Splunk Attack Range Files

A tool that allows you to create vulnerable environments

This is an exact mirror of the Splunk Attack Range project, hosted at https://github.com/splunk/attack_range. SourceForge is not affiliated with Splunk Attack Range. For more information, see the SourceForge Open Source Mirror Directory.

The interactive file manager requires Javascript. Please enable it or use sftp or scp.
You may still browse the files here.

Name	Modified	Size	InfoDownloads / Week
Parent folder
README.md	2025-06-16	2.1 kB	0
v4.0.0 source code.tar.gz	2025-06-16	20.6 MB	0
v4.0.0 source code.zip	2025-06-16	20.8 MB	2
Totals: 3 Items		41.4 MB	2

Splunk Attack Range v4.0 Release Notes

The Splunk Threat Research Team (STRT) is happy to release v4.0 of the Splunk Attack Range.

Release Blog

Major Changes

SnapAttack CapAttack Integration - Added PowerShell capture agent that packages attacks with system logs, keystrokes, PCAP, and video for comprehensive attack analysis
GCP Support - Extended cloud platform support to include Google Cloud Platform alongside existing AWS and Azure deployments
Automated Splunk Apps Update Through CI/CD - Implemented automatic updates for all integrated Splunk Apps to ensure detection engineers work with current versions
Improved Caldera Integration - Enhanced deployment and configuration of MITRE's Caldera adversary emulation platform with better reliability and accessibility
Version-Tagged Docker Containers - Introduced specific version tags on DockerHub for greater stability and reproducibility in testing environments
Deprecate Splunk Attack Range Local - Discontinued local deployment support due to VirtualBox/Vagrant challenges; recommend Ludus for local range needs

Updates

Added CapAttack capture workflow to integrate with SnapAttack data collection
Improved Caldera interface reliability with port 8888 access
Updated Technical Add-ons (TAs) through automated CI/CD pipeline
Fixed various bugs in Caldera integration
Added replay file path functionality
Improved documentation and configuration guides

Source: README.md, updated 2025-06-16

Other Useful Business Software

Our Free Plans just got better! | Auth0 Icon

Our Free Plans just got better! | Auth0

With up to 25k MAUs and unlimited Okta connections, our Free Plan lets you focus on what you do best—building great apps.

You asked, we delivered! Auth0 is excited to expand our Free and Paid plans to include more options so you can focus on building, deploying, and scaling applications without having to worry about your security. Auth0 now, thank yourself later.

Try free now

Build Securely on AWS with Proven Frameworks Icon

Build Securely on AWS with Proven Frameworks

Lay a foundation for success with Tested Reference Architectures developed by Fortinet’s experts. Learn more in this white paper.

Moving to the cloud brings new challenges. How can you manage a larger attack surface while ensuring great network performance? Turn to Fortinet’s Tested Reference Architectures, blueprints for designing and securing cloud environments built by cybersecurity experts. Learn more and explore use cases in this white paper.

Download Now

Recommended Projects

Accrescent
A novel Android app store focused on security, privacy, and usability
7-Zip
A free file archiver for extremely high compression
Apache OpenOffice
The free and Open Source productivity suite
KeePass
A lightweight and easy-to-use password manager
Clonezilla
A partition and disk imaging/cloning program