Workflow Apps FAQ
Can I set up a malware analysis sandbox for submitted files?
TruSTAR does not have a sandbox environment, but we can pull reports from any sandbox tool you have into a private enclave. Contact your TruSTAR account manager for more information.
Can I replicate data from our instances to a local MISP?
Yes, you can. TruSTAR does not charge for replicating data to a local MISP .
Is there a TruSTAR to MISP/ELK integration?
No, TruSTAR only offers a MISP to TruSTAR integration.
You can use TruSTAR's Python SDK to build a script to take data from TruSTAR and send it to MISP/ELK.
Is ELK on the integrations roadmap?
No, not currently. Users are able to use our SDK to write a script to enrich ELK data.
Is TheHive on the roadmap for integrations?
No, not currently. This can be explored upon further request.