Feature Request - Add the 2 Servers from Metasploitable 3 to the Detection Lab

[forensic65x]

• Operating System Version: N/A
• Provider (VirtualBox/VMWare): N/A
• Vagrant Version: N/A
• Packer Version: N/A
• Is the issue reproducible or intermittent? N/A

Description of the issue:

As a detection lab I think it would be good to add some highly vulnerable systems/applications to the Lab so defenders can verify if they can detect exploitation of those systems/applications.

Given Metasploitable 3 also leverages vagrant and packer it appears it would be achievable.

https://github.com/rapid7/metasploitable3

[clong]

Hey @forensic65x - I like the idea, but this would be better suited for a fork of DetectionLab. The addition of more VMs slows down an already somewhat slow build process and adds complexity, which makes the lab harder to maintain than it already is. I don't want to get in the business of supporting a VM that I had no hand in creating.

[forensic65x]

Understood. Could you provide some guidance on what scripts in the detectionlab/Vagrant/scripts should be run on an additional Windows VM so it gets the caldera agent, added to the domain, logs to the WEF server, etc? I'd like our DetectionLab to have a couple more flavors of Windows (XP, Win7, 32 and 64bit). Same for a unix VM so its logging to the Logger/Splunk... If not, no worries.

…

On Sun, Jul 22, 2018 at 1:08 AM Chris Long ***@***.***> wrote: Hey @forensic65x <https://github.com/forensic65x> - I like the idea, but this would be better suited for a fork of DetectionLab. The addition of more VMs slows down an already somewhat slow build process and adds complexity, which makes the lab harder to maintain than it already is. I don't want to get in the business of supporting a VM that I had no hand in creating. — You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub <#125 (comment)>, or mute the thread <https://github.com/notifications/unsubscribe-auth/AIUb7suVnOGA4evm5h8_NVyisf1SlPiwks5uJBbHgaJpZM4VZwcL> .