Online Instance: https://opencybersecurityalliance.github.io/cacao-roaster/
CACAO Roaster is a sub-project of the Open Cybersecurity Alliance. It is a web application for generating, parsing and validating, manipulating, and visualizing CACAO v2.0 playbooks.
- CACAO Roaster Sub-Project
- Table of contents
- Introduction
- Getting Started
- Governance
- CLA & Non-assert signatures required
As cyber systems become increasingly complex and cybersecurity threats become more prominent, defenders must prepare, coordinate, automate, document, and share their response methodologies to the extent possible. The CACAO standard was developed to satisfy the above requirements providing a common machine-readable framework and schema to document cybersecurity operations processes, including defensive tradecraft and tactics, techniques, and procedures.
For wider adoption of the CACAO standard, it is crucial to support and simplify the playbook creation, modification, and understanding. CACAO Roaster supports the aforementioned by providing a faster and easier way to create, manipulate, visualize and share CACAO playbooks in a “no-code” graphical manner.
The CACAO Roaster web application complies fully to the CACAO v2 CS01 specification.
The CACAO Roaster is now in a stable version 1.0.0 and is under continuous maintenance and further development. The development team has an overview of open issues/working items, and we will shortly share them on the GitHub issues page.
CACAO, STIX, OpenC2
Start screen of the application.
Creating a new playbook.
These instructions will get you a copy of the project up and running on your local machine for development purposes. See deployment for notes on how to deploy the project on a live system.
Prerequisites:
- node >= 20.5.0
- npm >= 9.8.0
npm i
Run the project locally (in development mode)
npm run start
The CACAO Roaster will run locally on: http://localhost:3000/
Building the project for production
npm run build
Install serve service on hosting machine
npm install serve
Host production bundle
serve dist
Or use Docker to spin up a fully functioning container
docker build -t cacao-roaster .
docker run -it -p 3000:3000 cacao-roaster
Add a brief explanation of what kind of contributions you are looking for and what your requirements are for accepting them. Add a link to CONTRIBUTING.md and a link to [CODE_OF_CONDUCT](link to your code_of_conduct.md file).
- Mateusz Zych: https://github.com/mateusdz
- Vasileios Mavroeidis: https://github.com/Vasileios-Mavroeidis
Where can people ask for help: this can be any combination of an issue tracker, Slack, a chat room, an email address, etc.
Stay up to date on meetings, announcements and other discussions with the CACAO Roaster mailing list. To subscribe, send an empty email to [email protected].
CACAO Roaste has a Slack channel on the OCA Slack. Join here and say hi in #cacao-roaster.
Example text: This project is licensed under the Apache 2.0 License - see the LICENSE.md file for details
[Open Project name] operates under the terms of the Open Project Rules and the applicable license(s) specified in LICENSE.md. Further details can be found in GOVERNANCE.md.
All technical contributions must be covered by a Contributor's License Agreement. This requirement allows our work to advance through OASIS standards development stages and potentially be submitted to de jure organizations such as ISO. You will get a prompt to sign this document when you submit your first pull request to a project repository, or you can sign here. If you are contributing on behalf of your employer, you must also sign the ECLA here.