The Splunk Attack Range is an open-source project maintained by the Splunk Threat Research Team. It builds instrumented cloud (AWS, Azure) and local environments (Virtualbox), simulates attacks, and forwards the data into a Splunk instance. This environment can then be used to develop and test the effectiveness of detections.
Features
- The user is able to quickly build a small lab infrastructure as close as possible to a production environment
- Documentation available
- The Attack Range performs attack simulation using different engines such as Atomic Red Team or Caldera in order to generate real attack data
- It integrates seamlessly into any Continuous Integration / Continuous Delivery (CI/CD) pipeline to automate the detection rule testing process
- Istall directly on Windows, Linux, or MacOS
- Examples included
Project Samples
Categories
Penetration TestingLicense
Apache License V2.0Follow Splunk Attack Range
You Might Also Like
Gen AI apps are built with MongoDB Atlas
MongoDB Atlas is the developer-friendly database used to build, scale, and run gen AI and LLM-powered apps—without needing a separate vector database. Atlas offers built-in vector search, global availability across 115+ regions, and flexible document modeling. Start building AI apps faster, all in one place.
Rate This Project
Login To Rate This Project
User Reviews
Be the first to post a review of Splunk Attack Range!