The AECID Testbed is a simulated enterprise network with numerous vulnerabilities. Attacks in this testbed are executed automatically and cover a variety of tactics and techniques of the MITRE enterprise framework.
License: GNU General Public License v3.0
Capabilities of tcpdump must be set to cap_net_raw and cap_net_admin ( https://github.com/ait-testbed/atb-ansible-tcpdump )
Please add cas1, cas2, adminpc1, adminpc2, webuser, dnsuser to the testbed, ghost-server
In scenario1(videoserver) some attacks need actions executed from admin-pc. In order to make those hosts accessible by attackm8, the mgmt-host is allowed to have password-login via ssh. This is insecure in environments where the mgmt-host is hosted with a public ip(public cloudprovider).
I can think of possible solutions like:
MGMT-Host needs static ip adresses. Change the terragrunt-bootstrap. Use the same postfix(last part of the ip address) for every single network
Currently the adminpc's are in the lan-network. Create admin-networks. Admins are allowed to access all networks. Add the network to the terragrunt/bootstrap
In the docs, there is still "terraform" instead of "opentofu"
Put all required packages like python-openstackclient and passlib in requirements.txt
Add Ghost-Usersimulation for the videoserver-scenario to the testbed
customdpkg installs from a repository. But at packer-time there is no repository!
For some reasons we want "log_format = RAW" for auditd.conf
Currently only bruteforce is only done with ssh. This scenario needs modifications for the attackmate
The variables.pkr.hcl files in the packer folders have the old names as default values for the flavor variables. This should be eventually updated to the new naming conventions (e.g. d2-2 instead of m1.small).
For terragrunt init to work, provider need to be changed in the versions.tf files from terraform-providers/openstack to terraform-provider-openstack/openstack
registry: https://registry.terraform.io/providers/terraform-provider-openstack/openstack/latest
Create a dedicated network for user-clients. Install a squid-proxy on the firewall so that the users are forced to use the proxy
There is a healthcheck-server but no healthcheck-client
Add rsync to the atb-ansible-aecidtools role
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
Django
The Web framework for perfectionists with deadlines.
Laravel
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft
Open source projects and samples from Microsoft.
Google
Google โค๏ธ Open Source for everyone.
Alibaba
Alibaba Open Source for everyone
D3
Data-Driven Documents codes.
Tencent
China tencent open source team.
