Skip to content

Injectors

Injectors list

You are looking for the available injectors? The list is in the OpenBAS Ecosystem.

Introduction

Injectors are one of the cornerstones of the OpenBAS platform, they are responsible for pushing simulation actions to third party systems. According to their functionality and use case, they are categorized in the following classes.

List of Injectors

📡 Endpoint payloads execution

Those injectors are special as they required an executor (neutral agent) to be launched on endpoints. When they register to the platform, they inform available executors on how to spawn them on the 3 currently supported platforms: Windows, Linux and MacOS.

Some of them :

  • Caldera: Facilitates the use of the MITRE Caldera framework, empowering administrators to leverage advanced simulation capabilities. For more information concerning the Caldera injector, please refer to the dedicated documentation page.

🌐 Communication & social medias

Those injectors are used to push information to human assets (aka players) such as emails, SMS, phone calls, instant messaging etc.

Some of them :

  • Challenges: Manages inject "publish challenges". To find more information more about this type of inject, please refer to the dedicated documentation section.
  • Email: Manages the sending of injects' emails, enabling communication and dissemination of simulation-related information.
  • Manual: Platform functionality for creating manual action reminders, allowing administrators to prompt specific actions to be performed manually. To find more information about the related inject, please refer to the dedicated documentation section.
  • Media pressure: Manages inject "publish channel pressure". To find more information about this type of inject, please refer to the dedicated documentation section.
  • OVHCloud SMS Platform: Facilitates SMS messaging for injects, providing an additional communication channel for simulation participants.

🧯 Incident Response & Case Management

Those injectors are used to inject real or fake information into case management, ticketing and incident response systems.

💉 Others

All other system OpenBAS can inject, as part of breach and attack simulation campaigns.

Some of them :

  • Airbus CyberRange (Lade): Integration with the Airbus CyberRange platform, enabling seamless interaction and collaboration with CyberRange environments. For more information concerning CyberRange, please refer to the Airbus website.
  • HTTP query: Executes HTTP requests on external services, facilitating interactions with external systems. To find more information about the related inject, please refer to the dedicated documentation section.
  • OpenCTI: Integration with an OpenCTI platform, enhancing simulation capabilities with access to threat intelligence and automatic scenario generation based on observed threat activities.

Agents

Tips

If you want to learn more about the concept and features of agents, you can have more info here.

For certain injectors, deploying an agent on the target machine is necessary to facilitate integration with OpenBAS. These agents are software programs that connect back to OpenBAS at certain intervals to get instructions.

To access the agents and installation instructions, navigate to the dedicated page located in the top right-hand corner (button with the screen logo).

Detailed guidance on installing the agents, along with downloadable packages, is provided on this page. Agents are available for various operating systems, including Windows, Linux, and MacOS, ensuring compatibility across different environments.

As of now, only the Caldera injector requires the installation of an agent. This agent enables full integration with the MITRE Caldera framework, unlocking advanced simulation capabilities and enhancing the overall effectiveness of simulation exercises. Full details of the Caldera agent are available in the MITRE documentation.

Install Agent panel with instructions