I can see a modified version of @unman 's Qubes Network Viewer getting turned into some sort of ecosystem abstraction showing communication (packets, emails, probes, attacks) being passed back and forth between VMs.
Maybe we can create salt scripts that automate VMs reproducing and going extinct, with different package combinations being used as some sort of proxy for genetics. The VMs will compete for resource points that will determine whether they live, die, and reproduce. These resource points come from a separate, sacred VM (the ‘World VM’) that’s like the dom0 of the ecosystem, and how these points are doled out depend on whether VMs meet certain criteria. (By the way, these some VMs are armed with known malware and can choose to attack others, and can also co-operate. There’s a cost to attacking and others will detect and remember attackers).
Think of this as the 2020s version of Robert Axelrod’s famous experiment, except as a toy aquarium for infosec geeks. With deep learning having an impact on infosec, this makes this much more interesting.
I typed this up in 10 minutes, and would love to hear if anyone has additional/better ideas.
I wonder whether the Debian phyla or the Fedora Phyla will do better, or whether some dark horse candidate (like Gentoo) will come along and wipe the floor. (P.S. for the sake of simplicity this should just be limited to Linux VMs–no unikernels)