Tree Structure:

MRS
│   
├── HARC
│   
└── SRS
    │   
    ├── TST
    │   │   
    │   ├── TRA
    │   │   
    │   └── TRB
    │   
    └── LARC
        │   
        └── SWD

Published Documents:

Item Traceability:

MRS	HARC	SRS	TST	TRA	TRB	LARC	SWD
MRS-001 Open-Source Release
MRS-002 Command & Control	HARC-001 ADBox subsystem
MRS-002 Command & Control	HARC-003 IDPS-ESCAPE context
MRS-002 Command & Control		SRS-001 Centralized C&C Deployment	TST-020 Wazuh installation in a containerized environment
MRS-002 Command & Control		SRS-002 Endpoint Status Monitoring
MRS-003 Agent Data Centralization	HARC-003 IDPS-ESCAPE context
MRS-004 Multivariate Anomaly Detection	HARC-001 ADBox subsystem
MRS-004 Multivariate Anomaly Detection	HARC-002 ADBox architecture
MRS-004 Multivariate Anomaly Detection	HARC-003 IDPS-ESCAPE context
MRS-004 Multivariate Anomaly Detection		SRS-037 Anomaly-Based NIDS	TST-015 ADBox use case 5 with a Wazuh connection	TRA-013
MRS-004 Multivariate Anomaly Detection		SRS-037 Anomaly-Based NIDS	TST-016 ADBox use case 5 without a Wazuh connection	TRA-014
MRS-004 Multivariate Anomaly Detection		SRS-040 Data Management Subpackage				LARC-010 ADBox data manager	SWD-009 ADBox data managers
MRS-004 Multivariate Anomaly Detection		SRS-041 Time Management Package				LARC-011 ADBox TimeManager	SWD-012 ADBox TimeManager
MRS-005 Host-based Intrusion Detection	HARC-003 IDPS-ESCAPE context
MRS-005 Host-based Intrusion Detection		SRS-003 HIDS Agent Deployment	TST-021 Wazuh agent installation and enrollment: the local machine
MRS-005 Host-based Intrusion Detection		SRS-004 HIDS Agent Management	TST-023 Wazuh agent deletion and uninstallation
MRS-005 Host-based Intrusion Detection		SRS-004 HIDS Agent Management	TST-024 Wazuh agent unenrollment
MRS-006 NIDS Support	HARC-003 IDPS-ESCAPE context
MRS-006 NIDS Support		SRS-005 Network Monitoring Control
MRS-007 Intrusion Prevention	HARC-003 IDPS-ESCAPE context
MRS-007 Intrusion Prevention		SRS-006 Centralized NIDPS Prevention
MRS-008 Network Capture Forwarding	HARC-003 IDPS-ESCAPE context
MRS-008 Network Capture Forwarding		SRS-007 Raw Traffic Capture	TST-026 Port mirroring for remote machines
MRS-009 Docker Deployment Option		SRS-008 Dockerized NIDS Deployment	TST-019 Suricata installation in a containerized environment
MRS-011 Signature-based Host IDS	HARC-003 IDPS-ESCAPE context
MRS-011 Signature-based Host IDS		SRS-009 Signature-Based HIDS
MRS-012 XDR & SIEM Integration	HARC-003 IDPS-ESCAPE context
MRS-012 XDR & SIEM Integration		SRS-010 Centralized Threat Management	TST-025 Suricata and Wazuh Integration
MRS-013 Visual Dashboard	HARC-003 IDPS-ESCAPE context
MRS-013 Visual Dashboard		SRS-011 Network Event Visualization	TST-027 Traffic monitoring on Wazuh (local)
MRS-013 Visual Dashboard		SRS-011 Network Event Visualization	TST-028 Traffic monitoring on Wazuh (remote)
MRS-013 Visual Dashboard		SRS-011 Network Event Visualization	TST-032 Wazuh filters using the Wazuh Dashboard
MRS-013 Visual Dashboard		SRS-012 Host Event Visualization
MRS-013 Visual Dashboard		SRS-013 HIDS Agent Status Panel
MRS-014 Data Extraction API		SRS-014 Event Decoding & Transformation
MRS-014 Data Extraction API		SRS-015 Custom Rule Support
MRS-015 Software Configuration Management		SRS-016 Indexer Credential Management	TST-029 Changing password for Wazuh indexer users
MRS-015 Software Configuration Management		SRS-016 Indexer Credential Management	TST-030 Changing password for Wazuh API users
MRS-015 Software Configuration Management		SRS-017 Custom Data Source	TST-034 ADBox set up indexer host address
MRS-015 Software Configuration Management		SRS-018 ML Hyperparameter Tuning				LARC-012 ADBox ConfigManager	SWD-014 ADBox config managers
MRS-015 Software Configuration Management		SRS-019 Datatype Transformation Map
MRS-015 Software Configuration Management		SRS-020 Ingestion Field Update
MRS-015 Software Configuration Management		SRS-021 Default Use Case Update				LARC-012 ADBox ConfigManager	SWD-014 ADBox config managers
MRS-015 Software Configuration Management		SRS-022 Indexer Credentials Update	TST-035 ADBox change indexer credentil
MRS-016 Agent (De)Registration		SRS-023 Agent Registration Process	TST-022 Wazuh agent installation and enrollment: remote machine
MRS-017 Monitoring Frontend	HARC-003 IDPS-ESCAPE context
MRS-017 Monitoring Frontend		SRS-043 AD Data Visualization	TST-033 ADBox Wazuh integration Dashboard
MRS-018 Data Management Subsystem	HARC-003 IDPS-ESCAPE context
MRS-018 Data Management Subsystem		SRS-024 Event Querying Capability	TST-031 Wazuh filters using the RESTful API
MRS-018 Data Management Subsystem		SRS-042 Prediction Shipping Feature	TST-018 ADBox Create detector data stream
MRS-018 Data Management Subsystem		SRS-042 Prediction Shipping Feature				LARC-013 ADBox RequestResponseHandler
MRS-018 Data Management Subsystem		SRS-042 Prediction Shipping Feature				LARC-014 ADBox Shipper	SWD-015 ADBox Shipper and Template Handler
MRS-018 Data Management Subsystem		SRS-042 Prediction Shipping Feature				LARC-014 ADBox Shipper	SWD-016 ADBox shipping of prediction data
MRS-018 Data Management Subsystem		SRS-042 Prediction Shipping Feature				LARC-014 ADBox Shipper	SWD-017 ADBox creation of a detector stream
MRS-019 3rd-Party Open-source Signature-based NIDS	HARC-003 IDPS-ESCAPE context
MRS-020 Platform Independence	HARC-003 IDPS-ESCAPE context
MRS-020 Platform Independence		SRS-044 Platform-Independent Deployment	TST-003 Install ADBox as dev container	TRA-003
MRS-020 Platform Independence		SRS-044 Platform-Independent Deployment	TST-003 Install ADBox as dev container	TRA-004
MRS-020 Platform Independence		SRS-044 Platform-Independent Deployment	TST-003 Install ADBox as dev container	TRA-020
MRS-020 Platform Independence		SRS-044 Platform-Independent Deployment	TST-003 Install ADBox as dev container		TRB-003 TCER: ADBox in dev container
MRS-020 Platform Independence		SRS-046 Cross-Platform ADBox Deployment	TST-001 Deploy ADBox via Docker and shell scripts	TRA-001
MRS-020 Platform Independence		SRS-046 Cross-Platform ADBox Deployment	TST-001 Deploy ADBox via Docker and shell scripts		TRB-002 TCER: ADBox deployment
MRS-021 IaC Deployment		SRS-049 Anomaly Shipping to Indexer	TST-017 ADBox shipping install		TRB-001 TCER: install ADBox shipping
MRS-022 Network Endpoint Monitoring	HARC-003 IDPS-ESCAPE context
MRS-023 MITRE ATT&CK Mapping		SRS-025 MITRE ATT&CK Mapping	TST-036 Map a detected event to MITRE ATT&CKS
MRS-024 TIP API Integration
MRS-025 Threat Detection API		SRS-026 TIP Data Export
MRS-026 C5-DEC Development Model		SRS-045 High-Level Architecture Overview	TST-040 Visualize IDPS-ESCAPE high level architecture
MRS-027 Secure Inter-Component Communication
MRS-028 Standardized AD Input
MRS-029 Data Collection Scalability
MRS-030 Deep Learning Technique		SRS-027 ML-Based Anomaly Detection	TST-007 ADBox use case 1 with a Wazuh connection	TRA-008
MRS-030 Deep Learning Technique		SRS-027 ML-Based Anomaly Detection	TST-008 ADBox use case 1 without a Wazuh connection	TRA-009
MRS-030 Deep Learning Technique		SRS-027 ML-Based Anomaly Detection	TST-008 ADBox use case 1 without a Wazuh connection	TRA-018
MRS-030 Deep Learning Technique		SRS-027 ML-Based Anomaly Detection	TST-011 ADBox use case 3 with a Wazuh connection	TRA-011
MRS-030 Deep Learning Technique		SRS-027 ML-Based Anomaly Detection	TST-011 ADBox use case 3 with a Wazuh connection		TRB-007 TCER: ADBox UC scenario 3 with Wazuh
MRS-030 Deep Learning Technique		SRS-027 ML-Based Anomaly Detection	TST-012 ADBox use case 3 without a Wazuh connection	TRA-016
MRS-030 Deep Learning Technique		SRS-027 ML-Based Anomaly Detection				LARC-008 ADBox batch and real-time prediction flow	SWD-002 ADBox prediction pipeline
MRS-030 Deep Learning Technique		SRS-027 ML-Based Anomaly Detection				LARC-008 ADBox batch and real-time prediction flow	SWD-013 ADBox Prediction pipeline's inner body
MRS-030 Deep Learning Technique		SRS-038 Joint Host-Network Training	TST-013 ADBox use case 4 with a Wazuh connection	TRA-012
MRS-030 Deep Learning Technique		SRS-038 Joint Host-Network Training	TST-014 ADBox use case 4 without a Wazuh connection	TRA-015
MRS-030 Deep Learning Technique		SRS-038 Joint Host-Network Training				LARC-001 ADBox training pipeline flow	SWD-001 ADBox training pipeline
MRS-030 Deep Learning Technique		SRS-047 Interactive Use Case Builder	TST-004 Run ADBox console	TRA-005
MRS-030 Deep Learning Technique		SRS-047 Interactive Use Case Builder	TST-004 Run ADBox console		TRB-004 TCER: ADBox console
MRS-030 Deep Learning Technique		SRS-048 Default Detector Training	TST-005 Run ADBox in default mode with a Wazuh connection	TRA-006
MRS-030 Deep Learning Technique		SRS-048 Default Detector Training	TST-005 Run ADBox in default mode with a Wazuh connection		TRB-005 TCER: ADBox in default mode with Wazuh
MRS-030 Deep Learning Technique		SRS-048 Default Detector Training	TST-006 Run ADBox in default mode without a Wazuh connection	TRA-007
MRS-030 Deep Learning Technique		SRS-048 Default Detector Training	TST-006 Run ADBox in default mode without a Wazuh connection	TRA-019
MRS-031 Multiple ML Techniques	HARC-002 ADBox architecture
MRS-031 Multiple ML Techniques		SRS-028 Algorithm Comparison Feature
MRS-031 Multiple ML Techniques		SRS-039 Algorithm Selection Option				LARC-009 ADBox machine learning package	SWD-003 MTAD-GAT training
MRS-031 Multiple ML Techniques		SRS-039 Algorithm Selection Option				LARC-009 ADBox machine learning package	SWD-004 MTAD-GAT prediction
MRS-031 Multiple ML Techniques		SRS-039 Algorithm Selection Option				LARC-009 ADBox machine learning package	SWD-005 Peak-over-threshold (POT)
MRS-031 Multiple ML Techniques		SRS-039 Algorithm Selection Option				LARC-009 ADBox machine learning package	SWD-006 ADBox Predictor score computation
MRS-031 Multiple ML Techniques		SRS-039 Algorithm Selection Option				LARC-009 ADBox machine learning package	SWD-007 ADBox MTAD-GAT anomaly prediction
MRS-031 Multiple ML Techniques		SRS-039 Algorithm Selection Option				LARC-009 ADBox machine learning package	SWD-008 ADBox MTAD-GAT Predictor
MRS-032 Host and Network Ingestion	HARC-001 ADBox subsystem
MRS-032 Host and Network Ingestion	HARC-002 ADBox architecture
MRS-032 Host and Network Ingestion	HARC-003 IDPS-ESCAPE context
MRS-032 Host and Network Ingestion		SRS-029 Host & Network Ingestion				LARC-003 ADBox preprocessing flow	SWD-010 ADBox data transformer
MRS-032 Host and Network Ingestion		SRS-029 Host & Network Ingestion				LARC-003 ADBox preprocessing flow	SWD-011 ADBox preprocessing
MRS-033 API Data Retrieval	HARC-001 ADBox subsystem
MRS-033 API Data Retrieval	HARC-002 ADBox architecture
MRS-033 API Data Retrieval	HARC-003 IDPS-ESCAPE context
MRS-034 Standardized AD Output		SRS-030 AD Results Visualization	TST-037 Open prediction file of training data
MRS-034 Standardized AD Output		SRS-031 Training Loss Visualization	TST-038 Visualize train losses
MRS-034 Standardized AD Output		SRS-032 Predicted Anomalies Visualization	TST-039 Open prediction raw outcome
MRS-035 Secure Log Storage
MRS-036 Secure pcap Storage
MRS-037 Multiple Deployment Models	HARC-003 IDPS-ESCAPE context
MRS-037 Multiple Deployment Models		SRS-033 Remote Endpoint Deployment				LARC-004 IDPS-ESCAPE end-point integrated arch.
MRS-037 Multiple Deployment Models		SRS-033 Remote Endpoint Deployment				LARC-005 IDPS-ESCAPE end-point hybrid arch.
MRS-037 Multiple Deployment Models		SRS-033 Remote Endpoint Deployment				LARC-006 IDPS-ESCAPE end-point host-only IDS arch.
MRS-037 Multiple Deployment Models		SRS-033 Remote Endpoint Deployment				LARC-007 IDPS-ESCAPE end-point capture-only arch.
MRS-038 pcap Support
MRS-039 Offline AD	HARC-001 ADBox subsystem
MRS-039 Offline AD	HARC-002 ADBox architecture
MRS-039 Offline AD	HARC-003 IDPS-ESCAPE context
MRS-039 Offline AD		SRS-035 Offline Anomaly Detection	TST-009 ADBox use case 2 with a Wazuh connection	TRA-010
MRS-039 Offline AD		SRS-035 Offline Anomaly Detection	TST-009 ADBox use case 2 with a Wazuh connection		TRB-006 TCER: ADBox UC scenario 2 with Wazuh
MRS-039 Offline AD		SRS-035 Offline Anomaly Detection	TST-010 ADBox use case 2 without a Wazuh connection	TRA-017
MRS-039 Offline AD		SRS-035 Offline Anomaly Detection				LARC-002 ADBox historical data prediction pipeline flow	SWD-002 ADBox prediction pipeline
MRS-039 Offline AD		SRS-035 Offline Anomaly Detection				LARC-002 ADBox historical data prediction pipeline flow	SWD-013 ADBox Prediction pipeline's inner body
MRS-040 Signature-Based NIDS	HARC-003 IDPS-ESCAPE context
MRS-040 Signature-Based NIDS		SRS-036 Custom NIDS Rules
MRS-041 Standalone AD Subsystem	HARC-001 ADBox subsystem
MRS-041 Standalone AD Subsystem	HARC-002 ADBox architecture
MRS-041 Standalone AD Subsystem	HARC-003 IDPS-ESCAPE context
			TST-041 Add a short description here