libzt VS caldera

It would be great if that functionality could be integrated directly into the jellyfin server and apps. libzt has good support for all the languages that jellyfin and it's clients use.

BlindSPOT: https://blindspotsec.com/ Specific graphic from BlindSPOT: https://blindspotsec.com/wp-content/uploads/2021/04/Failure_Before.jpg How to Measure Anything in Cybersecurity Risk: https://www.amazon.com/dp/B01J4XYM16/ Monte Carlo simulation approach: https://embracethered.com/blog/posts/2020/red-teaming-and-monte-carlo-simulations/ D3FEND: https://d3fend.mitre.org/ ATT&CK mappings: https://github.com/center-for-threat-informed-defense/attack-control-framework-mappings ATT&CK evals: https://attackevals.mitre-engenuity.org/index.html CALDERA: https://github.com/mitre/caldera Offensive Countermeasures: https://www.amazon.com/dp/1974671690/ SPIFFE: https://spiffe.io/ SPIRE: https://github.com/spiffe/spire Zerotier: https://www.zerotier.com/ Zerotier libzt: https://github.com/zerotier/libzt

Basically you have to make it work within the LAN yourself, then you can use Zerotier (or even libzt) to make it work over the internet.

Take a look at zerotier it's open source, they offer a free tier and you can even bake it directly into your app(they have a library on GitHub lizbt. Unless you are willing to become a security analyst don't roll your own crypto it's never worth it, use a vpn or something https based.

Also, for the attack emulation part you might be interested in CALDERA.

Mitre made Caldera to drive this. https://github.com/mitre/caldera

Did you join the Slack and ask your question there, or on the discussion forum? The CALDERA team will answer... (both links are at https://caldera.mitre.org/)

There's also a plugin for Caldera (https://github.com/mitre/caldera) called Pathfinder (https://github.com/center-for-threat-informed-defense/caldera_pathfinder and https://www.youtube.com/watch?v=gQRWkHFRG-s) that can help.