MISP
/
MISP
mirror of https://github.com/MISP/MISP
2
2
Fork 0
Code Issues Releases Wiki Activity
12,506 Commits
41 Branches
370 Tags
181 MiB
Commit Graph

12506 Commits (5bc0834bac35e9f19bfc017d19c0f87ab1059c4c)

Author SHA1 Message Date
mokaddem 329908eeda chg: [attribute:delete] Simplified search options 2019-06-12 12:04:49 +02:00
mokaddem b3849655e0 fix: [attributes] Correctly pass the user object and renamed delete function 2019-06-12 11:56:42 +02:00
mokaddem 5748bab998 fix: few typos 2019-06-12 11:38:19 +02:00
mokaddem 8a5409949e chg: [object:fromAttributes] Enforce minimum popover size 2019-06-12 11:37:36 +02:00
mokaddem d6093b9659 chg: [object:fromAttributes] Method only accesible via AJAX and regular 
users can use the feature
 2019-06-12 11:17:17 +02:00
mokaddem b050269949 chg: [object:fromAttributes] Added support of hard delete if event not 
published yet
 2019-06-12 11:00:17 +02:00
mokaddem 892348d7fd Merge branch '2.4' of github.com:MISP/MISP into mergeAttributeIntoObjects 2019-06-12 10:35:14 +02:00
mokaddem c9f8660518 chg: bumped queryversion 2019-06-12 10:11:18 +02:00
mokaddem 66ee8ef12c chg: [galaxyMatrix] Added check if event not found 2019-06-12 10:03:31 +02:00
mokaddem 43a038b0a5 chg: [galaxyMatrix] Improved `getTagScores` to allow with and without 
ACL tag score fetching
 2019-06-12 09:56:54 +02:00
mokaddem b4d71554d3 chg: [textColourHelper] Little tweaking to prefer black text 2019-06-12 09:39:30 +02:00
mokaddem 49357e9c84 fix: [event:galaxyMatrix] Apply ACL on the galaxy matrix scores (event 
view)
 2019-06-12 09:11:08 +02:00
Christophe Vandeplas 69ee8a3a04 fix: [installer] added missing python zmq lib 2019-06-12 09:44:17 +03:00
mokaddem b1d23fdd1a chg: [attributeTag:getTagScore] Largely improved code 2019-06-11 16:40:02 +02:00
mokaddem 52ae153c0e Merge branch '2.4' of github.com:MISP/MISP into galaxyMatrixImprovements 2019-06-11 15:56:10 +02:00
mokaddem 11a4bdb959 chg: [restSearch:attack] Only expose attack return format to the `event` 
scope
 2019-06-11 15:50:51 +02:00
mokaddem acef3a0168 chg: [galaxyMatrix:stats] Only take into account occurences of galaxy 
once per event
 2019-06-11 15:09:02 +02:00
mokaddem fed5556976 fix: [galaxyMatrix:export] Removed multiple bugs providing inconsistent 
result
 2019-06-11 14:13:17 +02:00
chrisr3d 71209da87a Merge branch '2.4' of https://github.com/MISP/MISP into rework_modules 2019-06-11 13:53:00 +02:00
chrisr3d ccee18b8c7
add: [enrichment view] Displaying events metadata & number of returned attributes 2019-06-11 13:51:53 +02:00
iglocska 36b43f1306
fix: [security] Org admins could reset credentials for site admins 
- org admins have the inherent ability to reset passwords for all of their org's users
- this however could be abused if for some reason the host org of an instance would create org admins
  - the org admin could set a password manually for the site admin or simply use the API key of the site admin to impersonate them
- the potential for abuse is very circumstancial as it requires the host org to create lower privilege org admins instead of the usual site admins
- only org admins of the same organisation as the site admin could abuse this

- as reported by Raymond Schippers
 2019-06-11 11:05:34 +02:00
iglocska 90f4f03b52
fix: [sync] Push all bug with empty events fixed 2019-06-11 09:33:36 +02:00
iglocska 266ec4d8ab
Merge branch '2.4' of github.com:MISP/MISP into 2.4 2019-06-11 09:25:59 +02:00
iglocska 296db741a2
fix: [permissions] Fixed the default sync/user/publisher permissions to include perm_tagger and perm_tag_editor(sync only) 2019-06-11 09:24:16 +02:00
Alexandre Dulaunoy cfa5522896
chg: [misp-galaxy] updated to the latest version 2019-06-07 20:19:14 +02:00
mokaddem 7d5ea58418 chg: [view:relatedEvents] Improved UI 2019-06-07 16:07:05 +02:00
chrisr3d 831f7575bd Merge branch '2.4' of https://github.com/MISP/MISP into rework_modules 2019-06-07 15:32:39 +02:00
chrisr3d 861d2d7d6a
fix: Returning tags & galaxies from module results 2019-06-07 15:32:03 +02:00
iglocska 3733f3dd00
fix: [CSRF] END THIS NIGHTMARE 2019-06-07 15:25:32 +02:00
iglocska ab86fd658b
fix: [CSRF] Potential fix for the CSRF issues via tag/galaxy additions 2019-06-07 14:44:39 +02:00
mokaddem c126b1c1c9 chg: [object:fromAttributes] Changed warning message during the merge 
review
 2019-06-07 11:46:11 +02:00
iglocska 25d8d6cf94
new: [API] added new restSearch filter - date 
- deprecated to and from
- date works similarly to timestamp, accepted syntax options:
  - time ranges in the shorthand format (7d or 24h, etc)
  - timestamps
  - fallback parsing for other formats (2019-01-01, "fortnight ago", etc)
  - date ranges using lists [14d, 7d]
 2019-06-07 09:49:52 +02:00
iglocska 75dcaa14e0
fix: [session] Fix to automatic session destruction in previous attempt to fix the overflow of API sessions 2019-06-07 08:49:30 +02:00
iglocska d6fc4272ad
fix: [API] Destroy the session at the end of the execution 2019-06-06 20:31:56 +02:00
mokaddem c05792a0ab chg: [object:fromAttributes] Improved styling of reference table 2019-06-06 16:58:01 +02:00
mokaddem f72f09a214 chg: [object:fromAttributes] Added a bit more styling on the reference 
table
 2019-06-06 16:51:21 +02:00
mokaddem 82e7859182 chg: [object:fromAttributes] Show object references that will be dropped 2019-06-06 16:43:54 +02:00
mokaddem fe4740abd9 fix: [object:fromAttributes] SYNC support for older instances 
(duplicate attributes and their contexts)
 2019-06-06 15:11:34 +02:00
mokaddem c44ba8c486 chg: [relatedEvent:view] Started integration into event:view - WiP 2019-06-06 08:49:07 +02:00
mokaddem 429c868b3c Merge branch '2.4' of github.com:MISP/MISP into relatedEventUI 2019-06-05 15:30:54 +02:00
mokaddem 8d2c55fa69 Merge branch '2.4' of github.com:MISP/MISP into mergeAttributeIntoObjects 2019-06-05 12:02:17 +02:00
iglocska 3bcaab013e
new: [cleanup] Added admin tool to remove all published empty events 
- part of the solution to the empty event sync issue introduced in 2.4.107
- skips the event blacklisting
 2019-06-04 19:45:28 +02:00
Trey Darley 1d52eb096d
enable misp-wipewhere MySQL datastore isn't on localhost 
The misp-wipe script grabs the MYSQL host parameter from database.conf but it wasn't included in the call to mysqldump.
 2019-06-04 17:33:51 +02:00
Trey Darley 04005f7b32
Merge pull request #1 from MISP/2.4 
merge with upstream
 2019-06-04 17:30:19 +02:00
iglocska 0bd0d7e090
new: [sync] Block pulled events from being saved if they contain no attributes/objects 2019-06-04 14:51:31 +02:00
iglocska 2590b27334
fix: [sync] Temporary fix for empty events showing up in syncs when pulling from a new instance via an outdated one 2019-06-04 13:54:47 +02:00
iglocska 06d155d203
new: [emailing] Server admins can get a threshold for per org e-mail alerts, fixes #4714 2019-06-04 11:30:01 +02:00
Steve Clement 97d67506bc
Merge pull request #4671 from Kortho/patch-1 
fixed sql-statement for creating user RHEL
 2019-06-04 11:26:15 +10:00
Steve Clement 1380cf291a
chg: [doc] CentOS 7 updates (#4718) 
chg: [doc] CentOS 7 updates
 2019-06-04 11:25:25 +10:00
Steve Clement bb55cb659f
chg: [doc] CentOS 7 updates 
chg: [doc] Cake command failing
 2019-06-04 10:24:09 +09:00