In this work, we propose a testbed environment to capture the attack strategies of an adversary carrying out a cyber-attack on an enterprise network. The testbed contains nodes with known security vulnerabilities which can be exploited by hackers. Participants can be invited to play the role of a hacker (e.g., black-hat, hacktivist) and attack the testbed. The testbed is designed such that there are multiple attack pathways available to hackers. We describe the working of the testbed components and discuss its implementation on a VMware ESXi server. Finally, we subject our testbed implementation to a few well-known cyber-attack strategies, collect data during the process and present our analysis of the data.

翻译：在本研究中，我们提出了一种用于捕获对手对企业网络实施网络攻击时所用攻击策略的实验平台环境。该实验平台包含具有已知安全漏洞的节点，可被攻击者利用。可邀请参与者扮演黑客角色（如黑帽黑客、黑客活动分子）对实验平台实施攻击。实验平台设计为包含多条可供黑客使用的攻击路径。我们阐述了实验平台各组件的运作原理，并讨论了其在VMware ESXi服务器上的实现过程。最后，我们采用若干典型网络攻击策略对实验平台实施攻击，在攻击过程中采集数据，并对数据进行了分析。