Skip to content

ersin-erdal/data-generator

BranchesTags

Repository files navigation

Data Generator for Kibana Alerting Framework

This application generates and indexes test data for alerting framework by mimicking Beats.

Prerequisite:

  • jq installed globally brew install jq
  • npm

How to Run:

  • npm install
  • ./generate {indexer} indexers: custom-index, metrics, logs

Important : You can modify or add a new doc during the execution. Each indexer listens for changes in their own docs directory! So you can turn an active alert into recovered by changing a value in a doc.

Notes:

  • Elasticsearch and Kibana must be running.
  • It may require you to change generate file's permission.
    Then run: sudo chmod 755 'generate'

How it works:

It has two components: Indexers and Generators.

Indexers

Indexers are the modules that consume the given json files as schema under docs directories in of each of them to generate and push data to Elasticsearch.

There are 3 indexers:

  1. custom-index

    • Creates an index in Elasticsearch with the given name in its config file
    • Generates data by using the schemas under its docs directory. (The docs to use must be defined in its config as an array)
    • Pushes generated data to the index that it has created

    Generated data could be used to create an Index Threshold or Elasticsearch Query rule

  2. metrics

    • Installs Metricbeat (if it's not already installed) to format Kibana (Templates, ILM, Dashboard etc.)
    • Creates a Data Stream metricbeat-{version}
    • Generates data by using the schemas under its docs directory. You can add docs as many as you want but don't forget to add them to the modules config
    • Pushes generated data to the Data Stream that it has created

      Currently, the metricbeat version (8.1.2) is hardcoded in the generate script.
      Generated data could be used to create an Inventory or Metric Threshold rule

  3. logs

    • Installs Filebeat (if it's not already installed) to format Kibana (Templates, ILM, Dashboard etc.)
    • Creates a Data Stream filebeat-{version}
    • Generates data by using the schemas under its docs directory. You can add docs as many as you want but don't forget to add them to the modules config
    • Pushes generated data to the Data Stream that it has created

      Currently, the filebeat version (8.1.2) is hardcoded in the generate script.
      Generated data could be used to create a Log Threshold rule

Generators

Generators are basic data generators that takes an object tah has a generatorType and some other parameters and returns a result.

There are 7 generators:

  1. uuid
    Input schema: 
    { "generatorType": "uuid" }
    Output: A random uuid e.g. 19e99b66-b9c6-11ec-8422-0242ac120002

  2. iso8601
    Input schema: 
    { "generatorType": "iso8601" }
    Output: Datetime stamp of now e.g. 2022-04-11T17:56:39+00:00

  3. increment
    Input schema: 
    {
"generatorType": "increment",
"params": { "id": "1", "start": 1, "incrementBy": 5 }
}
    Output:
    At each execution, a new integer is returned, starting with start and increasing the last number held in memory by incrementBy. id is used to identify the latest value in memory. e.g. 1, 6, 11, 16, 21...

  4. randomInt
    Input schema: 
    {
"generatorType": "randomInt",
"params": { "min": 1, "max": 5 }
}
    Output: A random integer between min and max e.g. 2

  5. randomFloat
    Input schema: 
    {
"generatorType": "randomFloat",
"params": { "min": 1, "max": 5 }
}
    Output: A random float between min and max e.g. 2.01

  6. dictionay
    Input schema: 
    {
 "generatorType": "dictionary",
 "params": { "value": "word" }   
}
    Output: A random word from the given dictionary.
    Dictionaries are stored under src/generators/dictionaries directory.
    There are already two dictionaries word and names.
    A new dictionary can be simply defined by adding a json file to the dictionay directory and using the file name in the schema.

  7. sineWave
    Input schema: 
    {
 "generatorType": "sineWave",
 "params": {
   "min": 0,
   "max": 8,
   "period": 16
 }
}
    Output:
    At each execution, a new float is returned between min and max
    e.g. 3 - 4 - 5 - 6 - 7 - 6 - 5 - 4 - 3 - 2 - 1 - 2 - 3 .....
    For more info about sine wave: https://en.wikipedia.org/wiki/Sine_wave

Sample Data Schema consumed by an Indexer:

{
  "@timestamp": { "generatorType": "iso8601" },
  "name": "test-doc",
  "id": { "generatorType": "uuid" },
  "data_number": {
    "generatorType": "randomInt",
    "params": { "min": 1, "max": 5 }
  },
  "data_float": {
    "generatorType": "randomFloat",
    "params": { "min": 1, "max": 5 }
  },
  "data_string": {
    "generatorType": "dictionary",
    "params": { "value": "word" }
  },
  "data_nested": {
    "cpu": {
      "usage": {
        "generatorType": "randomFloat",
        "params": { "min": 1, "max": 5 }
      }
    }
  },
  "data_increment": {
    "generatorType": "increment",
    "params": { "id": "1", "start": 1, "incrementBy": 5 }
  },
  "data_wave": {
    "generatorType": "sineWave",
    "params": {
      "min": 0,
      "max": 8,
      "period": 16
    }
  }
}

About

No description, website, or topics provided.

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages