Christian Cloutier
Christian Cloutier
When trying to run a simulation on a stopped AR, it would be nice to provide a more user-friendly message.  Also, cosmetic only, but the messages about the AR...
We should look into deploying [TA-aurora](https://github.com/NextronSystems/TA-aurora) as part of Attack Range when the Aurora EDR agent is configured (`install_aurora_agent = 1`). Deploying it after the fact manually is not as...
**Is your feature request related to a problem? Please describe.** Could the team expose `tags.atomic_guid` and `tags.required_fields` in ESCU please? That would help a lot track this important information into...
It would be nice for PurpleSharp unit tests / playbook tests output to also be logged to `index = attack` like Atomic Red Team test results. This could be achieved...
### Description This was raised by John Norton on the Outpost Security RBA Slack channel. See screenshot. This comes from using `tstats` on two related MV fields that have to...
### Description The dashboard shows errors for some panels and seems to expect lookups that don't *seem* to be provided as part of this Github/app.  When `Show Attack Web`...
### Description The `attack_matrix_risk.xml` dashboard seems to rely (?) on CSS and/or Javascript files that do not seem to be included in this repo. Can we remove them (if no...
It would help for these fields to be exposed to/included in the ESCU app. See https://github.com/splunk/security_content/issues/2904.
### **Describe the bug** We seem to have a mix of fields between `Message` and `ScriptBlockText` for the Powershell rules in ESCU. If my own testing is correct, the `Message`...