Welcome to CALDERA’s documentation!

If you’re new to CALDERA, this is a good place to start.

Usage Guide:

• Installing CALDERA
  • Requirements
    • Optional
  • Installation
• Getting started
  • Autonomous red-team engagements
  • Manual red-team engagements
  • Autonomous incident-response
  • Research on artificial intelligence
• Learning the terminology
  • What is an agent?
  • What is a group?
  • What is an ability?
  • What is an adversary?
  • What is an operation?
  • What is a fact?
  • What is a source?
  • What is a rule?
    • Subnets
  • What is a planner?
    • The Atomic planner
    • Custom Planners
  • What is a plugin?
• Server configuration
  • The existing default.yml
  • Adding your own config file
  • Enabling LDAP login
• Plugin library
  • Sandcat (54ndc47)
    • Deploy
    • Options
    • Extensions
  • Mock
  • Manx
  • Stockpile
  • Response
  • Compass
  • Caltack
  • SSL
    • Using your own self-signed certificate
  • Atomic
  • GameBoard
  • Human
  • Training
  • Access
    • Metasploit Integration
  • Builder
  • Debrief
• The REST API
  • /api/rest
  • Agents
    • DELETE
    • POST
  • Adversaries
  • Operations
    • DELETE
    • POST
    • PUT
  • /file/upload
    • Example
  • /file/download
    • Example
• How to Build Plugins
  • Creating the structure
  • The enable function
  • Writing the code
  • Making it visual
• How to Build Planners
  • Buckets
  • Creating a Planner
    • Creating the Python Module
    • Creating the Planner Object
    • Using the Planner
  • A Minimal Planner
  • Planning Service Utilities
  • Operation Utilities
• How to Build Agents
  • Understanding contacts
  • Building an agent: HTTP contact
    • Part #1
    • Part #2
    • Part #3
    • Part #4
• How CALDERA makes decisions
• Objectives
  • Objectives
  • Goals
• Initial Access Attacks
  • Run an initial access technique
  • Write an initial access ability
    • Create a binary
    • Create an ability
    • Run the ability
• Dynamically-Compiled Payloads
  • Basic Example
  • Advanced Examples
    • Arguments
    • DLL Dependencies
    • Donut
• Install CALDERA offline
• Docker deployment
• CALDERA 2.0
  • Adversary Mode
  • Chain Mode
  • What’s the long-term plan?
  • Why?
  • Gotchas
• Uninstall CALDERA
• Common problems
  • I’m getting an error starting the application!
  • I start an agent but cannot see it from the server!
  • I’m seeing issues in the browser - things don’t seem right!
  • I see a 404 when I try to download conf.yml!
  • I ran an adversary and it didn’t do everything!
  • I can’t open files on the server
  • I’m getting this GO error when I run my server!
• Exfiltration
  • Accessing Exfiltrated Files
  • Accessing Operations Reports
  • Unencrypting the files
• Peer-to-Peer Proxy Functionality for 54ndc47 Agents
  • How 54ndc47 Uses Peer-to-Peer
    • Determining Available Receivers
    • Required gocat Extensions
    • Command Line Options
    • Chaining Peer-to-Peer
  • Peer-To-Peer Interfaces
  • Current Peer-to-Peer Implementations
    • HTTP proxy
• Resources
  • Ability List

The following section contains information intended to help developers understand the inner workings of the CALDERA adversary emulation tool, CALDERA plugins, or new tools that interface with the CALDERA server.

Developer Information:

• app
  • app.api namespace
    • Subpackages
    • Submodules
    • app.api.rest_api module
  • app.contacts namespace
    • Subpackages
    • Submodules
    • app.contacts.contact_gist module
    • app.contacts.contact_html module
    • app.contacts.contact_http module
    • app.contacts.contact_tcp module
    • app.contacts.contact_udp module
    • app.contacts.contact_websocket module
  • app.learning namespace
    • Submodules
    • app.learning.p_ip module
    • app.learning.p_path module
  • app.objects namespace
    • Subpackages
    • Submodules
    • app.objects.c_ability module
    • app.objects.c_adversary module
    • app.objects.c_agent module
    • app.objects.c_obfuscator module
    • app.objects.c_objective module
    • app.objects.c_operation module
    • app.objects.c_planner module
    • app.objects.c_plugin module
    • app.objects.c_schedule module
    • app.objects.c_source module
  • app.service namespace
    • Subpackages
    • Submodules
    • app.service.app_svc module
    • app.service.auth_svc module
    • app.service.contact_svc module
    • app.service.data_svc module
    • app.service.event_svc module
    • app.service.file_svc module
    • app.service.learning_svc module
    • app.service.planning_svc module
    • app.service.rest_svc module
  • app.utility namespace
    • Submodules
    • app.utility.base_obfuscator module
    • app.utility.base_object module
    • app.utility.base_parser module
    • app.utility.base_planning_svc module
    • app.utility.base_service module
    • app.utility.base_world module
    • app.utility.config_generator module
    • app.utility.file_decryptor module
    • app.utility.payload_encoder module
    • app.utility.rule_set module

Indices and tables

• Index

• Module Index

• Search Page