"A Red Team breaks things. They validate an organization’s defenses and response plans by hitting hard and fast, with no restrictions at all.

-- Rafal Los

"Red Teams assume the role of the outsider to challenge assumptions, look for unexpected alternatives and find the vulnerabilities of a new idea or approach. By consciously working to assume another perspective and out-do the standard team, they provide one means to getting “out-of-the-box” views and insights."

"Nobody ever defended anything successfully, there is only attack and attack and attack some more."

-- George S. Patton

"There's nothing wrong with staying small. You can do big things with a small team."

"Prepare for the unknown by studying how others in the past have coped with the unforeseeable and the unpredictable."

-- George S. Patton

"Schneier’s Maxim #1 (Don’t Wet Your Pants Maxim): The more excited people are about a given security technology, the less they understand (1) that technology and (2) their own security problems."

"The efficacy of security is determined more by what is done wrong than by what is done right. (Because the bad guys typically attack deliberately and intelligently, not randomly.)"

"When in doubt, red team it"

-- Red Teams Blog

"Thanks for Nothin’ Maxim: A vulnerability assessment that finds no vulnerabilities or only a few is worthless and wrong."

"High-Tech Maxim: The amount of careful thinking that has gone into a given security device, system, or program is inversely proportional to the amount of high-technology it uses. (In security, high-technology is often taken as a license to stop thinking critically.)"