Caldera™ is a cybersecurity framework developed by MITRE that empowers cyber practitioners to save time, money, and energy through automated security assessments. With Caldera, your cyber team can build a specific threat (adversary) profile and launch it in a network to see where you may be susceptible. This helps with testing defenses and training blue teams on how to detect specific threats. Caldera also enables automated testing of cyber defenses, manual red-team engagements, and cutting-edge research in cyber gaming, emulation & simulation, automated offensive & defensive cyber operations, cyber defense analytics, and cyber defense models.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
Tool for enumerating proxy configurations and generating CobaltStrike-compatible shellcode.
Advanced command and control tool for red teaming and adversary simulation with extensive features and evasion capabilities.
SharpEDRChecker scans system components to detect security products and tools.
AzureC2Relay enhances security by validating and relaying Cobalt Strike beacon traffic through Azure Functions.
BeEF is a specialized penetration testing tool for exploiting web browser vulnerabilities to assess security.
SharpShares efficiently enumerates and maps network shares and resolves names within a domain.
Kali Linux is a specialized Linux distribution for cybersecurity professionals, focusing on penetration testing and security auditing.
A digital archive of the internet, allowing users to capture and browse archived web pages.
A suite of tools for Wi-Fi network security assessment and penetration testing.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.