Skip to content

cmu-sei/GHOSTS

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

883 Commits

.github/workflows

.github/workflows

 
 

assets

assets

 
 

configuration/grafana

configuration/grafana

 
 

docs

docs

 
 

lib/5.6.0.3644

lib/5.6.0.3644

 
 

scripts

scripts

 
 

src

src

 
 

.gitattributes

.gitattributes

 
 

.gitignore

.gitignore

 
 

CITATION.cff

CITATION.cff

 
 

LICENSE.md

LICENSE.md

 
 

README.md

README.md

 
 

SECURITY.md

SECURITY.md

 
 

mkdocs.yml

mkdocs.yml

 
 

Repository files navigation

GHOSTS NPC Framework

GHOSTS simulates what anyone might do at a computer, creating documents, browsing websites, and downloading files. GHOSTS drives all sorts of popular applications on many versions of Windows and Linux machines. Whether you're a friendly administrator or a powerful cyber adversary, GHOSTS can replicate your expected behavior.

GHOSTS has many use cases in cyber training and exercises, most notably for bringing non-player characters (NPCs) to life, but GHOSTS can be used for many other purposes where realistic activity on a computer is needed as well.

Version 8 is here (with breaking changes!). It has absorbed the other modules of the GHOSTS framework, ANIMATOR (now archived) and SPECTRE (now archived). This was done in order to greatly simplify installation, configuration, and the administration of a GHOSTS instance, but also to bring further capability to the core agents by more tightly combining information segregated into separate databases and systems until now.

The breaking changes are:

  1. Configuration file changes
  2. Database changes
  3. API endpoint changes

Sorry, but there is no upgrade path from previous versions — install a fresh instance to get rolling with V8.

There is a short demonstration video available on YouTube (3:03).

Key Links

Platform Components

Ghosts Clients (Windows & Linux)

GHOSTS clients simulate users on a machine doing "user-like" things. They can be configured to:

  • Browse the web
  • Create and edit office documents
  • Send and respond to email
  • Run terminal commands
  • Etc.

Ghosts API Server

The API server provides a way for clients to interact with the GHOSTS system and its clients. It can:

  • Manage clients, add/remove them from groups, etc.
  • Get/manage information from clients regarding their previous or current activities, etc.
  • Orchestrate new activities for particular clients to perform

License

[DISTRIBUTION STATEMENT A] This material has been approved for public release and unlimited distribution. Copyright 2017 Carnegie Mellon University. All Rights Reserved. See LICENSE.md file for terms.

About

GHOSTS is a realistic user simulation framework for cyber simulation, training, and exercise

Topics

simulation cybersecurity exercises cyber network-simulator user-simulator simulation-modeling network-simulation network-simulations cybertraining

Resources

Readme

License

View license

Security policy

Security policy
Activity
Custom properties

Stars

407 stars

Watchers

18 watching

Forks

59 forks
Report repository

Releases 22

v8.0 Latest
Mar 12, 2024
+ 21 releases

Packages

No packages published

Contributors 9

Languages