Alexandre Dulaunoy
33d690e643
chg: [datamodel] anonymised is any category
2019-01-31 23:35:31 +01:00
Alexandre Dulaunoy
ef39349476
add: [datamodel] anonymise type added
...
Anonymised value - described with the anonymisation object via a relationship
Anonymisation object definition: https://www.misp-project.org/objects.html#_anonymisation
2019-01-31 23:19:17 +01:00
Alexandre Dulaunoy
e65c2a536c
chg: [type] zeek attribute added (Zeek is the new name of Bro)
...
Both attribute types, zeek and bro will coexist as exchange of NIDS
rules under the old names is common in various MISP sharing communities.
2019-01-30 22:53:38 +01:00
Andras Iklody
3843e9bdaa
Merge pull request #3995 from patriziotufarolo/2.4
...
fix: check also event.org_id when validating event ownership in order to fetch attributes. Fixes #1918
2019-01-29 17:38:57 +01:00
mokaddem
b64d5c82a7
fix: [attribute] Prevent undefined index on tag filtering.
...
As tags are popped from the attribute scope first, they will not be
available in the event scope.
2019-01-25 09:34:55 +01:00
iglocska
c38d553192
fix: [interna] deprecated text() function's tag filter fixed
2019-01-25 09:11:01 +01:00
iglocska
d64d57feea
fix: [filters] Negative tag filters ignored event tags on the attriute search
...
- as reported by @hel10wor1d
2019-01-25 08:35:50 +01:00
iglocska
9512043de9
fix: [performance] query tweak to fool old crappy versions of mysql
2019-01-24 16:20:57 +01:00
iglocska
27d048db0c
fix: [performance] Potential performance fix for older MySQL versions using the wrong index as key during fetchAttributes()
...
- observer a server prioritising the deleted flag index when filtering attributes, leading to a massive performance loss
- hacky solution to make deleted and object_id (during flattening) indeces unusable
2019-01-22 08:28:15 +01:00
iglocska
dbb1e01487
chg: [internal] timestamp resolution for time ranges should reorder the conditions
...
- always take from (smaller timestamp) to (larger timestamp), no matter the order which they were entered in
2019-01-17 10:12:47 +01:00
Alexandre Dulaunoy
eaacbaddd3
chg: [datamodels] fix hassh and hasshserver typo
2019-01-13 12:05:21 +01:00
Alexandre Dulaunoy
f388e0eff3
chg: [datamodels] new types hassh-md5 and hasshserver-md5 added
...
"HASSH" is a network fingerprinting standard which can be used
to identify specific Client and Server SSH implementations.
The fingerprints can be easily stored, searched and shared
in the form of an MD5 fingerprint.
Fix #4007
2019-01-13 11:47:30 +01:00
Patrizio Tufarolo
32962184fa
fix: check also event.org_id when validating event ownership in order to fetch attributes
...
Fixes #1918
2019-01-08 06:56:47 -05:00
iglocska
e2965a79e4
Merge branch '2.4' of github.com:MISP/MISP into 2.4
2018-12-31 08:04:29 +01:00
iglocska
65709a353b
Merge branch 'qb' into 2.4
2018-12-31 08:04:12 +01:00
eCrimeLabs
c920925d48
Update Attribute.php
...
Added ja3-fingerprint-md5 as a deticated data type. Also updating the object for ja3
2018-12-30 12:26:33 +01:00
Daniel Roethlisberger
5b4079637a
new: [attributes] Add cdhash attribute, 40+ digit hash, default Payload delivery, ids=1 ( #3965 )
2018-12-19 20:19:49 +01:00
Sami Mokaddem
ed4f752d3a
Merge remote-tracking branch 'origin/2.4' into querybuilder
2018-12-17 16:36:27 +01:00
co59
bbeef129c0
fix: [model] Network activity category: add x509-fingerprint-md5 and x509-fingerprint-sha256
2018-11-29 23:07:11 +01:00
iglocska
665b6ccbae
fix: [internal] if no attribute distribution is found in the event edits, set the default instead of defaulting to 0
2018-11-29 15:33:45 +01:00
Sascha Rommelfangen
7425c87bef
fix: [freetext] fix notice on freetext import
2018-11-26 16:07:39 +01:00
iglocska
af0f40ab97
new: [server settings] Added automatic backup system for the server settings
2018-11-26 09:12:01 +01:00
iglocska
2d0259ce13
fix: [CS] coding standards script re-run
2018-11-23 14:11:33 +01:00
iglocska
5220dcec72
new: [API] Various enhancements and fixes to the APIs
...
- Added result count to restsearch API via the x-result-count header
- Added the includeProposals parameter to the attribute level restsearch
- Readability of events controller improved
- Fixed a bug blocking malware samples from being added using /events/add when the encrypt=1 flag was set for raw sample inclusion
2018-11-23 13:44:19 +01:00
iglocska
bef72f9465
fix: [API] Fix non exportable tags being included in the attribute level restsearch
2018-11-20 19:53:02 +01:00
iglocska
cfe934fb93
new: [search] Rework of the UI attribute search complete
2018-11-12 11:59:56 +01:00
mokaddem
695b71c555
chg: [Model] swapped openioc and json so that json is selected by default
2018-11-07 11:39:39 +01:00
iglocska
c96be93e3c
fix: [internal] Fix of wonky model function calls across the application for getting default attachment directories
2018-10-18 09:51:14 +02:00
iglocska
0bda88db39
fix: [internal] Fixes to invalid model function calls
2018-10-17 12:31:43 +02:00
www-data
f9183dee3b
Merge branch '2.4' into py-virtualenv
2018-10-15 17:09:18 +09:00
iglocska
4ce81e5d0b
fix: [API] Further fixes to the query builder
2018-10-10 20:38:09 +02:00
iglocska
40e7584f10
fix: [API] Further fixes to the tag handling
2018-10-10 15:17:39 +02:00
iglocska
6ead277f0d
fix: [API] Handle filters with no valid tags set as filter patterns correctly
2018-10-10 15:08:05 +02:00
iglocska
9412081680
fix: [API] Fixed broken check for overriding IDS flags via proposals, fixes #3748
2018-10-09 13:07:13 +02:00
iglocska
43558a9610
new: [API] rework of the searchall/quickFilter parameters
...
Now it correctly works as intended on both attribute and event contexts
2018-10-08 10:17:57 +02:00
Steve Clement
e26e4a2e92
Merge branch '2.4' into py-virtualenv
2018-10-08 07:45:04 +08:00
iglocska
65e16854d4
new: [export] Further changes required for the reworked export added
2018-10-05 14:48:41 +02:00
iglocska
7d7c733005
new: [internal] restsearch's bulk code moved to the model for attributes
2018-10-04 22:23:58 +02:00
Steve Clement
a699c5fcd4
Merge branch '2.4' into py-virtualenv
2018-10-02 20:55:46 +08:00
Steve Clement
602fb17335
Merge branch '2.4' into py-virtualenv
2018-10-01 09:19:02 +02:00
iglocska
f18f8b579a
new: [API] events/restsearch rework - chunked export for performance gains
2018-09-29 23:43:52 +02:00
iglocska
6e9c61a6b4
fix: [API] handle empty value fields when running a quick search
2018-09-28 15:57:41 +02:00
iglocska
c5c29b62a0
fix: [API] Fixed the quickfilter parameter
2018-09-28 15:54:08 +02:00
Steve Clement
df3d87b5c8
Merge branch '2.4' into py-virtualenv
2018-09-28 15:00:46 +02:00
Steve Clement
51a3a5cdbf
chg: [python] Added and amended varios places where python is called
2018-09-28 14:59:26 +02:00
iglocska
0216c9ea33
new: [API] Rework of the restSearch APIs
...
- peformance tuning
- removed some redundant looping
- internal memory profiling for attributes/restSearch
- saving the intermediary results to file instead of keeping it all in memory to reduce the memory footprint
- added the searchall parameter
- fixed the ignore parameter
- added the event_timestamp parameter
- added manual pagination to the attribute level restsearch (limit, page)
2018-09-28 09:21:29 +02:00
iglocska
0df898f42d
fix: [API] Fixed the handling of the to_ids flag
2018-09-14 10:41:39 +02:00
iglocska
45c882b420
fix: [API] various fixes to the timestamp handling
2018-09-11 23:20:00 +02:00
iglocska
a3f83fac63
fix: [API] fixed an invalid dissection of the tag parameter if the parameter is not set
2018-09-10 14:31:55 +02:00
iglocska
51b3ef61dd
new: [API] Added the includeEventTags parameter to the /attributes/restSearch API
...
- appends all event level tags to each attribute
2018-09-09 16:49:59 +02:00