They have lots of use cases for red team. Recon, enumeration, exploit chaining, fuzzing. It doesn’t matter if the error rate is 10-20% a shell is a shell
It can help you write the patch. Identify threats in a SIEM or SOAR setup. But I can’t think of much else. Defense has to be correct. If your .htaccess file is 99% correct that’s a problem
They have lots of use cases for red team. Recon, enumeration, exploit chaining, fuzzing. It doesn’t matter if the error rate is 10-20% a shell is a shell
I imagine it has plenty of use cases for blue team as well, just not as many for active threat response.
It can help you write the patch. Identify threats in a SIEM or SOAR setup. But I can’t think of much else. Defense has to be correct. If your .htaccess file is 99% correct that’s a problem