[jira] [Comment Edited] (METRON-491) Collect Test Datasets

["Yohann (JIRA)" <ji...@apache.org>]

    [ https://issues.apache.org/jira/browse/METRON-491?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15558244#comment-15558244 ] 

Yohann edited comment on METRON-491 at 10/21/16 9:03 AM:
---------------------------------------------------------

* Logs
** https://www.sec.gov/data/edgar-log-file-data-set
** http://www.westpoint.edu/crc/SitePages/DataSets.aspx

* Pcap
** http://www.netresec.com/?page=PcapFiles
** https://mcfp.felk.cvut.cz/publicDatasets/ 



was (Author: 2xyo):
* Logs
** https://www.sec.gov/data/edgar-log-file-data-set
** http://www.westpoint.edu/crc/SitePages/DataSets.aspx

* Pcap
** http://www.netresec.com/?page=PcapFiles


> Collect Test Datasets
> ---------------------
>
>                 Key: METRON-491
>                 URL: https://issues.apache.org/jira/browse/METRON-491
>             Project: Metron
>          Issue Type: Task
>            Reporter: Matt Foley
>             Fix For: 0.3.0BETA
>
>
> Enhanced testing of Metron, especially performance testing, would be aided by having data sets of realistic size, that exercise one or more of the various parts of Metron:
> * each Parser (bro, yaf, snort, squid, ...)
> * each Enhancer (geo, user, assets, ...)
> * each Threat Intel module (Soltra, HailATaxi, ...)
> Data sets must meet the following criteria:
> * opensource or public domain 
> * suitably scrubbed, containing no Personally Identifiable Information
> * unencumbered by company sensitivity, security, or IP concerns.
> They may take the form of raw PCAP streams, or they may be already parsed or otherwise pre-processed.
> If you know of opensource or public domain data sets of this kind, please respond with the URL, in a comment below.
> If you have an appropriate data set that your company would be willing to contribute, please also respond and we will help in any way we can.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)