MISP
/
MISP
mirror of https://github.com/MISP/MISP
2
2
Fork 0
Code Issues Releases Wiki Activity
23,076 Commits
42 Branches
370 Tags
181 MiB
Commit Graph

4 Commits (40ce38efec260b95705ddae52b60418298d8635d)

Author SHA1 Message Date
Jakub Onderka 881e151ddc fix: [UI] Show active tab for over correlations 2022-09-13 16:13:51 +02:00
iglocska d3d042cf2a
new: [overcorrelations] quality of life improvements 
- Added new tool to generate occurrence counts (real numbers this time)
- Added hook to truncate over correlating value table on recorrelation
- No longer store the partial counts as occurrences when generating correlations
 2022-08-10 14:17:20 +02:00
iglocska e9cfa41589
fix: [over correlation] pagination fixed 
- was still using stupid_correlations
 2022-08-01 14:12:00 +02:00
iglocska 3a4289d631
new: [correlation] engine rewrite 
- allow for multiple concurrent engines
  - default: similar behaviour as before, ACL enforced
  - No ACL: for endpoint misps, disable the enforcement of ACL for correlations altogether

- rework:
  - correlation entries are fully indexed reference tables
  - values are now stored separately
  - built in protection against overcorrelating values (defaults to 20 max)
  - 1 way correlations to cut the size in half
  - unsigned IDs to double the ID space
  - loads of performance improvements
  - fix to the broken event index with correlation counts enabled

- UI improvements
  - search for values from the correlation column directly (in case there are non-correlating versions of the same value)
  - added correlations to the attribute search/index

- TODO:
  - upgrade scripts
 2022-07-31 23:48:38 +02:00