SimuLand, an open-source platform that allows security researchers to replicate attack techniques in lab environments, has been made available by Microsoft.
SimuLand’s goal, according to Microsoft, is to help understand the behavior and capabilities of threat actors’ tradecraft, identify and share data sources related to adversary detection, and find mitigations and validate existing detection capabilities.
SimuLand can also be used to test the effectiveness of Azure Defender, Microsoft 365 Defender, and Azure Sentinel detections.
It’s also expected to speed up the development and implementation of threat research lab environments, allowing security researchers to keep up with the strategies and technologies used by threat actors in real-world attacks.
To Read More: securityweek