I wondered if anyone had any good advice best practice for someone starting from scratch to build a cyber range for training and research purposes.
Building a “Cyber Range” can be simple or complex depending on what you want to do.
For a Red-Team Attack Range
To get started, the most basic range can be a computer running MetaSploitable images in a handful of VMs:
To add infrastructure, you can create virtual network infrastructure devices by running the Cisco IOS instances inside VMware:
For a Blue Team Defense Range
You could start with the HoneyNet Project and add nodes to participate. Pretty much you’re running live systems with Sebek or something similar to dump off live interactions for you to watch or replay.
An interesting alternative would be to try to run MetaSploitable systems with Sebek running to watch people on intentionally vulnerable machines.
Thanks I came across the Open Cyber Challenge Platform (OCCP) which looks interesting.
Open Cyber Challenge