ON-PREMISE

#Create a Virtual Machine & Install an OS onto the VM

#Upgrade the system repository
root@oco:~$ sudo apt update

#Upgrade the system to the newest version
root@oco:~$ sudo apt upgrade

#Identify the installed Python3 version on the system & install python3.6.1+ if not installed
root@oco:~$ python3 --version
root@oco:~$ sudo apt search python3 
root@oco:~$ sudo apt install python3 
 * Mitre Caldera requires Python3.6.1+
 
#Identify the install pip3 version on the system & install pip3 if not installed
root@oco:~$ pip3 --version 
root@oco:~$ sudo apt search python3-pip 
root@oco:~$ sudo apt install python3-pip

#Install GoLang
# * remove any previous golang installation
# * download golang
# * extract golang to /usr/local directory
# * update the PATH environment variable 
root@oco:~$ rm -rf /usr/local/go 
root@oco:~$ wget https://go.dev/dl/go1.18.linux-amd64.tar.gz 
root@oco:~$ tar -C /usr/local -xzf go1.18.linux-amd64.tar.gz
 * -C means to change to the specified directory prior to performing any operations 
root@oco:~$ export PATH=$PATH:/usr/local/go/bin 
 * you can add the updated path to "/etc/profile" for a system-wide installation 
 * Installing Go is optional, but it enables the dynamic compilation of agent executables, which helps improve evasion of AV detection.

#Install git
root@oco:~$ sudo apt install git
root@oco:~$ cd /Desktoop 

#Clone the Mitre Caldera repository and install all dependencies
root@oco:~$ git clone https://github.com/mitre/caldera.git --recursive --branch 4.0.0-beta
root@oco:~$ cd /Desktop/caldera
 
#Install caldera requirements
root@oco:~$ pip3 install -r requirements.txt

#Configure caldera usernames and passwords
root@oco:~$ cp ~/Desktop/caldera/conf/default.yml ~/Desktop/caldera/conf/local.yml 
 * edit the local.yml file IOT change usernames & PW as required 
    - users 
       - blue team: blue/admin 
       - red team: admin/admin & red/admin 
       - change the port Caldera uses from time to time IOT prevent the DCO team from recognizing it or memorizing it

#Start the Mitre Caldera server
root@oco:~$ python3 server.py --insecure 
 * --insecure means there is no SSL certificate installed 
 * follow https://www.blackhillsinfosec.com/how-to-install-mitre-caldera-and-configure-your-ssl-certificate/ if you made your caldera web interface reachable over the Internet

#Access the main Mitre Caldera server
#Access the Red Team page
root@oco:~$ BROWSER > localhost:8888
 * ALT: {localIP}:8888 
    - ID: red:admin