emulation

Offensive Security: Towards Proactive Threat Hunting via Adversary Emulation

Implementation of Cybersecurity Situation Awareness Model in Saudi SMEs

Ethical Principles for Designing Responsible Offensive Cyber Security Training

Contact Info

Product

Resources

About