Hello Jesús, Welcome to Metron!
Besides the documentation, the best way to explore and getting familiar with Metron is to try the single node deployment: https://github.com/apache/metron/tree/master/metron-deployment/development/centos6 I would be a bit mindful of the pre-requisites before starting with deploy. You can validate them by running platform-info.sh at metron/metron-deployment/scripts. Just shout out if you are having trouble. Cheers, Anand From: Wendy Edwards <[email protected]> Reply-To: "[email protected]" <[email protected]> Date: Thursday, February 7, 2019 at 11:27 PM To: "[email protected]" <[email protected]> Subject: Re: Where to start? There's some documentation online at https://metron.apache.org/current-book/index.html On Thu, Feb 7, 2019 at 11:45 AM Jesús Daniel Jiménez Paniagua <[email protected]<mailto:[email protected]>> wrote: Hi all! This is my first time using this mail list, so hello everyone. I need some help with where to start? I'm SIEM aware (I've worked in a SOC for years), I'm experienced in systems and network administration. One this said, where to start? I would like to work on a PoC environment to get a deep enough idea and get knowledge to explain Metron features and capabilities to my managers. I would like to read architecture docs and, if it exists, something like a 101 tutorial, the easiest and fastest way to have a PoC environment... Thanks!!
