1 TRA-001

Test execution results for the test case (TST) referred in the parent link.

Test environment details

  • vm-cyfort-idps-escape

Parent links: TST-001 Start ADBox interactive console

Attribute Value
test_date 23-07-2024
tester AGI
defect_category 0

2 TRA-002

Test execution results for the test case (TST) referred in the parent link.

Test environment details

  • vm-cyfort-idps-escape

Parent links: TST-002 Installation of ADBox via pipx

Attribute Value
test_date 24-07-2024
tester AGI
defect_category 4
defect_description Missing .whl file (step 4)
comments Add link to zip file in test step 2.

3 TRA-003

The docker build command fails. See reference. Test repeated.

Test environment details

  • vm-cyfort-idps-escape

docs/specs/tra/assets/tra-003_Dev_container_error.png

Parent links: TST-003 Install ADBox as dev container

Attribute Value
test_date 24-07-2024
tester AGI
defect_category 4
defect_description Dev container build fail - not enough memory

4 TRA-004

Test execution results for the test case (TST) referred in the parent link. Container size ~26GB Change last step: entrypoint poetry run adbox

Test environment details

  • vm-cyfort-idps-escape

Parent links: TST-003 Install ADBox as dev container

Attribute Value
test_date 24-07-2024
tester AGI
defect_category 1
defect_description entrypoint specification unclear

5 TRA-005

Test execution results for the test case (TST) referred in the parent link.

Test environment details

  • vm-cyfort-idps-escape

Parent links: TST-004 Run ADBox console

Attribute Value
test_date 24-07-2024
tester AGI
defect_category 0

6 TRA-006

Test execution results for the test case (TST) referred in the parent link.

Test environment details

  • vm-cyfort-idps-escape
  • wazuh host : "192.168.5.5"

Parent links: TST-005 Run ADBox in default mode with a Wazuh connection

Attribute Value
test_date 25-07-2024
tester AGI
defect_category 0
comments Suggestion: decrese the number of default epochs

7 TRA-007

Output:

Running AD driver in default mode.
JSON file 'detector_input_parameters.json' saved at /home/root/siem-mtad-gat/siem_mtad_gat/assets/detector_models/5967c756-0a7a-41f5-8fa3-914ba9758fed/input/detector_input_parameters.json.
Could not establish a connection with OpenSearch.
More details logged in /home/root/siem-mtad-gat/siem_mtad_gat/logs/output_logs/siem_mtad_gat.data_ingestion.wazuh.wazuh_data_ingestor.log
The file '/home/root/siem-mtad-gat/siem_mtad_gat/assets/data/train/wazuh-alerts-*.*-2024.07.*.json' does not exist, returning all default data.

Problem with file names ~/../siem_mtad_gat/assets/data/train$ ls wazuh-alerts-.-2024.03..json wazuh-alerts-.-2024.05..json wazuh-alerts-.-2024.07..json wazuh-alerts-.-2024.04..json wazuh-alerts-.-2024.06..json

Test environment details

  • vm-cyfort-idps-escape

Parent links: TST-006 Run ADBox in default mode without a Wazuh connection

Attribute Value
test_date 25-07-2024
tester AGI
defect_category 2
defect_description off-line data not avaliable

8 TRA-008

Test execution results for the test case (TST) referred in the parent link.

Test environment details

  • vm-cyfort-idps-escape
  • wazuh host : "192.168.5.5"

Parent links: TST-007 ADBox use case 1 with a Wazuh connection

Attribute Value
test_date 25-07-2024
tester AGI
defect_category 0

9 TRA-009

Output:

Running AD driver in default mode.
JSON file 'detector_input_parameters.json' saved at /home/root/siem-mtad-gat/siem_mtad_gat/assets/detector_models/5967c756-0a7a-41f5-8fa3-914ba9758fed/input/detector_input_parameters.json.
Could not establish a connection with OpenSearch.
More details logged in /home/root/siem-mtad-gat/siem_mtad_gat/logs/output_logs/siem_mtad_gat.data_ingestion.wazuh.wazuh_data_ingestor.log
The file '/home/root/siem-mtad-gat/siem_mtad_gat/assets/data/train/wazuh-alerts-*.*-2024.07.*.json' does not exist, returning all default data.

Problem with file names

~/../siem_mtad_gat/assets/data/train$ ls
wazuh-alerts-.-2024.03..json  wazuh-alerts-.-2024.05..json  wazuh-alerts-.-2024.07..json
wazuh-alerts-.-2024.04..json  wazuh-alerts-.-2024.06..json

Test environment details

  • vm-cyfort-idps-escape

Parent links: TST-008 ADBox use case 1 without a Wazuh connection

Attribute Value
test_date 25-07-2024
tester AGI
defect_category 2
defect_description off-line data not avaliable

10 TRA-010

Test execution results for the test case (TST) referred in the parent link.

Test environment details

  • vm-cyfort-idps-escape
  • wazuh host : "192.168.5.5"

Parent links: TST-009 ADBox use case 2 with a Wazuh connection

Attribute Value
test_date 25-07-2024
tester AGI
defect_category 0

11 TRA-011

Test execution results for the test case (TST) referred in the parent link.

Test environment details

  • vm-cyfort-idps-escape
  • wazuh host : "192.168.5.5"

Parent links: TST-011 ADBox use case 3 with a Wazuh connection

Attribute Value
test_date 25-07-2024
tester AGI
defect_category 0

12 TRA-012

Test execution results for the test case (TST) referred in the parent link.

Test environment details

  • vm-cyfort-idps-escape
  • wazuh host : "192.168.5.5"

Parent links: TST-013 ADBox use case 4 with a Wazuh connection

Attribute Value
test_date 25-07-2024
tester AGI
defect_category 0

13 TRA-013

Test execution results for the test case (TST) referred in the parent link.

Test environment details

  • vm-cyfort-idps-escape
  • wazuh host : "192.168.5.5"

Parent links: TST-015 ADBox use case 5 with a Wazuh connection

Attribute Value
test_date 25-07-2024
tester AGI
defect_category 0

14 TRA-014

Test execution results for the test case (TST) referred in the parent link.

Test environment details

  • vm-cyfort-idps-escape
  • wazuh host : "192.168.5.5"

Suggestions

  • For prediction the response should be null if the data are not avaliabe.

Parent links: TST-016 ADBox use case 5 without a Wazuh connection

Attribute Value
test_date 26-07-2024
tester AGI
defect_category 0

15 TRA-015

Test execution results for the test case (TST) referred in the parent link.

Test environment details

  • vm-cyfort-idps-escape
  • wazuh host : "192.168.5.5"

Suggestions

  • For prediction the response should be null if the data are not avaliabe.

Parent links: TST-014 ADBox use case 4 without a Wazuh connection

Attribute Value
test_date 26-07-2024
tester AGI
defect_category 0

16 TRA-016

Test execution results for the test case (TST) referred in the parent link.

Test environment details

  • vm-cyfort-idps-escape
  • wazuh host : "192.168.5.5"

Parent links: TST-012 ADBox use case 3 without a Wazuh connection

Attribute Value
test_date 26-07-2024
tester AGI
defect_category 0

17 TRA-017

Test execution results for the test case (TST) referred in the parent link.

Test environment details

  • vm-cyfort-idps-escape
  • wazuh host : "192.168.5.5"

Suggestions

  • For prediction the response should be null if the data are not avaliabe.

Parent links: TST-010 ADBox use case 2 without a Wazuh connection

Attribute Value
test_date 26-07-2024
tester AGI
defect_category 0

18 TRA-018

Test execution results for the test case (TST) referred in the parent link.

Test environment details

  • vm-cyfort-idps-escape
  • wazuh host : "192.168.5.5"

Parent links: TST-008 ADBox use case 1 without a Wazuh connection

Attribute Value
test_date 26-07-2024
tester AGI
defect_category 0

19 TRA-019

Test execution results for the test case (TST) referred in the parent link.

Test environment details

  • vm-cyfort-idps-escape
  • wazuh host : "192.168.5.5"

Parent links: TST-006 Run ADBox in default mode without a Wazuh connection

Attribute Value
test_date 26-07-2024
tester AGI
defect_category 0

20 TRA-020

Test execution results for the test case (TST) referred in the parent link.

Test environment details

  • vm-cyfort-idps-escape

Parent links: TST-003 Install ADBox as dev container

Attribute Value
test_date 29-07-2024
defect_category 0