Emulations
Last updated
Last updated
The Emulations tab in the EVE platform is designed to facilitate the execution of tests on endpoints that have the EVE agent installed. This section allows users to utilize packages created within the platform, which contain a specific number of artifacts, to perform these tests. Additionally, this tab provides access to the reports generated after each emulation and the option to create new emulations.
Automated Emulations: The EVE platform supports both malware and script-based emulations that can be executed automatically, without requiring ongoing interaction between the user and the platform during the process. Once the emulation is configured, the user simply needs to initiate it, and the EVE agent will take care of evaluating the configured vectors.
Scheduled Emulations: For malware-based emulations, users have the option to schedule them to run at specific times, further enhancing automation and allowing for regular, unattended testing.
Vector Evaluation: The EVE platform is capable of evaluating multiple vectors, including Network, Endpoint, and Execution, regardless of the number or type of tools present in these vectors. This comprehensive evaluation ensures that all aspects of security are thoroughly tested. Additionally, other vectors such as email and threat campaigns can be emulated using the Custom Threats module.
APTs
Does not affect productve environments
