CALDERA™ is a cyber security platform designed to quickly automate adversary emulation, assist manual red-teams, and automate incident response.
It is built on the MITRE ATT&CK™ framework and is an active research project at MITRE.
The framework consists of two components:
The core system. This is the framework code, consisting of what is available in this repository. An asynchronous command-and-control (C2) server with a REST API and web interface is included.
Plugins. These repositories expand the core framework capabilities and provide additional functionality. Examples include agents, reporting, collections of TTPs, and more.
Source code and additional information can be found here: https://github.com/mitre/caldera