unfetter-analytic
unfetter-analytic copied to clipboard
unfetter-discover
Main Build directory
need to come up with a way to test each analytic, logstash configuration, etc.
Use the fields from STIX 2.0 observed data formats. https://docs.google.com/document/d/1IvkLxg_tCnICsatu2lyxKmWmh1gY2h8HUNssKIE-UIA/edit#heading=h.p49j1fwoxldc Leverage HA Security's logstash config file methodology https://github.com/HASecuritySolutions/Logstash/tree/master/configfiles Remove SPARK and move to strickly Elasticsearch query model
Need to load kibana boards from a file rather than automated.
Look at https://github.com/redcanaryco/atomic-red-team or something similar to build red team executions into the windows test systems
Need a better way to allow users to interact with the analytic system, running analytics.