Skip to content

Releases: splunk/attack_range

v4.0.0

01 Jul 19:47
@josehelps josehelps
v4.0.0
3bfa901
Compare
Choose a tag to compare
v4.0.0

Splunk Attack Range v4.0 Release Notes

The Splunk Threat Research Team (STRT) is happy to release v4.0 of the Splunk Attack Range.

Release Blog

Major Changes

  • SnapAttack CapAttack Integration - Added PowerShell capture agent that packages attacks with system logs, keystrokes, PCAP, and video for comprehensive attack analysis
  • GCP Support - Extended cloud platform support to include Google Cloud Platform alongside existing AWS and Azure deployments
  • Automated Splunk Apps Update Through CI/CD - Implemented automatic updates for all integrated Splunk Apps to ensure detection engineers work with current versions
  • Improved Caldera Integration - Enhanced deployment and configuration of MITRE's Caldera adversary emulation platform with better reliability and accessibility
  • Version-Tagged Docker Containers - Introduced specific version tags on DockerHub for greater stability and reproducibility in testing environments
  • Deprecate Splunk Attack Range Local - Discontinued local deployment support due to VirtualBox/Vagrant challenges; recommend Ludus for local range needs

Updates

  • Added CapAttack capture workflow to integrate with SnapAttack data collection
  • Improved Caldera interface reliability with port 8888 access
  • Updated Technical Add-ons (TAs) through automated CI/CD pipeline
  • Fixed various bugs in Caldera integration
  • Added replay file path functionality
  • Improved documentation and configuration guides
Loading

v3.3.0

09 Apr 13:16
@P4T12ICK P4T12ICK
v3.3.0
d079c7f
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v3.3.0 Latest
Latest

Changes:

  • GCP support
  • deprecate local deployment of Attack Range
Assets 2
Loading

v3.2.0

06 Dec 15:27
@P4T12ICK P4T12ICK
v3.2.0
9fbcd3f
Compare
Choose a tag to compare
v3.2.0

Changes:

  • Add Mitre Caldera
  • bug fixes
Loading

v3.1.1

25 Sep 14:06
@P4T12ICK P4T12ICK
v3.1.1
5d38462
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v3.1.1

Changes:

  • Improve Snort logging
  • Integrated Cisco Secure Endpoint
Loading

v3.1.0

26 Aug 14:12
@P4T12ICK P4T12ICK
v3.1.0
6eaf508
Compare
Choose a tag to compare
v3.1.0

Changes:

  • Remove packer to simplify usage
  • Build Snort server and get alarms to Splunk
  • Auditd logging for Linux server
  • better ansible variable handling
  • bug fixes
Loading

v3.0.0

18 Jan 18:55
@github-actions github-actions
v3.0.0
29b3417
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v3.0.0

The Splunk Threat Research Team (STRT) is happy to release v3.0 of the Splunk Attack Range.

Release Blog

Check out the demo video!

Major Changes

Updates

  • Fixed CI jobs
  • Add support for terraforms remote backends
Loading

v2.0.0

01 Jul 22:08
@github-actions github-actions
v2.0.0
e76c66f
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.0.0 
Merge pull request #629 from splunk/haag_fixes

Spacing and Kali Update
Loading

v1.1.0

26 Aug 23:15
@josehelps josehelps
v1.1.0
a299a86
Compare
Choose a tag to compare
v1.1.0 
fixing minor bug with clipboard copy
Loading

v1.0.0

26 Jan 03:14
@josehelps josehelps
v1.0.0
4d9803d
Compare
Choose a tag to compare
v1.0.0 
circlecci syntax error
Loading