mitre/caldera external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

mitre/caldera

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/mitre/caldera)

Close

mitre / calderaView on GitHubMore

• External links
• Readme badge

Automated Adversary Emulation Platform

☆6,811Mar 9, 2026Updated last week

Alternatives and similar repositories for caldera

Users that are interested in caldera are comparing it to the libraries listed below

• redcanaryco / atomic-red-team

  View on GitHub
  Small and highly portable detection tests based on MITRE's ATT&CK.
  ☆11,688Updated this week
• NextronSystems / APTSimulator

  View on GitHub
  A toolset to make a system look as if it was the victim of an APT attack
  ☆2,719Sep 23, 2025Updated 5 months ago
• SigmaHQ / sigma

  View on GitHub
  Main Sigma Rule Repository
  ☆10,203Updated this week
• OTRF / ThreatHunter-Playbook

  View on GitHub
  A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more e…
  ☆4,495Jan 12, 2026Updated 2 months ago
• uber-common / metta

  View on GitHub
  An information security preparedness tool to do adversarial simulation.
  ☆1,137Apr 1, 2019Updated 6 years ago
• endgameinc / RTA

  View on GitHub
  ☆1,090May 1, 2019Updated 6 years ago
• clong / DetectionLab

  View on GitHub
  Automate the creation of a lab environment complete with security tooling and logging best practices
  ☆4,917Jul 6, 2024Updated last year
• rabobank-cdc / DeTTECT

  View on GitHub
  Detect Tactics, Techniques & Combat Threats
  ☆2,268Jan 21, 2026Updated last month
• BishopFox / sliver

  View on GitHub
  Adversary Emulation Framework
  ☆10,838Updated this week
• SpecterOps / BloodHound-Legacy

  View on GitHub
  Six Degrees of Domain Admin
  ☆10,551Mar 2, 2026Updated 2 weeks ago
• cobbr / Covenant

  View on GitHub
  Covenant is a collaborative .NET C2 framework for red teamers.
  ☆4,635Jul 18, 2024Updated last year
• OTRF / Security-Datasets

  View on GitHub
  Re-play Security Events
  ☆1,727Mar 20, 2024Updated last year
• SecurityRiskAdvisors / VECTR

  View on GitHub
  VECTR is a tool that facilitates tracking of your red and blue team testing activities to measure detection and prevention capabilities a…
  ☆1,553Updated this week
• bluscreenofjeff / Red-Team-Infrastructure-Wiki

  View on GitHub
  Wiki to collect Red Team infrastructure hardening resources
  ☆4,458Oct 1, 2025Updated 5 months ago
• its-a-feature / Mythic

  View on GitHub
  A collaborative, multi-platform, red teaming framework
  ☆4,358Updated this week
• Cyb3rWard0g / HELK

  View on GitHub
  The Hunting ELK
  ☆3,912Jun 1, 2024Updated last year
• sbousseaden / EVTX-ATTACK-SAMPLES

  View on GitHub
  Windows Events Attack Samples
  ☆2,523Jan 24, 2023Updated 3 years ago
• olafhartong / sysmon-modular

  View on GitHub
  A repository of sysmon configuration modules
  ☆2,993Aug 21, 2024Updated last year
• infosecn1nja / Red-Teaming-Toolkit

  View on GitHub
  This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.
  ☆10,170Sep 29, 2025Updated 5 months ago
• center-for-threat-informed-defense / adversary_emulation_library

  View on GitHub
  An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.
  ☆2,073May 28, 2025Updated 9 months ago
• MISP / MISP

  View on GitHub
  MISP (core software) - Open Source Threat Intelligence and Sharing Platform
  ☆6,171Updated this week
• guardicore / monkey

  View on GitHub
  Infection Monkey - An open-source adversary emulation platform
  ☆6,975May 1, 2025Updated 10 months ago
• splunk / attack_range

  View on GitHub
  A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data int…
  ☆2,456Updated this week
• redhuntlabs / RedHunt-OS

  View on GitHub
  Virtual Machine for Adversary Emulation and Threat Hunting
  ☆1,314Jan 22, 2025Updated last year
• LOLBAS-Project / LOLBAS

  View on GitHub
  Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
  ☆8,374Dec 6, 2025Updated 3 months ago
• outflanknl / RedELK

  View on GitHub
  Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term o…
  ☆2,624Dec 13, 2025Updated 3 months ago
• BC-SECURITY / Empire

  View on GitHub
  Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.
  ☆5,078Feb 25, 2026Updated 3 weeks ago
• mitre-attack / attack-navigator

  View on GitHub
  Web app that provides basic navigation and annotation of ATT&CK matrices
  ☆2,345Updated this week
• fortra / impacket

  View on GitHub
  Impacket is a collection of Python classes for working with network protocols.
  ☆15,534Updated this week
• JPCERTCC / LogonTracer

  View on GitHub
  Investigate malicious Windows logon by visualizing and analyzing Windows event log
  ☆3,137Oct 19, 2025Updated 4 months ago
• byt3bl33d3r / CrackMapExec

  View on GitHub
  A swiss army knife for pentesting networks
  ☆9,093Dec 6, 2023Updated 2 years ago
• mandiant / commando-vm

  View on GitHub
  Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mand…
  ☆7,542Oct 16, 2025Updated 5 months ago
• PowerShellMafia / PowerSploit

  View on GitHub
  PowerSploit - A PowerShell Post-Exploitation Framework
  ☆12,907Aug 17, 2020Updated 5 years ago
• EmpireProject / Empire

  View on GitHub
  Empire is a PowerShell and Python post-exploitation agent.
  ☆7,824Jan 19, 2020Updated 6 years ago
• mitre / cti

  View on GitHub
  Cyber Threat Intelligence Repository expressed in STIX 2.0
  ☆2,038Dec 19, 2025Updated 2 months ago
• alphasoc / flightsim

  View on GitHub
  A utility to safely generate malicious network traffic patterns and evaluate controls.
  ☆1,357Apr 4, 2024Updated last year
• infosecn1nja / AD-Attack-Defense

  View on GitHub
  Attack and defend active directory using modern post exploitation adversary tradecraft activity
  ☆4,801Jul 29, 2025Updated 7 months ago
• TheHive-Project / TheHive

  View on GitHub
  TheHive is a Collaborative Case Management Platform, now distributed as a commercial version
  ☆3,891Jul 25, 2025Updated 7 months ago
• Ne0nd0g / merlin

  View on GitHub
  Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.
  ☆5,512Apr 17, 2025Updated 11 months ago