Ludus is an open-source cyber range platform created by Bad Sector Labs (founded by Erik Hunstad in Ann Arbor, Michigan). Built on Proxmox virtualization with automation via Packer and Ansible, Ludus lets security teams deploy reproducible, portable cyber environments using simple YAML configuration files.
Key use cases include Active Directory lab deployments, penetration testing environments, purple teaming setups, Atomic Red Team testing, and security training scenarios. The platform supports multi-user isolated ranges on a single server, includes a built-in WireGuard VPN for secure remote access, and offers snapshot capabilities for environment management. It integrates with GOAD (Game of Active Directory) for complex AD scenarios.
Ludus is available in multiple editions:
- Community (Free) — Open-source core under AGPLv3
- Pro — For professionals, with additional closed-source plugins
- Enterprise Self-Hosted — Self-hosted at scale for organizations managing their own infrastructure
- Enterprise Fully Hosted — Fully managed by Bad Sector Labs, no infrastructure overhead
The project is actively developed on GitLab with a GitHub mirror, and notably has a CISA (Cybersecurity and Infrastructure Security Agency) fork on GitHub. The platform has gained strong community adoption among red teamers, blue teamers, and security trainers, with tutorials and integrations appearing across security blogs and YouTube.