A utility to safely generate malicious network traffic patterns and evaluate controls.
This release adds:
Full Changelog: https://github.com/alphasoc/flightsim/compare/v2.3.0...v2.4.0
This release adds:
Full Changelog: https://github.com/alphasoc/flightsim/compare/v2.2.2...v2.3.0
This release adds:
Full Changelog: https://github.com/alphasoc/flightsim/compare/v2.2.1...v2.2.2
This release adds:
Full Changelog: https://github.com/alphasoc/flightsim/compare/v2.2.0...v2.2.1
This release adds:
get
command capable of retrieving C2 families for later use with the C2 moduleFull Changelog: https://github.com/alphasoc/flightsim/compare/v2.1.1...v2.2.0
Enjoy!
This release shifts our CI workflow from CircleCI to GitHub Actions. On top of binary tar
archives for GNU/Linux, FreeBSD, Darwin and Windows, we're also releasing DEB, RPM, and APK packages.
Full Changelog: https://github.com/alphasoc/flightsim/compare/v2.1.0...v2.1.1
Here we go – a brand new release of flightsim to keep your network safe in 2020! We've added two new modules:
miner
, which generates Stratum mining protocol traffic to known cryptomining pools;tunnel-icmp
, which generates ICMP tunneling traffic to an Internet service operated by AlphaSOC.We've also improved the output so it's easier to read and made errors a little bit less confusing (we're still working towards perfection on this matter).
Have a try and let us know if it works (or not) for you!
This is a new – and preferred – major release of your favourite malicious network traffic synthesis software.
There are many bug fixes and improvements within the engine, which will allow us to introduce new modules in the coming future. A new feature has been introduce where one can simulate traffic for a specific malware family, e.g. TrickBot or Emotet. You can evaluate your coverage by running:
./flightsim run c2:trickbot c2:emotet
Please refer to ./flighsim run -h
to see more options and flags, as these have changed since flightsim v1. Your feedback is very welcomed, just leave a comment at https://github.com/alphasoc/flightsim/issues.
Happy malware hunting!