Kraken STT

Kraken Stress Testing Toolkit - Created as a load testing tool for SIEM systems. Kraken allows you to generate and send events as similar as possible to events from various sources. The current version has become much more functional and allows you to test both SIEM systems and various collectors or separate modules of event handling systems. Kraken templates are selected in such a way as to ensure the creation of incidents in SIEM.

Contents
  1. Interface
  2. Usage scenarios
  3. Kraken Stress Testing Toolkit Features
  4. Kraken features
  5. Supported protocols
  6. Download Kraken STT

Interface

Kraken STT - uses a simple interface that allows you to make all the necessary settings on a single page, without having to switch between multiple windows.

kraken stress testing toolkit v2.12.1 build 308

Usage scenarios

  • Identify parsing and normalization performance issues
  • Test the performance of the correlation
  • Validate correlation scenarios
  • Test both single events and multiple events by loading them from a file
  • Provides basic server monitoring

Kraken Stress Testing Toolkit Features

When testing one of the Russian SIEM systems using the Kraken Stress Testing Toolkit, performance issues were identified, eventually allowing up to 20,000 events per second (EPS) to be processed on a single correlation server.

Kraken Logo

Kraken enables testing of event reception, normalization, parsing, correlation, and event storage. When generating and sending events, a uniform flow of transmitted events is ensured.

It is also possible to test the system in a distributed installation (cluster assembly) by evenly distributing the flow of events between different receivers, while providing the necessary EPS flow.

Many load generation systems, including self-developed ones, direct the entire flow at the beginning of a second when sending events. This provides non-uniformity of the flow, often not fixed by monitoring tools, which does not ensure the reliability of work on the real flow of events.

Kraken features

  • Generation of events of different formats
  • Template support
  • Sending events to multiple collectors
  • Send the required number of events per second (EPS)
  • Setting the timeout between sending events
  • Smooth increase in the number of events per second (Raising)
  • Seamless reduction of the number of events per second (Downgrade)
  • Randomization of the event stream (Random)
  • Fasing testing
  • Monitoring via SSH
  • Ability to send events as
    • in the original format
    • UTF8 converted
    • Into Json

Supported protocols

  • TCP
  • UDP
  • TCP TLS (TLS 1.0, TLS 1.1, TLS 1.2)
  • ElasrticSearch and OpenSearch ( _bulk и _doc)
  • Redis (LPUSH и RPUSH)
  • Kafka and Kafka(SSL)
  • HTTP (POST, GET, HEAD)
  • HTTPS (POST, GET, HEAD)
  • WebSocket and WebSocket(wss)

Download Kraken STT

Windows X64: Download Kraken Stress Testing Toolkit

Share to friends
en_USEnglish
ru_RUРусский de_DEDeutsch ro_RORomână en_USEnglish