Caldera

Caldera is a cybersecurity framework designed to easily automate adversary emulation. It provides a scalable platform for simulating attacker behaviors in a controlled environment.

The tool assists manual red-teams by offering structured emulation capabilities, enabling teams to test defenses against realistic adversary tactics. It also supports automation of incident response workflows, streamlining detection and mitigation processes.

With an installed size of 69.93 MB, Caldera integrates numerous Python dependencies for web services, async operations, and security functions, making it suitable for comprehensive red team exercises.

Caldera operates as a server application (server.py) that loads plugins and manages an object store for emulation state. It supports environment files, logging levels, and plugin-specific startups, using async Python libraries like aiohttp for web interfaces and asyncssh for operations. The --fresh flag clears the object store on startup, ensuring clean sessions.