Purple team · Detection engineering
It's Friday. You need an environment by EOD.
A custom Windows domain. ELK and Elastic Security and Fleet with detection rules. A Velociraptor server with clients. PowerShell script-block logging. Sysmon. Built by hand, end-to-end, ready for the purple team Monday morning. How long does that take you?
With Ludus, every piece of that is an Ansible role. Templates are managed by the platform, not by internal knowledge. A documented REST API plugs into CI/CD. Build, deploy, destroy, repeat — unattended.
Seriously one of the most awesome tools I've ever used... 30 minutes and I have a small AD environment with an Elastic server + agents deployed with 0 manual effort 😎
Jun 26, 2024 · on XOpen ↗
OutcomeRealistic enterprises in minutes. Same env every time.