Sami Mokaddem
31ed2113fb
fix: [analyst-data:recursive-fetch] Second tentative to prevent recursion in relationship
2024-02-13 11:13:39 +01:00
Sami Mokaddem
ea7e48b2a7
Merge remote-tracking branch 'origin/develop' into notes
2024-02-06 15:04:09 +01:00
Sami Mokaddem
9d18007b2e
fix: [analyst-data] Various fixes regarding ACL and recursive fetching
2024-02-06 10:04:20 +01:00
Sami Mokaddem
eaf8a2b98a
chg: [analyst-data] Added `locked` flag, support of orgc/org, analyst-data-blocklist and most implementation of push synchronisation - WiP
2024-02-01 14:24:41 +01:00
Sami Mokaddem
b2f3602265
chg: [analyst-data:ACL] Enforced ACL and reflected the change in the UI
2024-01-30 15:15:26 +01:00
Sami Mokaddem
f15429e444
fix: [analyst-data] Fixed sharing group associations
2024-01-30 08:57:14 +01:00
Sami Mokaddem
0bbd5bf05e
fix: [analyst-data-behavior:afterFind] Restored behavior that fetched child notes and opinions in the analyst-data afterFind method
...
Might be reverted later on
2024-01-29 12:00:13 +01:00
Sami Mokaddem
0c53d96d5d
Merge branch 'feature/analyst-data' into notes
2024-01-29 10:06:25 +01:00
Sami Mokaddem
dca913c969
chg: [analyst-data] Linked CRUD and UI together - WiP
...
- Added dynamic association binding
- Recursive notes and opinions injection
- few improvements
- fixes
-> Still need to link CRUD for relationships and UI
-> Still need to refactor for performance notes/opinions loading
2024-01-24 21:48:53 +01:00
iglocska
ceda8c3788
chf: [notes] wip
2024-01-19 17:54:06 +01:00
iglocska
2ab819f3cb
chg: [analystdata wip]
2024-01-04 19:56:11 +01:00
Sami Mokaddem
160d7442ff
Merge branch 'feature/analyst-notes' into notes
2024-01-04 11:20:04 +01:00
iglocska
e04c810ae3
new: [analystdata] wip
2024-01-04 10:12:47 +01:00
Jakub Onderka
775d098ff8
chg: [internal] Do not log in audit log last_api_access
2024-01-03 17:55:01 +01:00
iglocska
100702244b
fix: [correlation] exclusion cleaning was broken for noacl correlations, fixes #8899
2023-12-14 12:45:00 +01:00
Jakub Onderka
e6cdd96c93
chg: [log] Do not audit log when unique_ips field is changed
2023-05-24 09:49:14 +02:00
Luciano Righetti
478d1c6440
fix: fix "'sharing_group_id' doesn't have a default value error" error when importing OpenIOC file
2023-04-12 14:54:15 +02:00
iglocska
d123b27960
fix: [object correlations] fixed - ACL was incorrectly hiding valid correlations for a user, fixes #8929
...
- inherit as the object distribution was blocked when showing correlations
2023-02-27 14:21:47 +01:00
Jakub Onderka
d399df00d1
fix: [correlation] Convert to int
2022-10-21 15:49:04 +02:00
Jakub Onderka
de4ba342e0
chg: [correlation] Optimise saving object timestamp
2022-10-13 09:51:12 +02:00
Jakub Onderka
264263c90f
chg: [internal] Convert to const
2022-09-13 16:13:51 +02:00
Jakub Onderka
f8f2e0e43d
fix: [correlations] Do not fetch unnecessary data
2022-09-13 16:13:51 +02:00
Jakub Onderka
21335d7d1f
fix: [internal] Optimise fetching related attributes
2022-09-13 16:13:51 +02:00
Jakub Onderka
a3b02cf037
fix: [internal] Code style
2022-09-13 16:13:51 +02:00
Jakub Onderka
b98be56f41
fix: [correlation] Undefined index for long values
2022-09-10 20:12:50 +02:00
Jakub Onderka
3fdded5ced
chg: [correlation] Optimise NoAcl correlations
2022-09-08 10:43:41 +02:00
Jakub Onderka
1daab04ce2
chg: [correlation] Faster saving correlations
2022-09-08 09:30:45 +02:00
Jakub Onderka
48c8a7eab3
chg: [internal] Code cleanup
2022-08-11 12:55:23 +02:00
Jakub Onderka
14501e8a78
chg: [internal] Use less SQL queries for event fetching
2022-08-11 12:55:23 +02:00
Jakub Onderka
b53d8c828d
chg: [internal] Cleanup code for new correlation engine
2022-08-11 12:53:14 +02:00
iglocska
fa3a67d22b
fix: [compatibility] Support for php < 7.2 for an organisation that shall go unnamed
2022-08-08 15:56:55 +02:00
Sami Mokaddem
3f65c3ef94
fix: [correlation:defaultCorrelation] Ignore ACL check for site_admins
2022-08-04 10:48:17 +02:00
iglocska
a04f3964e7
new: [correlation rework] round 2
...
- long list of fixes
- update scripts
- correlation engine management interface
- recorrelation/truncation tools
- various performance tunings and bug fixes
2022-08-03 15:44:27 +02:00
iglocska
dbd992dbef
fix: [correlation engines] added additional event fields to the retrieved event metadata to match the old behaviour
2022-08-01 10:36:18 +02:00
iglocska
3ce754d595
Merge branch 'develop' into new_correlations
2022-07-31 23:58:40 +02:00
iglocska
3a4289d631
new: [correlation] engine rewrite
...
- allow for multiple concurrent engines
- default: similar behaviour as before, ACL enforced
- No ACL: for endpoint misps, disable the enforcement of ACL for correlations altogether
- rework:
- correlation entries are fully indexed reference tables
- values are now stored separately
- built in protection against overcorrelating values (defaults to 20 max)
- 1 way correlations to cut the size in half
- unsigned IDs to double the ID space
- loads of performance improvements
- fix to the broken event index with correlation counts enabled
- UI improvements
- search for values from the correlation column directly (in case there are non-correlating versions of the same value)
- added correlations to the attribute search/index
- TODO:
- upgrade scripts
2022-07-31 23:48:38 +02:00
Luciano Righetti
dc4236ef9b
new: add LightPaginator when total page count is not needed/to expensive
2022-07-20 15:56:30 +02:00
Jakub Onderka
ede3899073
chg: [regexp] Exclude also size-in-bytes and counter types
2022-05-29 17:39:10 +02:00
Jakub Onderka
21afe562ef
fix: [internal] Faster RegexpBehavior
2022-05-29 17:39:10 +02:00
Jakub Onderka
3982896835
fix: [auditlog] Deleting object
2022-05-02 17:04:45 +02:00
iglocska
7c3181837b
fix: [eventwarning] path fixed
...
- as spotted by @chrisr3d
2022-03-15 12:54:55 +01:00
iglocska
364eaa50c2
new: [event warnings] made modular
...
- app/Lib/EventWarning contains default warnings
- app/Lib/EventWarning/Custom can be used to just drop event warnings
- use app/Lib/EventWarning/DefaultWarning as a template
2022-03-15 09:30:56 +01:00
Jakub Onderka
535633c9c0
chg: [oidc] Do not log changes for OIDC user setting
2022-02-27 09:23:19 +01:00
Jakub Onderka
924f28c9e1
fix: [UI] Event warning - distribution can be string
2022-02-20 13:04:35 +01:00
iglocska
7f27b1869e
new: [behaviour] event warning behaviour added
...
- inspects an event in MISP's internal raw format for discrepencies
- creates a list of warnings
2022-02-17 09:23:11 +01:00
iglocska
9cb88f058d
Merge branch '2.4' into develop
2021-11-24 14:59:43 +01:00
iglocska
79b1afd24a
fix: [audit] fix user modifications not working with the modern audit log
...
- trying to get the old state of non persistent form fields breaks
2021-11-24 14:58:44 +01:00
Jakub Onderka
7573e89230
Merge pull request #7975 from JakubOnderka/process-tool-selftest
...
Process tool selftest
2021-11-23 11:52:25 +01:00
Jakub Onderka
1e5ca3dc59
Merge pull request #7577 from JakubOnderka/add-event-cleanup
...
chg: [internal] Convert array to const
2021-11-23 11:51:58 +01:00
Jakub Onderka
776b0d046f
fix: [auditLog] Warning when deleting event
2021-11-22 16:32:08 +01:00