rsfl / attack_range Public

forked from splunk/attack_range

Notifications You must be signed in to change notification settings
Fork 0
Star 1

A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data into Splunk

1 star 400 forks Branches Tags Activity

Star

Notifications

Branches Tags

Name		Name	Last commit message	Last commit date
Latest commit History 13 Commits
.github		.github
Packer		Packer
ansible		ansible
docs		docs
splunk_server		splunk_server
windows_dc		windows_dc
windows_workstation		windows_workstation
.gitignore		.gitignore
.pre-commit-config.yaml		.pre-commit-config.yaml
README.md		README.md
requirements.txt		requirements.txt

Repository files navigation

Splunk Attack Range

Purpose

This lab has been designed with reproducability in mind. Its primary purpose is to allow the user to quickly build various systems (Workstations, Domain Controllers, *nix machines,etc) in a quick and reproducable manner

Developing

For proper installation you will need access to AttackIQ Community Git Lab. See Russ for access

create virtualenv and install requirements: virtualenv -p python3 venv && source venv/bin/activate && pip install -r requirements.txt
install pre-commit hooks pre-commit install

Running hosts

cd windows_workstation jump into the host folder
vagrant up bring up machine and provision per Vagrantfile settings and Ansible playbook
vagrant provision (optionally) provision machine per ansible playbook