Network-Battle Field: Cyber Attackers and Defenders
Use Cases and Deployment Scope
Microsoft Cyber BattleSim or Simulation provides us to investigate the interactions of automated agents in an abstract, Stimulated network environment as it provides a high-level abstraction of cyber security concepts and computer networks. It is basically a simulated environment to check the strength of our network and is Python Based open AI.
Pros
- Python Based open AI.
- Uses reinforcement Algorithms for Training Purpose to Agents.
- Simulation environment sets different for Attacker and Defender.
Cons
- Needs to create various nodes on the network and have to indicate that services are running, it might be good if automated.
- I think everything is perfect, teaches us a lot.
Most Important Features
- Environment consists of Network of computer nodes.
- Researchers indicate the services are running, vulnerabilities, and how the device is protected.
Return on Investment
- Nice Implication for learning.
- Open source application so no Investment is applicable.
- Helps to understand and analyse the networks security for the device.
- Trigger alerts in XDr or SIEM systems.
Alternatives Considered
AttackIQ Security Optimization Platform