EXECUTIVE SUMMARY:

This document outlines the introduction and general setup of the openCTI platform on purple Kali Linux. All the steps, screenshots included in this document are conducted in a virtual environment. However, the steps below can easily be replicated in a real, production environment. Below is the general set up of this project, which consists of 3 parts:

Virtual Box (hardware solution)
Purple Kali Linux (operating system)
Portainer.io (Docker solution)
OpenCTI (main platform)

Figure 1: General Architecture of the OpenCTI project

PURPLE KALI LINUX:

Introduction:

For this setup, we will utilize the purple distro of the Debian based Kali Linux, mainly known as Purple Kali Linux, since this distro focuses heavily on the defensive side of cyber security, using this distro will create a unified environment for our blue teamers. The picture below is the official architecture of Kali Linux as an operating system.