MITRE Caldera
Overview
The MITRE Caldera Pack provides an integration for the v4.0.0 of the MITRE Caldera API and accompanying scripts and playbooks.
Interact with MITRE Caldera via the v2 API.
The MITRE Caldera Pack provides an integration for the v4.0.0 of the MITRE Caldera API and accompanying scripts and playbooks.
The MITRE Caldera Pack provides an integration for the v4.0.0 of the MITRE Caldera API and accompanying scripts and playbooks.
Name | Description |
---|---|
CalderaPopulateEventLogs | Populates the Event Logs with Event Logs from the MITRE Caldera |
CalderaReadOnlyFields | Prevents specific fields from being set manually. |
CalderaPopulateSourceIDField | Populates the Source ID Field with Sources from the MITRE Caldera |
CalderaPopulateAgents | Populates the agents with agents from the MITRE Caldera |
CalderaGetOperationReport | Populates the Operation Facts with Facts from the MITRE Caldera |
CalderaPopulateObjectiveIDField | Populates the Objective ID Field with Objectives from the MITRE Caldera |
CalderaStartOperation | This script is used in the MITRE Caldera Operation playbook. It will auto-complete the task that waits for a specific date and time for the operation to start. It should not be used manually. |
CalderaPopulateAdversaryIDField | Populates the Adversary ID Field with Adversaries from the MITRE Caldera |
CalderaPopulatePlannerIDField | Populates the Planner ID Field with Planners from the MITRE Caldera |
CalderaOperationPostProcessing | Post processing script for MITRE Caldera incidents. |
Name | Description |
---|---|
MITRE Caldera Schedule Date Time SLA | |
MITRE Caldera Operation State | State of the operation |
MITRE Caldera Operation Objective ID | |
MITRE Caldera Operation Adversary ID | |
MITRE Caldera Operation Autonomy | |
MITRE Caldera Schedule Operation | |
MITRE Caldera Operation Use Learning Parsers | Whether learning parsers are used. |
MITRE Caldera Operation Host Group | Which Host Group to run against. |
MITRE Caldera Operation Obfuscator | |
MITRE Caldera Operation Planner ID | |
MITRE Caldera Operation Auto Close | |
MITRE Caldera Operation Group | Which collection of agents to run against. |
MITRE Caldera Delete Operation | |
MITRE Caldera Operation Source ID | |
MITRE Caldera Operation Jitter | Jitter is defined as a fraction (default is '2/8') |
MITRE Caldera Operation Visbility | How visible should the operation be to the defense (1-100), default is 51 |
MITRE Caldera Operation ID | |
MITRE Caldera Operation Name | |
MITRE Caldera Schedule Date Time |
Name | Description |
---|---|
Caldera Operation |
Name | Description |
---|---|
MitreCaldera (Community Contribution) | Mitre Caldera can be used to test endpoint security solutions and assess a network's security posture against the common post-compromise adversarial techniques contained in the ATT&CK model. CALDERA leverages the ATT&CK model to identify and replicate adversary behaviors as if a real intrusion is occurring. |
Name | Description |
---|---|
Caldera Operation |
Name | Description |
---|---|
Caldera Operation | This playbook is used to create a new Operation in Mitre Caldera. |
Name | Description |
---|---|
CalderaPopulatePlannerIDField | Populates the Planner ID Field with Planners from the MITRE Caldera |
CalderaPopulateAgents | Populates the agents with agents from the MITRE Caldera |
CalderaReadOnlyFields | Prevents specific fields from being set manually. |
CalderaPopulateSourceIDField | Populates the Source ID Field with Sources from the MITRE Caldera |
CalderaOperationPostProcessing | Post processing script for MITRE Caldera incidents. |
CalderaGetOperationReport | Populates the Operation Facts with Facts from the MITRE Caldera |
CalderaStartOperation | This script is used in the MITRE Caldera Operation playbook. It will auto-complete the task that waits for a specific date and time for the operation to start. It should not be used manually. |
CalderaPopulateObjectiveIDField | Populates the Objective ID Field with Objectives from the MITRE Caldera |
CalderaPopulateEventLogs | Populates the Event Logs with Event Logs from the MITRE Caldera |
CalderaPopulateAdversaryIDField | Populates the Adversary ID Field with Adversaries from the MITRE Caldera |
Name | Description |
---|---|
MITRE Caldera Operation Adversary ID | |
MITRE Caldera Operation Auto Close | |
MITRE Caldera Operation ID | |
MITRE Caldera Operation Group | Which collection of agents to run against. |
MITRE Caldera Delete Operation | |
MITRE Caldera Operation Obfuscator | |
MITRE Caldera Operation Autonomy | |
MITRE Caldera Operation Planner ID | |
MITRE Caldera Schedule Date Time | |
MITRE Caldera Operation Host Group | Which Host Group to run against. |
MITRE Caldera Operation Visbility | How visible should the operation be to the defense (1-100), default is 51 |
MITRE Caldera Operation Name | |
MITRE Caldera Schedule Operation | |
MITRE Caldera Operation Use Learning Parsers | Whether learning parsers are used. |
MITRE Caldera Operation Source ID | |
MITRE Caldera Operation State | State of the operation |
MITRE Caldera Operation Objective ID | |
MITRE Caldera Schedule Date Time SLA | |
MITRE Caldera Operation Jitter | Jitter is defined as a fraction (default is '2/8') |
Name | Description |
---|---|
Caldera Operation |
Name | Description |
---|---|
MitreCaldera (Community Contribution) | Mitre Caldera can be used to test endpoint security solutions and assess a network's security posture against the common post-compromise adversarial techniques contained in the ATT&CK model. CALDERA leverages the ATT&CK model to identify and replicate adversary behaviors as if a real intrusion is occurring. |
Name | Description |
---|---|
Caldera Operation | This playbook is used to create a new Operation in Mitre Caldera. |
Pack Name | Pack By |
---|---|
Base | By: Cortex XSOAR |
Filters And Transformers | By: Cortex XSOAR |
Pack Name | Pack By |
---|
Pack Name | Pack By |
---|---|
Base | By: Cortex XSOAR |
Filters And Transformers | By: Cortex XSOAR |
Supported By | Community | |
Created | July 21, 2022 | |
Last Release | December 15, 2024 |