[addtool] attack_range

[gwen001]

[tags]cloud,vm,splunk[/tags] [short_descr]Create vulnerable instrumented local or cloud environments to simulate attacks.[/short_descr] [link] https://github.com/splunk/attack_range [/link] [long_descr] The Splunk Attack Range is an open-source project maintained by the Splunk Threat Research Team. It builds instrumented cloud and local environments, simulates attacks, and forwards the data into a Splunk instance. This environment can then be used to develop and test the effectiveness of detections. Purpose 🛡

The Attack Range is a detection development platform, which solves three main challenges in detection engineering:

• The user is able to quickly build a small lab infrastructure as close as possible to a production environment.
• The Attack Range performs attack simulation using different engines such as Atomic Red Team or Caldera in order to generate real attack data.
• It integrates seamlessly into any Continuous Integration / Continuous Delivery (CI/CD) pipeline to automate the detection rule testing process. [/long_descr] [image] https://raw.githubusercontent.com/gwen001/offsectools_www/main/tmp/26b8486115d5182d6f7073450a7cb566.png [/image]

[gwen001]

Issue correctly handled, tool is waiting for human validation.

[gwen001]

Tool has been accepted by the team: https://offsec.tools/tool/attack_range

Thank you for your contribution!