Infection Monkey

Infection Monkey is an open-source adversary emulation platform developed by Guardicore (now Akamai) that automatically tests network security controls by simulating real-world attack techniques. It propagates through the network using a variety of exploitation methods, credential theft, and lateral movement techniques mapped to the MITRE ATT&CK framework, then generates detailed reports on security gaps. Security teams and red team operators use Infection Monkey to validate segmentation policies, test detection capabilities, and identify attack paths that could be exploited by real adversaries without causing actual damage. The platform runs continuous or on-demand breach simulations and provides actionable remediation recommendations, making it particularly valuable for organizations that need to validate their security posture against realistic attack scenarios.