This report describes research carried out within the project Tools and techniques for cyber defence exercises (VECNO) from 2021 to 2025 on the topic of cyber threat automation. The research was implemented in the cyber threat automation tool Lore. In 2021, Lore was a relatively simple tool with capabilities primarily limited to server exploits and had only been used for a few technical tests. Within VECNO, the development of Lore continued in various ways to improve its capabilities. It was employed for many different purposes, including eight cyber defence exercises, research on defence mechanisms, and a capture-the-flag exercise. There have also been several evaluations of Lore. In particular to examine if the experiences differ for log analysts participating in cyber defence exercises depending on whether they are subjected to threats generated by Lore or by human red teams. The results indicate that the perceived realism is about the same, and that the cyber threats are regarded as equally educational, regardless of their source.