Richard van den Berg
9e7ea8fe74
Add proxy support to SyncTool
2015-03-19 10:03:25 +01:00
Iglocska
c9d1badaa3
Organization field in Servers too short to fit valid organisation identifiers, fixes #436
...
- updated the MYSQL.sql file for future MISP installations
- added admin script to do the update from the web interface
2015-03-17 00:06:59 +01:00
Iglocska
b29e8fdada
Site admins can now create proposals, fixes #417
...
- site admins can now create proposals to an event / attribute as long as the event does not belong to their organisation
- new icon for proposals to differentiate them from edits
2015-03-14 09:01:20 +01:00
Iglocska
524871ab52
Sync users should default to termsaccepted and no password change required, fixes #432
2015-03-14 08:35:24 +01:00
Iglocska
50a03e897d
Search in logs fixed, fixes #434
...
- The log search incorrectly set the search terms for empty fields, meaning that any log entries that had unfilled columns, such as it is the case with admin_email would never return results
2015-03-14 08:29:19 +01:00
iglocska
6763159e87
Security fix
...
- filenames are now enclosed by quotes instead of double quotes while executing the zip command via exec
2015-03-10 10:58:15 +01:00
Richard van den Berg
7f201fdf81
Consistent timestamps for STIX objects
2015-03-05 13:26:13 +01:00
Richard van den Berg
2a56a00e88
Consistent id's for malware-sample artifacts
2015-03-04 17:28:44 +01:00
Richard van den Berg
bff42361ef
Consistent id's for observable compositions
2015-03-04 17:07:32 +01:00
Richard van den Berg
a4fd3b957a
Use property class name in object ID
2015-02-25 09:50:00 +01:00
Richard van den Berg
8b89caf5b9
Use attribute uuid for cybox id's
2015-02-24 18:02:51 +01:00
iglocska
66db71e835
json view fixed, fixes #411
2015-02-24 15:46:42 +01:00
iglocska
8dad666b38
Disabled the animation in the MISP logo
...
- it was quite heavy on CPU usage and it was too subtle to notice anyway
2015-02-20 11:11:00 +01:00
iglocska
4239edffc9
Org admins editing privileged users demotes the privileged user to a lower permission level, fixes #408
...
- an org admin now correctly can select the previously assigned privileged role for a user that he/she is editing
2015-02-20 09:17:25 +01:00
Richard van den Berg
d2556ff91d
Use org name and baseurl in XML namespace for STIX
2015-02-19 15:46:54 +01:00
Richard van den Berg
c9bd754adc
More informative CIQ titles
2015-02-19 15:46:45 +01:00
Richard van den Berg
3c205c66f7
More informative STIX titles
2015-02-19 15:46:34 +01:00
iglocska
6782159b53
API search incorrectly generating JSON with several events, fixes #407
...
- also fixed the edit button on the index
2015-02-18 11:45:15 +01:00
iglocska
0dd8318fb3
Further work on the exports
...
- Performance improvements for the event search exports
- JSON view code moved to Lib
- Fixed an issue that didn't restrict the dates correctly with the from / to parameters
2015-02-16 17:31:32 +01:00
iglocska
fbca80d680
Added more contextual info for the CSV exports, fixes #391
2015-02-16 14:47:21 +01:00
iglocska
b5be1a36fb
Correlation disabled for http-method, fixes #406
2015-02-16 13:30:15 +01:00
iglocska
eed95b1129
Missing json view file added
...
- return attributes fails when requesting the results in JSON
- added missing view file
2015-02-16 13:14:05 +01:00
iglocska
54a86732e4
Relaxed the auth key requirement for nids exports
...
- incorrect check on the nids exports blocked logged in users from downloading the snort/suricata rules of an event
- check removed
2015-02-16 08:59:53 +01:00
iglocska
701160acd9
Fixed an issue with the free-text import failing on more than ~100 parsed values, fixes #389
...
- Caused by a 1k variable / form limit imposed by php since 5.3.9
- Form data now collected by JS and passed as a single JSON in the POST request
- Allows massive IOC lists to be imported
- improved performance
2015-02-10 14:42:24 +01:00
Richard van den Berg
d5e556ee1e
Fixed missing parentheses
2015-02-05 17:40:56 +01:00
iglocska
12d7025bce
Patch fixing json download, fixes #387
...
- World's smallest patch
2015-02-05 17:25:40 +01:00
Richard van den Berg
12dc5b6579
Make unpublished events private if MISP.unpublishedprivate == true
2015-02-05 17:16:40 +01:00
Richard van den Berg
d3c0144b25
Merge remote-tracking branch 'upstream/master'
2015-02-05 14:17:10 +01:00
iglocska
2aa902cd4b
Removed the old documentation, fixes #378 and some small fixes
...
- resolved an issue of warnings being generated when an event without attributes / relations gets XML exported.
- added new dump of the documentation
2015-02-05 10:11:29 +01:00
Aaron Kaplan
335d5b1492
Merge branch 'master' of https://github.com/MISP/MISP
2015-02-04 11:45:59 +01:00
iglocska
2401cedfdc
Left off file in previous hotfix added
...
- added a file that was not pushed during the last hotfix
- some improvements to the XML export to lower memory usage
2015-02-04 11:06:41 +01:00
iglocska
8c30115f12
Documentation fail fixes #384
2015-02-03 21:53:03 +01:00
iglocska
fddb06b3c2
Small change to the XML export
...
- won't write to file after all, simply keeps adding to a string in memory. Should still resolve the XML conversion taking up high amounts of memory issue.
2015-02-03 17:29:46 +01:00
iglocska
f0aa849d04
Various improvements to the exports
...
- Unified the way exports accept negated parameters
- Fixed the documentation
- Most exports are now restrictable by the event date (From/To parameters)
- none cached XML export now writes to file after converting each event, clearing the memory and resolving any potential memory issues
2015-02-03 17:06:05 +01:00
iglocska
98f65aae09
Merging several pull requests and a few other changes
...
- Pull request by RichieB2B: CentOS 6 & 7 installation instructions
- Pull request by RichieB2B: STIX exports now include comments for indicators
- Pull request by RichieB2B: Issue fixed with md5 type attributes not generating observables correctly during a STIX export
- Password policy change-able by a site admin via a regex and a min char requirement. Old functionality assumed if not set.
- bug fixed with incorrect jobs being created appearing during a scheduled pull (designates a push)
- slight changes to the installation instructions
- database.default.php now uses localhost instead of 127.0.0.1 and the default MySQL port
2015-02-02 13:12:15 +01:00
iglocska
be0fbfd108
Merge branch 'RichieB2B-ncsc-nl/stix_indicator_comments' into hotfix-2.3.41
2015-02-02 10:41:28 +01:00
Richard van den Berg
c3615eff32
Pretify some comments
2015-01-29 17:24:44 +01:00
Richard van den Berg
e6e66f3f1c
Fixed typo
2015-01-29 17:21:54 +01:00
Richard van den Berg
883fe07861
Fixed typo
2015-01-29 17:20:57 +01:00
Richard van den Berg
0aa09fec4d
Fix string assignments to StructuredText
2015-01-29 17:19:10 +01:00
Richard van den Berg
09511986e7
Map most MISP attribute comments into STIX
2015-01-28 17:48:11 +01:00
Richard van den Berg
b4ceff477f
Fixed typo
2015-01-28 14:01:30 +01:00
Richard van den Berg
2ef361d21a
Also respect GnuPG.bodyonlyencrypted for posts alerts
2015-01-28 13:51:15 +01:00
Richard van den Berg
c7671d0b41
Merge branch 'ncsc-nl/posts-alerts' into ncsc-nl/email_body_only_encrypted
2015-01-28 13:41:39 +01:00
Richard van den Berg
83a3903ec3
Fix whitespaces
2015-01-28 13:24:51 +01:00
Richard van den Berg
11052d85ce
Fix posts alerts
2015-01-28 13:24:51 +01:00
Richard van den Berg
506e1fcb0d
Send E-mail notifications for new posts in discussion and event threads
2015-01-28 13:24:51 +01:00
iglocska
0dd4304719
Merge branch 'RichieB2B-ncsc-nl/stix_md5_hash' into hotfix-2.3.41
2015-01-27 11:05:59 +01:00
iglocska
2018f822ec
Fixed a bug with the way scheduled syncs are logged
2015-01-27 10:42:31 +01:00
iglocska
1b4f2a6408
Password complexity definable by admin
...
- administrators can use a regex and a length setting to define password requirements
- old behavior used if left untouched
2015-01-27 10:41:43 +01:00
Richard van den Berg
253e579307
Disallow unpublished events
2015-01-27 10:10:22 +01:00
Richard van den Berg
05cfbde5e7
Export md5 hashes without file name in STIX
2015-01-27 09:58:13 +01:00
Richard van den Berg
728e8cd29e
Preserve indicator comments in STIX export
2015-01-27 09:54:52 +01:00
Richard van den Berg
886d36438e
Do not send details of events unencrypted
2015-01-27 09:26:25 +01:00
Aaron Kaplan
461d2a36ab
Merge branch 'master' of https://github.com/aaronkaplan/MISP
2015-01-18 20:57:38 +01:00
Aaron Kaplan
4a118cc28b
should read if (defined(...))
2015-01-18 20:56:30 +01:00
Aaron Kaplan
8e12004dbe
Merge branch 'master' of https://github.com/MISP/MISP
2015-01-18 20:53:58 +01:00
iglocska
6b6c62bd53
Fix to the new sync issues since 2.3.39, fixing #365
...
Incorrectly trying to look up authenticated user in the model fixed
2015-01-15 13:46:11 +01:00
iglocska
cedaac360a
Fixes to the scheduled tasks and some documentation issues
...
- Scheduled pulls should work correctly now
- Scheduled pushes and pulls correctly display in the logs
- Scheduled caching correctly sets the next date of execution
2015-01-12 17:35:08 +01:00
Aaron Kaplan
a2e9c60802
Merge branch 'master' of https://github.com/aaronkaplan/MISP
2014-12-21 23:55:31 +01:00
L. Aaron Kaplan
9baa9a9116
move CERT.at logo file
2014-12-21 23:55:14 +01:00
Aaron Kaplan
ab4debd9f6
Merge https://github.com/MISP/MISP
2014-12-21 23:38:59 +01:00
iglocska
43e283a7e0
Copy pasta fail
2014-12-19 15:36:36 +01:00
iglocska
85e7f66ada
Added missing view
2014-12-19 15:18:34 +01:00
iglocska
bb642579b6
Remote attribute deletion removed
...
- Deleting attributes on connected MISP instances can cause serious performance issues on multiple interconnected instnaces, temporarily removed
- Version number incremented
2014-12-19 15:01:14 +01:00
iglocska
f4723e06ff
Update to the automation page
...
- new parameters for the text export explained
2014-12-19 14:59:34 +01:00
iglocska
92679f6b69
New way to download a single event
...
- The event export buttons have been unified into a single download as... button
- clicking it loads a popup with all of the export formats
- added snort, suricata, text dump to the export options
- added the option for an extra setting for some exports (such as including non IDS flagged attributes, encoding attachments)
- easily extendable system
- moved the hidden popup divs into the general layout, can be easily reused anywhere
- removed the auth refresh option that was re-enabled recently as it seems to sometimes cause issues
- text exports now allow "all" to be specified as type, which will dump all attribute values that the user can see
- text exports now allow restricting the results based on event id
2014-12-19 13:32:16 +01:00
Aaron Kaplan
b40b0ec2ea
Merge https://github.com/MISP/MISP
2014-12-16 22:56:37 +01:00
iglocska
3723119d83
Logging of admin emails and auth refresh
...
- admin emails now generate log entries
- authentication is refreshed on activity
2014-12-12 10:42:12 +01:00
iglocska
f14a26444b
Fix to some event altering actions not updating the timestamp
2014-12-10 14:08:08 +01:00
iglocska
3353b206b0
Small fix
2014-12-10 13:48:01 +01:00
iglocska
6e7554a26f
Freetext import tool enhancement
...
- mass edit types where applicable
- ip-src/ip-dst type will create two attributes, one for each
2014-12-10 13:06:52 +01:00
iglocska
12692284fa
Changed the annoying click to view feature on each row on certain index pages to double clicks
2014-12-05 15:27:54 +01:00
iglocska
67aa9d9859
Admin contact user menu moved next to new/list user buttons, recipient e-mails are now sorted alphabetically
2014-12-05 15:15:28 +01:00
iglocska
9e77393ee6
Empty filter options were not that obvious to some users in the event/user index filter popup.
2014-12-05 15:11:29 +01:00
iglocska
78edbc11d3
Long filename overlapping with malware button on attachment upload, fixes #357
2014-12-05 10:41:56 +01:00
iglocska
2e1dfca943
Attribute search now correctly searches attribute comments too for contained expressions, fixes #342
2014-12-05 10:13:07 +01:00
iglocska
2e28dd2dde
Added tooltip for event ID in attribute search results, fixes #351
2014-12-03 17:23:32 +01:00
iglocska
d895fb1834
Changed wording of warning message when entering a targeting type attribute, fixes #355
2014-12-03 17:17:40 +01:00
iglocska
800c550cc9
STIX export now correctly uses a custom namespace instead of the default "example", fixes #301
2014-12-03 16:23:30 +01:00
iglocska
1346f7e931
Fix to an issue with the markings in the STIX export
...
- xpath describing the current node and descendants is incorrect
2014-12-02 16:13:29 +01:00
iglocska
71d36b9c64
Several issues fixed
...
- MYSQL.sql file now correctly includes the task entries
- GenerateCorrelation admin task is now a background job
- Organisation of events pulled now get the org in the server object as the owner instead of the one who initiates the pull
- Small fix to wrapping text in the pivot graph
2014-11-27 14:47:13 +01:00
iglocska
dc98d6f1d3
Some freetext import tweaks, fixes #330 , fixes #334
...
- freetext import now optionally allows setting the comment field
- removing rows in the freetext import result redirects to the event view if all rows are gone
2014-11-25 15:56:32 +01:00
iglocska
7c6000ec21
Incorrect flash message on successfu freetext import fixed, fixes #322
2014-11-25 13:40:24 +01:00
iglocska
9e8803c6eb
Confidence mapping changed to boolean in stix export, fixes #326
2014-11-25 13:37:22 +01:00
iglocska
9fae7a2193
Alternate event org display
...
- shows both orgc and org to normal users
- naming convention changed (orgc => source org, org => member org)
- this should allow users to see if an event was generated on their instance or not.
2014-11-25 13:21:25 +01:00
iglocska
2c7b7415b9
Improvements to the attribute search
...
- case insensitivity
- tag searches
also, generatecorrelation is now a background job
2014-11-20 10:40:24 +01:00
iglocska
53c1ef40b0
Fix to the CSRF protection blocking a proposal add
2014-11-19 10:24:46 +01:00
iglocska
aa492066d8
Diagnostics check fails on PGP check if the server's key is a sign only key
2014-11-14 13:12:40 +01:00
iglocska
bfdeda99dc
Further corner case fixed (shadow attribute to attribute, not event)
2014-11-14 11:59:38 +01:00
iglocska
01fd0b93ce
Comments also sanitized
2014-11-14 11:28:42 +01:00
iglocska
c67af817e0
Related events not correctly sanitized in the xml export
2014-11-14 11:15:52 +01:00
iglocska
7a31e03021
Added to the caching mechanism
2014-11-14 11:05:37 +01:00
iglocska
ad77555daa
Stronger escaping of special characters in the XML exports
2014-11-14 09:04:36 +01:00
iglocska
4b7e56a43c
Fix to an issue with the CSV export
...
- missing linebreak after header row added
- fixed an issue with quotes in the value field not being escaped properly
2014-11-12 15:36:07 +01:00
iglocska
4e116a8afe
Fixes issue with file attachments not being downloadable for users of another org
2014-11-05 16:25:17 +01:00
iglocska
ff606fc991
Document referencing deprecated way of passing authkey in url
2014-11-03 09:59:58 +01:00
iglocska
9b935d14ce
Added flag to mimic the quickfilter of the event view to the API
...
- search on any sub-string match in the event info, orgc, attribute value, attribute comment via the API
2014-11-03 09:55:44 +01:00
iglocska
85166481b7
Fix to the missing accept terms button
2014-10-31 14:59:49 +01:00
iglocska
7fcbca5a7d
Quick filter tool, some further tweaks to the filters
...
- quick filter on the event index
- finds events with a sub-string match on event info, orgc, attribute value, attribute comment
2014-10-31 14:44:10 +01:00
iglocska
6fba4308af
Added new functionality to the filters
...
- users can now search on attributes
- attribute search returns any event that has a a sub-string match on the entered attribute
- can also be used to negate (e.g: don't show me any events that have a sub-string match on any of its attributes)
2014-10-30 15:07:57 +01:00
iglocska
a879f3fc89
Left off from previous commit
2014-10-30 13:05:27 +01:00
iglocska
89b611f28a
Font change caused some misalignment
2014-10-30 12:55:15 +01:00
iglocska
a98dd9b489
Fix to the STIX export fixes #311 and a temporary fix to an OpenIOC import issue
...
- STIX export had 2 issues as pointed out by RichieB2B:
- Incorrect name assigned to incidents due to copy-pasta fail
- Historyitems incorrectly handled
- For the OpenIOC import:
- Mapping DnsEntryItem/Host to hostname
- Mapping of hostnames to Network activity failed due to incorrect capitalistion
- Temporarily removed the ignore function on certain indicators. Ignoring an element in an AND-ed branch happens without a pruning of the element IDs
2014-10-30 10:30:55 +01:00
iglocska
02ca52bea6
Small visual fix
2014-10-29 15:58:48 +01:00
iglocska
4568589044
File management added and various small changes
...
- Important! Logo images have now moved to a different location! Make sure that you update your settings!
- Site admins can now manage the uploaded image files and the terms of use file via the server settings interface
- add, link, delete files directly from the interface
2014-10-29 15:20:30 +01:00
iglocska
15fa296fdb
Update to the terms and conditions
...
- use terms file as before if nothing else specified
- specify a file in the app/files/terms directory via the server settings tool
- specify whether to show it inline or create a download link for users instead
- by default everything is the same as before, except that the MISP installation path is no longer exposed by a non-existing terms file
2014-10-28 15:11:40 +01:00
iglocska
035dfc8b12
Made the version check exclusive to the diagnostics tab
2014-10-27 17:21:57 +01:00
iglocska
a87d88e049
Event attribute pagination is persistent through edits / deletes
2014-10-27 16:51:23 +01:00
iglocska
6d73409b90
Version check tool added
...
- check the latest tag on github and compare it to the local version
- from here on all hotfix, minor, major releases should be tagged apropriately.
2014-10-27 16:03:43 +01:00
iglocska
efc580c938
Changing an attribute's field on the fly now requires a double click
2014-10-24 15:10:46 +02:00
iglocska
d0b441132b
Fix to the capitalisation in the user index filter and fix to the scripts tmp folder not being created on git clone
2014-10-24 14:17:58 +02:00
iglocska
4fec5d041f
Added missing empty file
2014-10-23 15:59:38 +02:00
iglocska
b7da6019f1
Further work on the manual, fix to the user filter
2014-10-23 14:09:50 +02:00
iglocska
fc7ca7dcbe
Work on the documentation and font change
...
- Adding all the new features to the documentation
- removed Robotolight from css to fix issues with chrome/firefox on Windows
2014-10-23 11:31:07 +02:00
iglocska
def146b7a5
Merge branch 'hotfix-2.3.10'
2014-10-22 13:17:22 +02:00
iglocska
c8cc55b243
Fix to the filters
2014-10-21 10:29:14 +02:00
iglocska
2ed9c18068
Fix to the filters
2014-10-21 10:27:55 +02:00
iglocska
e6e72e7f29
Fix to the filter
2014-10-21 10:10:36 +02:00
iglocska
504527d36b
Fixes to the proposal ajax mechanism for newer cakephp versions
2014-10-15 15:39:28 +02:00
iglocska
8f92361d4e
Copy pasta fail breaking the proposal accept button fixed, fixes #293
2014-10-15 11:10:10 +02:00
iglocska
dcc028516d
Further improvements to the freetext regex to remove unprintable chars
2014-10-14 14:29:06 +02:00
iglocska
53d295868f
Remove non printable characters from free text import
2014-10-14 10:59:12 +02:00
iglocska
c7ec328fcf
Better split on linebreaks for the freetext import
2014-10-13 17:43:31 +02:00
iglocska
de4ec4885a
Fix to the previous patch
2014-10-13 13:51:27 +02:00
iglocska
1abfe6120d
Fixes issues with the event filters
...
- tags not filtered correctly
- status bar showing current filters now shows actual strings for tags / analysis / distribution / threat level instead of the IDs
2014-10-13 13:47:58 +02:00
iglocska
caeba7fb91
CIDR now recognised by freetext import
2014-10-13 09:16:09 +02:00
iglocska
8235e8710d
Updates to the documentation
2014-10-07 17:53:22 +02:00
iglocska
c2a4a993ba
Incorrect script tmp directory checked in the health tool
2014-10-07 15:55:40 +02:00
iglocska
06ef98af40
Another change to the baseurl check
2014-10-02 11:06:08 +02:00
iglocska
0e2d8e9a55
Update to the baseurl check in the health tool
...
- https was checked incorrectly before
2014-10-02 11:00:30 +02:00
iglocska
50b1676fe8
Small fix for the statistics
2014-10-02 10:48:43 +02:00
iglocska
a0e9e304bd
Removed unused column in the health tool
2014-10-01 14:31:48 +02:00
iglocska
259954a5aa
Performance improvements
...
- faster load time of the event view by not using Cake's Js generation
2014-10-01 14:30:23 +02:00
iglocska
45cb52ca3f
Cleanup of the worker health tool
2014-09-26 14:28:52 +02:00
iglocska
e532e3561f
Moved the eventattributerow element back directly into eventattribute
...
- Removed serious performance issue on large events
2014-09-25 16:28:51 +02:00
iglocska
6949f98d89
Update to the event view, attribute rows still had parts of the old forms in them hurting performance
2014-09-24 17:29:45 +02:00
iglocska
e6bf73761e
UI redesign of the template and worker health
...
- UI of templates a bit clearer
- Worker health tool added to the server settings tool
2014-09-24 15:35:25 +02:00
iglocska
2fe729535d
Error fixed in the url generation for the filter event index popover
2014-09-16 14:52:03 +02:00
iglocska
5f69830d0b
Incorrect naming fixed
2014-09-15 12:33:21 +02:00
iglocska
eac25e3d3a
Added the option to take ownership of an event uploaded via the Add MISP XML button
...
- server setting has to be enabled to allow for this
- can cause issues if the event gets synchronised with an instance that has a different creator organisation for the same event
- it is recommended not to use this, but in some cases it can be very helpful - the setting for it in the configuration is called MISP.take_ownership_xml_import
2014-09-15 12:30:26 +02:00
iglocska
cb251c69ab
Merge branch 'hotfix-2.2.40' into develop
2014-09-12 13:33:55 +02:00
iglocska
d51fa92206
Changes to CakeResque installation fixes #287
...
- CakeResque's installation instructions changed
2014-09-12 13:29:30 +02:00
iglocska
b5dbc71baf
Issue with the new csrf protection with the new ajax fields
2014-09-11 17:40:58 +02:00
iglocska
fc806b8919
Some missing tests added
2014-09-11 17:28:57 +02:00
iglocska
931bf75409
Merge branch 'feature/health' into develop
2014-09-11 14:55:05 +02:00
iglocska
b69e51e867
No feedback from the failed numeric test for incorrect server settings
2014-09-11 13:02:38 +02:00
iglocska
fa367febfa
Download of the settings/diagnostics results implemented
...
- Should help with trouble shooting, administrators can now download a json file containing all the settings and issues shown by the tool.
2014-09-11 11:30:32 +02:00
iglocska
1058e418b9
Added the new server settings to the menues
2014-09-11 10:07:06 +02:00
iglocska
34cc73b21a
Several changes for the diagnostic tool
...
- Added extra diagnostic tools
2014-09-10 16:55:34 +02:00
iglocska
b178358f2a
Default config.php added
2014-09-10 11:48:48 +02:00
iglocska
2521106254
Reworked the server settings for boolean settings and settings that have a few options as values.
...
- Toggles instead of free-text
2014-09-10 10:37:58 +02:00
iglocska
79127902b7
Cleanup, MISP health tool
...
- cleanup of a lot of deprecated settings
- tool to help assess and alter issues with the instance settings
- new mechanism to store settings
2014-09-10 09:43:22 +02:00
iglocska
cef94553f7
Merge branch 'hotfix-2.2.39' into develop
2014-09-08 13:34:58 +02:00
iglocska
be19976da4
Merge branch 'hotfix-2.2.39'
2014-09-08 13:34:43 +02:00
iglocska
4c6ea92ba3
Small fix to avoid repeated incorrect invalid messages after the first failed check
2014-09-08 13:34:14 +02:00
iglocska
c11b388f32
Merge branch 'hotfix-2.2.39' into develop
2014-09-08 13:24:26 +02:00
iglocska
f7bfbc91d7
Merge branch 'hotfix-2.2.39'
2014-09-08 13:24:09 +02:00
iglocska
2bb806d780
Fix to the PGP key validation tool, fixes #284
2014-09-08 13:23:23 +02:00
iglocska
982727819b
debug left in code
2014-09-02 16:13:22 +02:00
iglocska
5a993dc120
Changes to the exports, fixes #285
...
- XML export was slow, replaced SimpleXML with a simple script that outputs XML for massive performance gains
- New option in bootstrap to allow the cached XML export to also include the attachments
- CSV caching slightly rearranged, it's much more memory efficient now
- Some fixes to relatedevent orgs being shown even if showorg is disabled
- Added a new site admin action to generate several 3k events for load testing (slow)
2014-09-02 15:56:28 +02:00
iglocska
ae059c2f5a
Pagination controls truncated for events with lots of attributes
2014-09-01 10:03:46 +02:00
iglocska
1d9881b2db
slightly better looks for the tags on the index
2014-08-28 17:35:29 +02:00
iglocska
6206cdc619
Some minor changes to the event index
...
- Tags are now fully shown on the event index
- can be enabled via bootstrap (the Configure::write setting is in the bootstrap.default.php file)
- shorthand distribution names
- narrowed some of the fields down
2014-08-28 16:29:30 +02:00
iglocska
83369da25a
Several fixes including compatibility with the STIX to_xml() performance fix
...
- STIX export performance greatly improved thanks to 84ce8d8be6376797053668d68e1b863713f008dd
- some junk removed
- fixed some minor pagination issues on the event view
- site admin dummy event creator now has target-* type attributes
2014-08-28 14:27:45 +02:00
iglocska
6874846ea4
Merge branch 'hotfix-2.2.38' into develop
2014-08-28 10:17:51 +02:00
iglocska
e5806906ed
Fixed authored date format, closes #283
2014-08-28 10:17:00 +02:00
iglocska
617f5a7add
Import from OpenIOC now includes the original file as an attachment, fixes #157
2014-08-22 10:30:29 +02:00
iglocska
d118a22b53
Added event distribution to alert e-mail, fixes #127
2014-08-21 17:04:02 +02:00
iglocska
be00fbebff
Publishing now immediately sets the event to published. A failed push will keep the event published, but it will note that it failed in the jobs / flash message.
2014-08-21 16:53:03 +02:00
iglocska
d5ac3dea49
Merge branch 'hotfix-2.2.37' into develop
2014-08-21 15:29:18 +02:00
iglocska
b6ee897b82
Fixed an incorrect check for the no PGP key warning condition partially responsible for #271
2014-08-21 15:27:25 +02:00
iglocska
9735a3041f
Added the confirmation box div to all the pages that can have the publish popup
2014-08-21 13:52:36 +02:00
iglocska
df11bfd920
Annoying css bug causing the menues that overlap with the filters not to work
2014-08-20 15:55:48 +02:00
iglocska
9813a3cfaa
Added CVE to the freetext tool
2014-08-20 15:34:42 +02:00
iglocska
988ae667a1
CakePHP update
2014-08-20 14:58:53 +02:00
iglocska
7e2b8ceb85
Show the number of events for each tag in the tag index
2014-08-20 14:55:10 +02:00
iglocska
08b2db6895
Small permission change
2014-08-20 10:10:31 +02:00
iglocska
0fd92e6f50
Index filtering made more generic, added to users
2014-08-20 10:06:43 +02:00
iglocska
4e613bb049
Added the option to export the event info field with each attribute in the csv exports
2014-08-19 10:33:10 +02:00
iglocska
e7dc801088
Merge branch 'develop' of https://github.com/MISP/MISP into develop
2014-08-19 08:44:39 +02:00
iglocska
c535b940ab
Merge branch 'feature/proposalfix' into develop
2014-08-19 08:43:24 +02:00
iglocska
7ec4457802
Typo causing the pushed proposals to have an incorrect "old_id" field
2014-08-18 15:51:01 +02:00
iglocska
2b85d1861d
Publish button now loads a popover similar to the attribute delete buttons
2014-08-18 15:05:56 +02:00
iglocska
03e43e9824
Failed e-mails don't break the proposal creation any longer
2014-08-18 13:30:18 +02:00
iglocska
25c708f78a
Small tweak to the contributor field
...
- no need for a LIKE in the comparison, should make it slightly faster
2014-08-15 12:36:45 +02:00
iglocska
7dacf1c8e7
Fix to the push failing
2014-08-15 12:06:37 +02:00
iglocska
63cebad0b7
Merge branch 'hotfix-2.2.36' into develop
...
Conflicts:
app/Controller/AppController.php
2014-08-14 17:29:21 +02:00
iglocska
51189ab852
Merge branch 'master' of https://github.com/MISP/MISP
2014-08-14 17:27:48 +02:00
iglocska
1e6c9e662f
Fixes authentication issues for some exports
...
- some exports did not allow users to authenticate via passing the auth key through the header
2014-08-14 17:26:40 +02:00
iglocska
22c1552bcc
SQL scripts, some UI chnages
...
MYSQL.sql and upgrade_2.3.sql updated
Fixed incorrect proposal counts showing up due to attributes that are flagged for deletion also being counted
Added some extra fields to the view proposal view to make it more useful
2014-08-14 14:45:21 +02:00
iglocska
483827af15
Same as the previous commit, only for the freetext import tool
2014-08-14 14:14:06 +02:00
iglocska
35ba6321dc
Various improvements with the way events are unpublished after changes
...
- UI improvements, events appear unpublished after ajax queries that alter attributes
- Events get unpublished by the attribute replace tool and template population as they should
2014-08-14 14:08:55 +02:00
iglocska
bd6b206ac5
Further work on the sync
...
- changed the pull implementation for proposals
2014-08-14 11:33:33 +02:00
iglocska
0363a251e2
Merge branch 'hotfix-2.2.35' into feature/proposalfix
2014-08-13 16:14:48 +02:00
iglocska
62ad489e47
Merge branch 'hotfix-2.2.35' into develop
2014-08-13 16:14:29 +02:00
iglocska
cf3809ef74
Further work on the previous patch
2014-08-13 16:13:38 +02:00
iglocska
76fec60fdc
Merge branch 'hotfix-2.2.35' into feature/proposalfix
2014-08-13 15:50:17 +02:00
iglocska
c8afd9beae
Merge branch 'hotfix-2.2.35' into develop
2014-08-13 15:49:25 +02:00
iglocska
97eba22b46
Fix to the previous commit
2014-08-13 15:35:22 +02:00
iglocska
26a4f97adb
Proposal validation now calls the Attribute validation method instead of using the (incorrect) duplication in ShadowAttribute
2014-08-13 15:24:22 +02:00
iglocska
d0e121846c
Missing validation for http-method in Shadow-Attributes
2014-08-13 15:21:16 +02:00
iglocska
77971d97db
Publishing now also pushes proposals
...
This is especially important to push deleted proposals once a proposal has been accepted
2014-08-13 14:29:39 +02:00
iglocska
295e3d2655
Merge branch 'feature/proposalfix' of https://github.com/MISP/MISP into feature/proposalfix
2014-08-13 10:48:28 +02:00
iglocska
0a10844dec
Work on the proposal sync for push - from the sender's side
2014-08-13 10:47:39 +02:00
iglocska
bde4ad074d
Permission fix to the event filters
...
Users could only choose their own organisation in the org filter due to an overly restrictive filtering of the available options. Relaxed to all organisations that have an event that is visible to the user.
2014-08-13 10:19:00 +02:00
iglocska
97358a405e
Proposal package now correctly saved on the far end
2014-08-12 18:05:26 +02:00
iglocska
9799c1d9dd
More work on the sync fix
2014-08-12 17:25:09 +02:00
iglocska
6bca13b3e5
Further work on the sync fixes
2014-08-12 15:35:32 +02:00
iglocska
8b16f0cf18
Push now also only does a differential push
...
- send uuids of events to be pushed together with timestamps to the other instance
- other instance removes events that are already up to date or locally created from the array
- sends the remaining uuids back
- first instance initiates the push of events that were not filtered out
2014-08-12 11:54:00 +02:00
iglocska
6e168e5b57
Small fix to the proposal accept button and cakephp 2.4.8+ (related to 3da49c9
)
2014-08-12 09:43:53 +02:00
iglocska
e6c28fe69a
Futher work on the proposal sync
2014-08-11 16:40:09 +02:00
iglocska
1bbf678f70
Further changes
2014-08-11 16:26:49 +02:00
iglocska
99c04afa85
First round of fixes
2014-08-11 15:11:57 +02:00
iglocska
2ad040f0e6
view left off from previous commit
2014-08-08 15:33:57 +02:00
iglocska
559b39ceb5
Reworking of the event filtering
2014-08-08 15:28:37 +02:00
iglocska
8e987bee67
Made thread title clickable in event discussions fixes #270
2014-08-06 14:37:19 +02:00
iglocska
e537c3aa49
Fixed an ajax issue with event discussions
...
- could not add posts via the event view
- related to 3da49c964b
2014-08-06 14:07:30 +02:00
iglocska
a6a353252e
Merge branch 'hotfix-2.2.34' into develop
2014-08-06 13:47:51 +02:00
iglocska
f86bb89e14
Commas in CSV now escaped properly fixes #281
2014-08-06 13:46:52 +02:00
iglocska
90a5832638
Performance
2014-08-06 13:40:23 +02:00
iglocska
de9affda91
Small performance improvement
...
The contributor field in the event view is evaluated based on proposal log entries from the log table affecting the current event. In order to improve performance, the LIKE check for the event ID is moved to the last argument in order to avoid parsing rows that could be ignored by the other arguments quicker.
2014-08-06 11:16:27 +02:00
iglocska
edc8029869
Updated cakephp
2014-08-06 10:09:04 +02:00
iglocska
3da49c964b
Fixed broken AJAX queries in MISP as a result to changes in cakephp 2.4.8+
...
A change in cakephp version 2.4.8+ has resulted in ajax form submitions breaking. Reason for this was a change in the SecurityComponent taking the url specified in the form into account when generating the CSRF tokens.
This is now fixed by embedding the correct url in the ajax forms.
2014-08-06 10:02:52 +02:00
Aaron Kaplan
087cea49ad
added CERT.at org file
...
Also testing pull requests upstream
2014-08-05 15:14:17 +02:00
iglocska
53ac9a16da
More missing <?php tags
2014-08-05 11:24:07 +02:00
iglocska
9902217ac5
Missing <?php tag in a view file
2014-08-05 10:32:49 +02:00
iglocska
9e227ef724
Missing view file added
2014-08-04 18:15:39 +02:00
iglocska
83d5e191fc
Updates to the STIX export
2014-08-04 18:07:15 +02:00
iglocska
525ef65008
Fix to the previous commit
...
- previous commit broke the flash message alignment when debug was enabled
2014-08-03 21:24:46 +02:00
iglocska
51d83f8ceb
Fixed the annoying collapsing top bar
2014-08-01 15:41:48 +02:00
iglocska
2ddad51056
Merge branch 'develop' of https://github.com/MISP/MISP into develop
2014-08-01 15:30:48 +02:00
iglocska
23bc4127bf
Merge branch 'feature/stix_export' into develop
2014-08-01 15:29:49 +02:00
iglocska
b983147061
Some cleanup
2014-08-01 15:29:16 +02:00
iglocska
2915be5020
Download stix xml / json result
2014-08-01 15:22:39 +02:00
iglocska
5257fa2b4a
removed old junk version of the export
2014-08-01 14:15:39 +02:00
iglocska
167e5e43a3
First version of the STIX export implementation
...
- currently to_xml() has performance issues, if it's not resolved fast, it would be a good idea to move the export to the background workers
- some UI changes
2014-08-01 14:14:20 +02:00
Christophe Vandeplas
9da90a1f0c
Merge branch 'hotfix/export_suricata' into develop
2014-07-29 14:30:03 +02:00
Christophe Vandeplas
f4e6e3fb12
regex bugfix in the ids export + suricata export using dns keyword
2014-07-29 14:28:34 +02:00
iglocska
7651f95faa
Python scripts to handle the conversion from a MISP JSON event to stix/cybox
2014-07-25 10:47:08 +02:00
iglocska
40baedc531
Merge branch 'feature/templates' into develop
2014-07-19 16:26:36 +02:00
iglocska
c64d6a8c93
same org / site admin restriction on freetext importer added
2014-07-19 16:25:43 +02:00
iglocska
61d2fe54ff
Start of the stix export tool
2014-07-19 16:24:25 +02:00
iglocska
c5ed7531cd
Truncated the event info fragment shown in the pivot bubbles by one extra character
2014-07-19 16:03:21 +02:00
iglocska
e1988690c6
Merge branch 'feature/templates' into develop
...
Conflicts:
app/Model/Event.php
2014-07-19 15:51:30 +02:00
iglocska
ab5b9a9dae
Several features finished
...
- first version of templating system complete
- first version of freetext importer complete
- first version of mass attribute replace tool complete
- some UI changes
2014-07-19 15:09:37 +02:00
iglocska
893ef5a129
Freetext import tool
...
Added freetext import tool
2014-07-10 17:02:19 +02:00
iglocska
029ef252a2
Some fixes to the templating
...
- resolved bugs with permissions
- fixed the broken mass delete tool
- Fixed an issue with the type not being chosen correctly for file type attributes when created through the templating tool
2014-07-08 11:31:23 +02:00
iglocska
45d826a252
First version of the templating feature complete
...
- still needs some refinement, but it's feature-complete
2014-07-02 16:20:19 +02:00
iglocska
4b19de1033
Merge branch 'hotfix-2.2.33' into develop
2014-06-27 21:38:31 +02:00