ThruntOps
ThruntOps
I have started building ThruntOps, a Ludus-based lab for security testing, detection engineering, and attack-path validation.
The idea is simple: have a reproducible environment that is easy to deploy on Proxmox, realistic enough to be useful, and opinionated enough to support repeatable tests instead of one-off demos.
At a high level, the lab brings together a dual Active Directory setup, AD CS, a few intentionally weak paths, and different SIEM profiles depending on what I want to test. Right now the project supports Elastic, Wazuh, and Splunk profiles, plus a detection workflow around Sigma and Atomic Red Team.
What I want from it is not just a place to attack things, but a place to connect both sides of the work: build the vulnerable path, exercise it, collect telemetry, and turn that into detections that can actually be tuned and tested again.
It is still in development, so the goal for now is not completeness but a solid base: reproducible infrastructure, documented assumptions, and enough moving parts to make the lab useful for research and content creation.
If you want the full details, deployment steps, and current attack surface, the project docs are here:
PS: The GPT-made logo jokes about the old 90s rule that every “HPCV” page needed a skull. I would have added an “Under Construction” sign too, but that would have been a bit much.