To run the project:
- clone or download this repo
- install latest go version for your OS from https://go.dev/dl/
- put your safe browsing API key into config/integrations/safebrowsing.json
- in terminal run
go run .from project root
To hit the enrich api
curl -X POST -H "Content-Type: application/json" -d @./sample_data/alerts.json http://localhost:8080/enrich
configs:
- config/emails.json - controls the fake body lookup results
- config/rules.json - controls the rules for matching alerts to workflows
- config/workflows.json - controls the workflow definitions