{"id":28528813,"url":"https://github.com/bhanunamikaze/calderaagent","last_synced_at":"2025-08-30T17:46:09.987Z","repository":{"id":296862403,"uuid":"994780250","full_name":"Bhanunamikaze/CalderaAgent","owner":"Bhanunamikaze","description":"A lightweight Go Linux implant for MITRE Caldera purple‑team adversary emulation.","archived":false,"fork":false,"pushed_at":"2025-06-03T16:06:50.000Z","size":13,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":0,"default_branch":"main","last_synced_at":"2025-06-25T08:44:56.525Z","etag":null,"topics":["caldera","caldera-agent","caldera-plugin","go-implant","implant"],"latest_commit_sha":null,"homepage":"","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/Bhanunamikaze.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2025-06-02T13:21:50.000Z","updated_at":"2025-06-03T16:06:51.000Z","dependencies_parsed_at":"2025-06-03T02:41:37.721Z","dependency_job_id":null,"html_url":"https://github.com/Bhanunamikaze/CalderaAgent","commit_stats":null,"previous_names":["bhanunamikaze/calderaagent"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/Bhanunamikaze/CalderaAgent","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Bhanunamikaze%2FCalderaAgent","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Bhanunamikaze%2FCalderaAgent/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Bhanunamikaze%2FCalderaAgent/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Bhanunamikaze%2FCalderaAgent/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/Bhanunamikaze","download_url":"https://codeload.github.com/Bhanunamikaze/CalderaAgent/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Bhanunamikaze%2FCalderaAgent/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":272884345,"owners_count":25009599,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-08-30T02:00:09.474Z","response_time":77,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["caldera","caldera-agent","caldera-plugin","go-implant","implant"],"created_at":"2025-06-09T13:11:39.668Z","updated_at":"2025-08-30T17:46:09.969Z","avatar_url":"https://github.com/Bhanunamikaze.png","language":"Go","funding_links":[],"categories":[],"sub_categories":[],"readme":"# CalderaAgent\n\nA lightweight Go implant for [MITRE Caldera](https://github.com/mitre/caldera) purple‑team adversary emulation. The agent beacons to a Caldera server, pulls task instructions, executes them in an isolated process group (so EDR kill‑tree actions don’t terminate the agent), and returns rich telemetry so blue teams can measure prevention vs detection.\n\n---\n\n## Features\n\n| Capability | Notes | |\n| ------------------------- | ----------------------------------------------------------------------------------------- | - |\n| **Detached execution** | Uses `setsid` (Linux) so child process termination doesn’t propagate to the agent. | |\n| **Timeout watchdog** | Each instruction honours the `timeout` field and returns exit‑code `124` if exceeded. | |\n| **Blocked‑by‑EDR flag** | If the child receives `SIGKILL`, the agent reports `status = 1` for accurate SOC scoring. | |\n| **Verbose debugging** | Run with `CG_DEBUG=1` to print beacon traffic and execution traces. | |\n\n---\n\n## Quick start\n\n```bash\n# clone your fork\ngit clone https://github.com/Bhanunamikaze/CalderaAgent.git\ncd CalderaAgent\n\n# build for the local platform\nCGO_ENABLED=0 go build -o agent CalderaAgent.go\n\n# run (replace URL with your Caldera server)\n./agent https://caldera‑server:8888\n```\n\n### Cross‑compile examples\n\n```bash\n# Linux x64 (default)\ngo build -o agent-linux CalderaAgent.go\n\n# Windows x64\nGOOS=windows GOARCH=amd64 go build -o agent.exe CalderaAgent.go\n```\n\n---\n\n## Usage\n\n```\nUsage: ./agent \u003cC2 URL\u003e\n```\n\nOnce launched, the agent will beacon every `sleep` seconds, execute abilities, and post results back to `/beacon`.\n\n---\n\n## Telemetry schema\n\n| Field | Description |\n| ----------- | ----------------------------------------------------------- |\n| `exit_code` | Native process exit code (or 124 on timeout). |\n| `status` | 0 = executed / runtime error, 1 = blocked by EDR (SIGKILL). |\n| `pid` | Child PID for reference in EDR logs. |\n\n---\n\n## TODO \n- Windows Code Execution\n\n## License\n\nThis project is released under the MIT License. See `LICENSE` for full text.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fbhanunamikaze%2Fcalderaagent","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fbhanunamikaze%2Fcalderaagent","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fbhanunamikaze%2Fcalderaagent/lists"}