dEEpEst Posted October 26, 2023 Share Posted October 26, 2023 MITRE Caldera™ is a cyber security platform designed to easily automate adversary emulation, assist manual red-teams, and automate incident response. This is the hidden content, please Sign In or Sign Up /applications/core/interface/js/spacer.png"> It is built on the MITRE ATT&CK™ framework and is an active research project at MITRE. The framework consists of two components: The core system. This is the framework code, consisting of what is available in this repository. Included is an asynchronous command-and-control (C2) server with a REST API and a web interface. Plugins. These repositories expand the core framework capabilities and providing additional functionality. Examples include agents, reporting, collections of TTPs and more. Plugins Create your own plugin! Plugin generator: This is the hidden content, please Sign In or Sign Up Default These plugins are supported and maintained by the Caldera team. Access (red team initial access tools and techniques) Atomic (Atomic Red Team project TTPs) Builder (dynamically compile payloads) Caldera for OT (ICS/OT capabilities for Caldera) Compass (ATT&CK visualizations) Debrief (operations insights) Emu (CTID emulation plans) Fieldmanual (documentation) GameBoard (visualize joint red and blue operations) Human (create simulated noise on an endpoint) Manx (shell functionality and reverse shell payloads) Response (incident response) Sandcat (default agent) SSL (enable https for caldera) Stockpile (technique and profile storehouse) Training (certification and training course) More These plugins are ready to use but are not included by default and are not maintained by the Caldera team. Arsenal (MITRE ATLAS techniques and profiles) CalTack (embedded ATT&CK website) Pathfinder (vulnerability scanning) SAML (SAML authentication) Requirements These requirements are for the computer running the core framework: Any Linux or MacOS Python 3.8+ (with Pip3) Recommended hardware to run on is 8GB+ RAM and 2+ CPUs Recommended: GoLang 1.17+ to dynamically compile GoLang-based agents. Installation Concise installation steps: This is the hidden content, please Sign In or Sign Up Full steps: Start by cloning this repository recursively, passing the desired version/release in x.x.x format. This will pull in all available plugins. This is the hidden content, please Sign In or Sign Up Next, install the PIP requirements: This is the hidden content, please Sign In or Sign Up Super-power your Caldera server installation! This is the hidden content, please Sign In or Sign Up Finally, start the server. This is the hidden content, please Sign In or Sign Up Once started, log into This is the hidden content, please Sign In or Sign Up using the default credentials red/admin. Then go into Plugins -> Training and complete the capture-the-flag style training course to learn how to use Caldera. Demo This is the hidden content, please Sign In or Sign Up Download Release 4.2.0 This is the hidden content, please Sign In or Sign Up Link to comment Share on other sites More sharing options...
Recommended Posts