Details
-
New Feature
-
Status: Done
-
Major
-
Resolution: Done
-
0.4.1
-
None
Description
Troubleshooting issues when programming against a live stream of data is difficult. It would be useful to have a means to run the entire threat triage process within the REPL before deploying your rule set on a Metron cluster. This creates a set of functions to allow simulation of Threat Triage inside of the Stellar REPL. This is useful for creating new triage rules, debugging existing triage rules, and to iterate quickly when testing rule sets.
Attachments
Issue Links
- links to