Project Red Lanterns¶
Illuminating the space between attack and defence
This project develops methods, playbooks, and training that teach analysts to recognise when the city is being rewritten rather than attacked, and to do so before stability becomes a historical footnote. We have also been tasked to build a simulator to train people. Effective aim is to become prepared without doing damage to the city. Affective aim of this training to cultivate a professional unease in the face of quiet correctness, because in Ankh Morpork, that is usually where the trouble starts.
When correctness becomes the threat:
- Ember spark for Red Lanterns
- From attack trees to red team playbooks
- Rootways of the World Tree (@Internet)
- What an attack tree is allowed to be
- Selecting an attack chain worth operationalising
- Turning tree nodes into playbook actions
- Recording mess honestly
- Playbook 1: Registry reconnaissance and initial ROA creation
- Playbook 2: ROA scope expansion and validation environment mapping
- Playbook 3: Prefix hijacking with RPKI validation cover
- Control-plane attack chain: summary
- From playbooks to simulator scenarios