An official website of the United States government
A .mil website belongs to an official U.S. Department of Defense organization in the United States.
A lock (lock ) or https:// means you’ve safely connected to the .mil website. Share sensitive information only on official, secure websites.
HomeProductsMAPL/PEMR


MAPL-PEMR Logo


What is MAPL? 

Imagine a malware training platform that uses authentic, real-world operational malware in a persistent environment. A platform with flexible, scripted scenarios and campaigns, requiring only trainers and cyberwarriors for the exercise. Even better, a platform available at no cost to your organization. And, a platform that lives in the Air Force’s very own Home of the Hacker squadron. With this platform, what training scenarios could your team(s) explore?

MAPL (Malicious Playground) is the solution to your malware training needs. MAPL enables re-runnable,  customizable, and loggable cyber security training within a single platform. It offers an easy, compact, and turn-key solution. Its the premier PEMR (Persistent Environment for Malware Replication) of the 90th Cyberspace Operations Squadron, designed to support your malware training.

Part of the MAPL magic is that it is easy to setup, support and use. For setup, MAPL combines a Malware control program, an automation and logging tool from MITRE called Caldera, and a suite of customizable plugins rolled into a few setup files. Additionally, MAPL is unclassified and can reside on a variety of networks. So unclassified, in fact, that the malware control component is available to the general public here: https://gitlab.com/90cos/mcp and Caldera resides here: https://caldera.mitre.org/

For support, as an unclassified USAF-maintained platform, it is available without expense to any other USAF unit or other cooperating organizations. This includes demos, setup support, first time user training and scenarios, customization of MAPL and plugins, and ‘last mile’ support.

Finally, the fun of using MAPL is the learning and discovering best practice(s) with MAPL on real life, neutered, acting-as-it-would in the real world, malware. MAPL generates the ‘Ah-ha’ moments. In short, MAPL is the learn-by-doing and -practicing platform, and engenders better learning/retention than CBTs, class or presentations alone.
mapl
We can help with custom scenarios or plugins and custom runtime environments.

Looking for a low code, low cost malware training solution? MAPL is your training solution.

What is the goal of MAPL?
MAPL is provided to support developing and assessing the skills of those tasked with identifying malware. Our mission is to provide the tools necessary for CPTs and other customers be successful in their malware training and skill evaluations.

What are the possibilities with MAPL?
We are:
  • Future proofing MAPL by developing backwards compatibility in key components
  • MAPL placement on a persistent enterprise service
  • MAPL placement on a joint persistent enterprise service
  • Expanding MAPL’s malware catalog