• The simulation alerts in the use case are based on real alerts from a real product.
  • All entities are extracted when running the simulation alert in a clean environment.
  • All entities are extracted when running the real alert with the connector.
  • The playbook runs end to end without errors.
  • The final delivery is a ZIP, export that can be imported without errors into the use case marketplace.
  • When deployed, all user has to do is configured the integrations to make the playbook run end to end with simulation alerts.