Support detonating attack techniques against existing infrastructure

[christophetd]

Vote to show interest, and comment with why you'd need to use your own existing infrastructure!

[christophetd]

@akingscote @MikeCain21 @wushingmushine thanks for upvoting this issue, can you give more detail as to why you'd be using this?

[Yashvendra]

Hey @christophetd, rather than attacking/exploiting an existing infra, can't we just simulate an attack and show if their current environment is vulnerable to corresponding technique or not.

[MikeCain21]

Hey @christophetd , Currently we have some automation in place which takes care of the warmup, revert, and cleanup phases of some short-lived infrastructure used for training. I would love to throw this tool into the mix so that we could simulate the current attack techniques and validate that our users have the knowledge to detect them / find the detections in other tools.

[christophetd]

Thanks for the feedback! The current complexity is about validating prerequisite infrastructure, and making sure it's left in a clean state.

[christophetd]

We won't support this for now as it requires core changes, and adds the need to validate that the provided infrastructure is in a correct state.