MISP
/
MISP
mirror of https://github.com/MISP/MISP
2
2
Fork 0
Code Issues Releases Wiki Activity
25,276 Commits
35 Branches
366 Tags
190 MiB
Commit Graph

112 Commits (notes)

Author SHA1 Message Date
Sami Mokaddem 31ed2113fb
fix: [analyst-data:recursive-fetch] Second tentative to prevent recursion in relationship 2024-02-13 11:13:39 +01:00
Sami Mokaddem ea7e48b2a7
Merge remote-tracking branch 'origin/develop' into notes 2024-02-06 15:04:09 +01:00
Sami Mokaddem 9d18007b2e
fix: [analyst-data] Various fixes regarding ACL and recursive fetching 2024-02-06 10:04:20 +01:00
Sami Mokaddem eaf8a2b98a
chg: [analyst-data] Added `locked` flag, support of orgc/org, analyst-data-blocklist and most implementation of push synchronisation - WiP 2024-02-01 14:24:41 +01:00
Sami Mokaddem b2f3602265
chg: [analyst-data:ACL] Enforced ACL and reflected the change in the UI 2024-01-30 15:15:26 +01:00
Sami Mokaddem f15429e444
fix: [analyst-data] Fixed sharing group associations 2024-01-30 08:57:14 +01:00
Sami Mokaddem 0bbd5bf05e
fix: [analyst-data-behavior:afterFind] Restored behavior that fetched child notes and opinions in the analyst-data afterFind method 
Might be reverted later on
 2024-01-29 12:00:13 +01:00
Sami Mokaddem 0c53d96d5d
Merge branch 'feature/analyst-data' into notes 2024-01-29 10:06:25 +01:00
Sami Mokaddem dca913c969
chg: [analyst-data] Linked CRUD and UI together - WiP 
- Added dynamic association binding
- Recursive notes and opinions injection
- few improvements
- fixes

-> Still need to link CRUD for relationships and UI
-> Still need to refactor for performance notes/opinions loading
 2024-01-24 21:48:53 +01:00
iglocska ceda8c3788
chf: [notes] wip 2024-01-19 17:54:06 +01:00
iglocska 2ab819f3cb
chg: [analystdata wip] 2024-01-04 19:56:11 +01:00
Sami Mokaddem 160d7442ff
Merge branch 'feature/analyst-notes' into notes 2024-01-04 11:20:04 +01:00
iglocska e04c810ae3
new: [analystdata] wip 2024-01-04 10:12:47 +01:00
Jakub Onderka 775d098ff8 chg: [internal] Do not log in audit log last_api_access 2024-01-03 17:55:01 +01:00
iglocska 100702244b
fix: [correlation] exclusion cleaning was broken for noacl correlations, fixes #8899 2023-12-14 12:45:00 +01:00
Jakub Onderka e6cdd96c93 chg: [log] Do not audit log when unique_ips field is changed 2023-05-24 09:49:14 +02:00
Luciano Righetti 478d1c6440 fix: fix "'sharing_group_id' doesn't have a default value error" error when importing OpenIOC file 2023-04-12 14:54:15 +02:00
iglocska d123b27960
fix: [object correlations] fixed - ACL was incorrectly hiding valid correlations for a user, fixes #8929 
- inherit as the object distribution was blocked when showing correlations
 2023-02-27 14:21:47 +01:00
Jakub Onderka d399df00d1 fix: [correlation] Convert to int 2022-10-21 15:49:04 +02:00
Jakub Onderka de4ba342e0 chg: [correlation] Optimise saving object timestamp 2022-10-13 09:51:12 +02:00
Jakub Onderka 264263c90f chg: [internal] Convert to const 2022-09-13 16:13:51 +02:00
Jakub Onderka f8f2e0e43d fix: [correlations] Do not fetch unnecessary data 2022-09-13 16:13:51 +02:00
Jakub Onderka 21335d7d1f fix: [internal] Optimise fetching related attributes 2022-09-13 16:13:51 +02:00
Jakub Onderka a3b02cf037 fix: [internal] Code style 2022-09-13 16:13:51 +02:00
Jakub Onderka b98be56f41 fix: [correlation] Undefined index for long values 2022-09-10 20:12:50 +02:00
Jakub Onderka 3fdded5ced chg: [correlation] Optimise NoAcl correlations 2022-09-08 10:43:41 +02:00
Jakub Onderka 1daab04ce2 chg: [correlation] Faster saving correlations 2022-09-08 09:30:45 +02:00
Jakub Onderka 48c8a7eab3 chg: [internal] Code cleanup 2022-08-11 12:55:23 +02:00
Jakub Onderka 14501e8a78 chg: [internal] Use less SQL queries for event fetching 2022-08-11 12:55:23 +02:00
Jakub Onderka b53d8c828d chg: [internal] Cleanup code for new correlation engine 2022-08-11 12:53:14 +02:00
iglocska fa3a67d22b
fix: [compatibility] Support for php < 7.2 for an organisation that shall go unnamed 2022-08-08 15:56:55 +02:00
Sami Mokaddem 3f65c3ef94
fix: [correlation:defaultCorrelation] Ignore ACL check for site_admins 2022-08-04 10:48:17 +02:00
iglocska a04f3964e7
new: [correlation rework] round 2 
- long list of fixes
- update scripts
- correlation engine management interface
- recorrelation/truncation tools
- various performance tunings and bug fixes
 2022-08-03 15:44:27 +02:00
iglocska dbd992dbef
fix: [correlation engines] added additional event fields to the retrieved event metadata to match the old behaviour 2022-08-01 10:36:18 +02:00
iglocska 3ce754d595
Merge branch 'develop' into new_correlations 2022-07-31 23:58:40 +02:00
iglocska 3a4289d631
new: [correlation] engine rewrite 
- allow for multiple concurrent engines
  - default: similar behaviour as before, ACL enforced
  - No ACL: for endpoint misps, disable the enforcement of ACL for correlations altogether

- rework:
  - correlation entries are fully indexed reference tables
  - values are now stored separately
  - built in protection against overcorrelating values (defaults to 20 max)
  - 1 way correlations to cut the size in half
  - unsigned IDs to double the ID space
  - loads of performance improvements
  - fix to the broken event index with correlation counts enabled

- UI improvements
  - search for values from the correlation column directly (in case there are non-correlating versions of the same value)
  - added correlations to the attribute search/index

- TODO:
  - upgrade scripts
 2022-07-31 23:48:38 +02:00
Luciano Righetti dc4236ef9b
new: add LightPaginator when total page count is not needed/to expensive 2022-07-20 15:56:30 +02:00
Jakub Onderka ede3899073 chg: [regexp] Exclude also size-in-bytes and counter types 2022-05-29 17:39:10 +02:00
Jakub Onderka 21afe562ef fix: [internal] Faster RegexpBehavior 2022-05-29 17:39:10 +02:00
Jakub Onderka 3982896835 fix: [auditlog] Deleting object 2022-05-02 17:04:45 +02:00
iglocska 7c3181837b
fix: [eventwarning] path fixed 
- as spotted by @chrisr3d
 2022-03-15 12:54:55 +01:00
iglocska 364eaa50c2
new: [event warnings] made modular 
- app/Lib/EventWarning contains default warnings
- app/Lib/EventWarning/Custom can be used to just drop event warnings
- use app/Lib/EventWarning/DefaultWarning as a template
 2022-03-15 09:30:56 +01:00
Jakub Onderka 535633c9c0 chg: [oidc] Do not log changes for OIDC user setting 2022-02-27 09:23:19 +01:00
Jakub Onderka 924f28c9e1 fix: [UI] Event warning - distribution can be string 2022-02-20 13:04:35 +01:00
iglocska 7f27b1869e
new: [behaviour] event warning behaviour added 
- inspects an event in MISP's internal raw format for discrepencies
- creates a list of warnings
 2022-02-17 09:23:11 +01:00
iglocska 9cb88f058d
Merge branch '2.4' into develop 2021-11-24 14:59:43 +01:00
iglocska 79b1afd24a
fix: [audit] fix user modifications not working with the modern audit log 
- trying to get the old state of non persistent form fields breaks
 2021-11-24 14:58:44 +01:00
Jakub Onderka 7573e89230
Merge pull request #7975 from JakubOnderka/process-tool-selftest 
Process tool selftest
 2021-11-23 11:52:25 +01:00
Jakub Onderka 1e5ca3dc59
Merge pull request #7577 from JakubOnderka/add-event-cleanup 
chg: [internal] Convert array to const
 2021-11-23 11:51:58 +01:00
Jakub Onderka 776b0d046f fix: [auditLog] Warning when deleting event 2021-11-22 16:32:08 +01:00