attack_range
attack_range copied to clipboard
splunk
A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data into Splunk
Hello, When I simulate an attack against a Windows server on a port other than 5985, I get the following error: python attack_range.py simulate -e ART -t ar-win2016-server-member-1 -te T1053.005-1...
Some of Atomic Red Team tests such as T1558.003 fail due to the fact that they are running in local account context. Would it be possible to switch to domain...
I know that Terraform has a command called the `terraform plan` command that shows the prediction results in advance about what kind of infrastructure the defined code will create. Before...
Currently docker image is always pushed with single tag - latest: https://hub.docker.com/r/splunk/attack_range/tags https://github.com/splunk/attack_range/blob/develop/.github/workflows/publish-docker-image.yml#L38 This is not enough if user wants to pin particular image version. I would like to refactor...
It would be nice for PurpleSharp unit tests / playbook tests output to also be logged to `index = attack` like Atomic Red Team test results. This could be achieved...
python attack_range.py build /opt/attack_range/attack_range.py:17: SyntaxWarning: invalid escape sequence '\^' print(""" __ .d$$b .' TO$;\ / : TP._; / _.; :Tb| / / ;j$j _.-" d$$$$ .' .. d$$$$; / /P'...
Hi , I'm following your guidelines step for step from https://attack-range.readthedocs.io/en/latest/Attack_Range_AWS.html#linux on a fresh Ubuntu 22.04.3 LTS machine. When trying to perform python attack_range.py build on the machine I get...
Updated app that get built into the Splunk Server to have parity with contentctl_test.yml https://cd.splunkdev.com/threat-research/security_content/-/blob/develop/contentctl_test.yml?ref_type=heads We still need to update the pre built packer image
Following the documentation to setup dependencies for WSL results in an installation where the build step fails consistently: ``` paranoid in 🌐 the-machine in attack_range on develop [!] via...
Hi Team, **Issue Description** While using AR Docker on Macbook Air M2 and successfully deploying Attack Range on a standalone AWS, we're having issues destroying that AR environment by using...
