ThruntOps

A Ludus-based lab environment for TTP testing and security research.

Deployed on Proxmox via Ludus. Dual Active Directory domain, ADCS, and a choice of SIEM.

Profiles

Profile	Config	SIEM	VMs
Elastic	elastic.yml	Elastic Stack + Fleet	9 — full lab with IIS, MSSQL, GitLab CE
Wazuh	wazuh.yml	Wazuh all-in-one	9 — full lab with IIS, MSSQL, GitLab CE
Splunk	splunk.yml	Splunk Enterprise	9 — full lab with IIS, MSSQL, GitLab CE

→ Vulnerabilities · ADCS Attack Paths · Office Abuse