Re: Define a function that can be used in Stellar

Thanks, All. Yes, Nick. It is highly related to our use case and the way that we are going to enrich events with assets and vulnerability properties. It is not a general case at all. Cheers, Ali On Thu, Jan 18, 2018 at 5:43 AM, Matt Foley wrote: > Besides the example code Simon mentioned at ht

Upgrade from 0.4.1 to 0.4.2 fails on Alerts UI

Hello List, Targeting a wider audience here, see bug report https://issues.apache.org/jira/browse/METRON-1408. Basically, when I upgrade from 0.4.1 to 0.4.2 I run into issues with the Alerts UI. I built the Metron 0.4.2 RPMs and did an upgrade of my current 0.4.1 install with: "rpm -Uvh metr

Stellar on another platform?

Hey all, We've come across the design decision where we'd like to use Metron tooling as a framework to build our SIEM around. This being the case, stellar is something that we'd like to use, but we've currently got different enrichment and normalization layers. So my question is this: Has anyo

Re: [ALL] List Replies

+1, if it doesn't happen on the list, it doesn't happen in Apache. On Wed, Jan 17, 2018 at 6:55 AM, Otto Fowler wrote: > The goal of the user list is to foster the Apache Metron community by > allowing for common discussion of the uses and application of Apache > Metron. The list’s archives als

Re: Define a function that can be used in Stellar

Besides the example code Simon mentioned at https://github.com/apache/metron/tree/master/metron-stellar/stellar-3rd-party-example , there is some documentation at http://metron.apache.org/current-book/metron-stellar/stellar-common/3rdPartyStellar.html From: Nick Allen Reply-To: "user@metr

Re: Metron Install - Vagrant provision error.

If the newest 8 doesn’t work that would be a bug, imho On January 17, 2018 at 07:20:35, Srikanth Nagarajan (s...@gandivanetworks.com) wrote: What is the highest version of Java supported? __ *Srikanth Nagarajan * President *Gandiva Networks Inc* *732.690.1884 <732.690.1884>*

Re: Define a function that can be used in Stellar

If something we have already does not fit the bill, I would recommend creating that function in Java. Since you described it as "a bit complex" and "the logic would be complicated" I don't see any value in defining something like this in Stellar with named functions. Best On Wed, Jan 17, 201

Re: Define a function that can be used in Stellar

Have you looked at the recent TLSH functions in Stellar? We already have that for similarity preserving hashes. Simon > On 17 Jan 2018, at 12:35, Ali Nazemian wrote: > > It is a bit complex. We want to create a function that accepts a list of > arguments for an asset and generate an asset ide

Re: Define a function that can be used in Stellar

It is a bit complex. We want to create a function that accepts a list of arguments for an asset and generate an asset identifier that can be used as a row_key for the enrichment store. The logic would be complicated, though. We may need to include some sort of similarity aware hash function as a pa

Re: Metron Install - Vagrant provision error.

What is the highest version of Java supported? __ Srikanth Nagarajan President Gandiva Networks Inc 732.690.1884 Mobile s...@gandivanetworks.com www.gandivanetworks.com > On Jan 17, 2018, at 5:22 PM, Otto Fowler wrote: > > We do not support Java 9 yet. > > > >> On Janu

[ALL] List Replies

The goal of the user list is to foster the Apache Metron community by allowing for common discussion of the uses and application of Apache Metron. The list’s archives also provide a valuable resource for people to look through for ideas and answers to questions. Unless someone specifically reques

Re: Metron Install - Vagrant provision error.

We do not support Java 9 yet. On January 17, 2018 at 04:25:29, Srikanth Nagarajan (s...@gandivanetworks.com) wrote: InvocationTargetException: java.nio.file.NotDirectoryException: /Library/Java/JavaVirtualMachines/jdk-9.0.1.jdk/Contents/Home/lib/modules

Re: Define a function that can be used in Stellar

Ali - Can you describe the logic that you are trying to perform? That would be useful as a use case to help drive a discussion around creating named functions in Stellar. On Wed, Jan 17, 2018 at 6:29 AM Ali Nazemian wrote: > Thanks, Simon. We have already got a script to deal with classpath >

Re: Define a function that can be used in Stellar

Thanks, Simon. We have already got a script to deal with classpath management for the parsers. We should be able to use it for this extension as well. Yeah, I agree. It will be much easier to define functions on the fly and use them afterwards. It could be defined as Lambda or custom function. Re

Re: Define a function that can be used in Stellar

https://github.com/apache/metron/tree/master/metron-stellar/stellar-3rd-party-example gives good details on how to add a stellar function. Stellar will pick up an annotated function on its class path, so to

Re: Define a function that can be used in Stellar

Hi Simon, Yes, that is exactly what we are looking for. Is there any example regarding adding a Stellar function in Java? Hopefully, we don't need to rebuild the corresponding modules for this? Cheers, Ali On Wed, Jan 17, 2018 at 8:40 PM, Simon Elliston Ball < si...@simonellistonball.com> wrote:

Re: Define a function that can be used in Stellar

At present you can certainly create custom stellar functions in Java. I’m guessing however that what you’re looking to do is create a kind of function that combines a number of stellar functions to avoid repetition, or to ensure consistency of certain parameters for example. Is that what you’re

Re: Metron Install - Vagrant provision error.

Hi - Thanks.. Solved the issue by modifying the command line in "mvn"  to exclude the "-T 2C" (multithreading) as some of the plugin modules did not support it.  Went much further along.  Now I am struck at the stellar compilation stage.  It seems to be a java related issue but not sure what..   T