Background

Please read. Skip those that you already read or watched:

Outcomes

Understand the motivation behind test automation with a Cyber-Range
Reuse past students' (Wen Siang's Attack-Automation) works & extend for further attack emulations
Learn how to package the work such that it is user-friendly for your "users" (like what I did with OEDR backend, it use to be a pain-in-the-ass to deploy). Use a docker container such that data-analytics team can easily deploy & use the container to run automated attack to generate data for their test-cases (I will handle the target-VMs within SandPIT, our C-Range).

should pass environment variables to docker container start up such that it knows the host IP address for payload to call back to
Should preferably be Type 2 scripting (that office macro that spoof is good, you should extend n make it call back to meterpreter https listener), if really can't figure out, then EXE & we have to use detectOnly at the target-victim host.

Using the same host IP address pass thru using docker environment variable (meaning when calling docker, it is pass within command line, another approach is using docker-compose)
An example with docker-compose is like https://github.com/jymcheong/OpenEDR/blob/e1674f4505ea6f0095c1955e3c6c95d12dadf331/docker-compose.yml#L25, where FRONTEND_IP is within .env n docker-compose will use it for network binding. You can research the equivalent in docker command for such network port-binding between host to container