A runbook is the documented form of an organization's procedures for conducting a task or series of tasks. The purpose of a runbook is to script engagements to the command-line level with the intent of building a library of engagements to ensure a robust execution and coverage of an engagement objective while easily collecting valuable evidence for reporting.
Runbooks is a module that enables Purple Team exercises by providing a mechanism to script red and blue team engagements down to the procedure level to cover the attack surface and provide a unified security solution. It includes built-in standards out-of-the-box, such as MITRE ATT&CK and ATOMIC RED PROCEDURES.
Runbooks is a container menu item that contains access to Engagements and Manage options.
Engagements is used to set up a runbook for a specific client, while the Manage page provides and overview of all existing runbooks and allows for easy management and organization.
This section explains an overview of what a runbook is and used for and goes through the PlexTrac functionality to enable effective management and execution. Visit the menu options on this site to go directly to a desired topic.
Click Next for an overview of runbooks.
Copy link