This project contains a set of Terraform and Ansible scripts to create an orchestrated BlueTeam Lab. The goal is to provide red and blue teams with the ability to deploy an ad-hoc detection lab to test various attacks and forensic artifacts on the latest Windows environment and then to get a 'SOC-like' view into generated data. NOTE: This lab is deliberately designed to be insecure. Please do not connect this system to any network you care about. Lab Layout Prerequisites: A number of features need to be installed on your system in order to use this setup. Step 1 - Install Azure CLI. More details on https://docs.microsoft.com/en-us/cli/azure/install-azure-cli-linux?pivots=apt curl -sL https://aka.ms/InstallAzureCLIDeb | sudo bash. Step 2 - Install Terraform. More details on https://learn.hashicorp.com/tutorials/terraform/install-cli sudo apt-get update && sudo apt-get install -y gnupg software-properties-common curl curl -fsSL https://apt.releases.hashicorp.com/gpg | sudo apt-key add - sudo apt-add-repository 'deb [arch=amd64] https://apt.releases.hashicorp.com $(lsb_release -cs) main' sudo apt-get update && sudo apt-get install terraform
FEATURES
ALTERNATIVES
Free multi-platform database tool with support for various databases and rich features.
An open convention/conference discussing computer security, privacy, and information technology
Enhances the reading experience of smali code in Emacs.
A comprehensive guide for implementing best practices in cybersecurity across various systems.
A microservice for string padding to prevent global issues like the left-pad incident.
Bastille-Linux is a system hardening program that proactively configures the system for increased security and educates users about security settings.
A comprehensive collection of security assessment lists for security testers.
PINNED

InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.

Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Check Point CloudGuard WAF
A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.