It would be great if soc-faker could take parameters or read an optional config file that would enable it to create logs that all appear to come from a single environment.
would generate logs where IPs (source or destination depending on the type of log generated) would only be in the 10.10.10.0/24 subnet, the machine/host names would be some variation of Faker, the usernames would be random but all have a format of first.last and the logs would only take place between 1300 - 1600 (up to the user to manipulate the timezones)
It would be great if soc-faker could take parameters or read an optional config file that would enable it to create logs that all appear to come from a single environment.
for example: subnet: 10.10.10.0/24 orgname: Faker users: first.last timeframe: 1300 - 1600
would generate logs where IPs (source or destination depending on the type of log generated) would only be in the 10.10.10.0/24 subnet, the machine/host names would be some variation of Faker, the usernames would be random but all have a format of first.last and the logs would only take place between 1300 - 1600 (up to the user to manipulate the timezones)
That would be great.