OpenSOC | Network Defense Simulation Range
OpenSOC is a blue team defense simulation that is as close to “the real thing” as it gets. This isn’t just another CTF. We’ve built this platform to train real-world responders to handle real-world situations. Our environment is a highly portable, fully functional replication of an enterprise environment, complete with all the trimmings – Active Directory, Exchange, distributed networks, various sensors, log aggregation, end-user simulation, and more.
OpenSOC is comprised of over a dozen open source projects, including Metasploit, Wazuh, osquery, Suricata, Graylog, Snort, Elastic Stack, Moloch, Ansible, Kolide, OPNsense, and pfSense.
OpenSOC is a challenge meant to teach infosec professionals practical incident response skills in an environment that very closely resembles a real enterprise network. The virtual environment is a scaled down version of almost everything you would find in an enterprise network including workstations, servers, firewalls, email, web browsing, user activity, etc. Simulated users are actually browsing the Internet, downloading files, watching videos, and accessing LAN resources. This creates a high fidelity training environment for unleashing real-world attacks and testing a responder’s ability to filter out the noise and find malicious activity on the network.
Recon InfoSec: Our team is unique. We are the believers that volunteer and run CTFs at BSides, DEF CON, and other security conferences. We are infosec specialists with a broad spectrum of complementary skills. We are developers, security analysts, and forensic investigators. Our mission is to make enterprise-grade information security available to organizations of all sizes. Visit us at reconinfosec.com