×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
SecBit
Observer
Member since: ‎11-11-2022
‎07-07-2023
Community Statistics
Posts 4
Solutions 0
Karma Given 0
Karma Received 0
Member Since ‎11-11-2022
Activity Feed
View All

Splunk Attack Range

by in Security
‎07-07-2023 03:42 AM
‎07-07-2023 03:42 AM
A question regarding the splunk attack range I am using the attack_range and not the attack_range_local repository as it says the local repository has been archived, should I be using the attack_range_local even though it says the attack_range now support a local install. I have specified the provider as local in the configuration but I keep getting errors related to azure or aws I can configure the attack range no problem and I select the local option but I get errors when trying to build the attack range. Any help is much appreciated!!! ... View more

Re: What is the best way to simulate Attacks in Sp...

by in Security
‎06-06-2023 08:11 AM
‎06-06-2023 08:11 AM
Thank you for your comment. I fully understand the detection I am trying to test as it is based on off the MITREATT&CK TTP's. I will be using Atomic Red to choose what TTP's I will be testing and the attack_range from github. I can then forward the logs to our own Splunk instance to view them. The issue we have is with the license's. Do I need a virtaulbox commercial license to run these tests as it will be used in a commercial environment, I am presuming yes as it seems obvious but I am not 100% sure, if this is case what is the best alternative solution. Thanks  ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎07-07-2023 08:33 AM