The Splunk Attack Range is an open-source project maintained by the Splunk Threat Research Team. It builds instrumented cloud (AWS, Azure) and local environments (Virtualbox), simulates attacks, and forwards the data into a Splunk instance. This environment can then be used to develop and test the effectiveness of detections.
Features
- The user is able to quickly build a small lab infrastructure as close as possible to a production environment
- Documentation available
- The Attack Range performs attack simulation using different engines such as Atomic Red Team or Caldera in order to generate real attack data
- It integrates seamlessly into any Continuous Integration / Continuous Delivery (CI/CD) pipeline to automate the detection rule testing process
- Istall directly on Windows, Linux, or MacOS
- Examples included
Categories
Penetration TestingLicense
Apache License V2.0Follow Splunk Attack Range
Other Useful Business Software
MongoDB Atlas runs apps anywhere
MongoDB Atlas gives you the freedom to build and run modern applications anywhere—across AWS, Azure, and Google Cloud. With global availability in over 115 regions, Atlas lets you deploy close to your users, meet compliance needs, and scale with confidence across any geography.
Rate This Project
Login To Rate This Project
User Reviews
Be the first to post a review of Splunk Attack Range!