MISP
/
MISP
mirror of https://github.com/MISP/MISP
2
2
Fork 0
Code Issues Releases Wiki Activity
6,648 Commits
63 Branches
383 Tags
216 MiB
Commit Graph

6648 Commits (67d37a283faab5c95e88cb539743b26c8e2743d6)

Author SHA1 Message Date
Richard van den Berg 824611c5d7 Handle filename only attributes 2017-10-13 15:03:21 +02:00
chrisr3d 2035f40c6f Merge branch '2.4' of github.com:MISP/MISP into 2.4 2017-10-13 14:57:46 +02:00
Richard van den Berg 752104028c Skip non-observable indicator, fixes #2561 2017-10-13 14:55:31 +02:00
chrisr3d dbad853a16 Added a dictionary to manage patterns and observable objects 2017-10-13 14:43:39 +02:00
Andras Iklody 243b3e1839 Merge pull request #2563 from RichieB2B/ncsc-nl/stix-tlp 
Use MISP TLP tags to set STIX tlpMarking
 2017-10-13 13:42:37 +02:00
Richard van den Berg 406acc80cf Use MISP TLP tags to set STIX tlpMarking 2017-10-13 13:09:28 +02:00
iglocska 77c9d2864e Merge branch '2.4' of https://github.com/MISP/MISP into 2.4 2017-10-11 11:14:26 +02:00
iglocska 0efa2bef1a new: Rework of the feed correlation lookups for the event view 
- massive performance boost by using redis pipelining
- for events with 10k+ attributes, show truncated feed correlation lookups, informing the user about the number of correlating attributes and a boolean flag on attributes saying that they correlate
- The overall feed correlation counter also allows users to pivot to a view that loads all correlations, though it should be used with some caution as it can be somewhat heavy
 2017-10-11 11:12:34 +02:00
chrisr3d 4b339751ee fix: skipping composite objects 2017-10-10 17:54:55 +02:00
Andras Iklody af7257127c Replaced placeholder label with threat-report 2017-10-10 16:09:19 +02:00
Alexandre Dulaunoy da0da59a9b
fix: STIX 2.0 report doesn't require labels but the python-stix2 requires one 2017-10-10 09:58:56 +02:00
Alexandre Dulaunoy d8be879161
fix: mixbox and cybox not required then it's removed 2017-10-10 09:17:18 +02:00
iglocska c4eb8ad6b3 Merge branch '2.4.81' into 2.4 2017-10-09 16:21:49 +02:00
iglocska 22804d2eac fix: PyMISP and warninglists updated 2017-10-09 16:20:57 +02:00
chrisr3d a47f964061 Merge branch '2.4.81' of github.com:MISP/MISP into 2.4.81 2017-10-09 16:19:26 +02:00
chrisr3d 78c5d29f9a fix: Indicators added in addition to observed data + misp tag for IDS 2017-10-09 16:17:34 +02:00
iglocska 30d2f8f992 chg: submodules updated 2017-10-09 16:12:07 +02:00
iglocska e6707e309d chg: Replaced the correlation graph icon to something more appropriate 2017-10-09 16:01:02 +02:00
iglocska 3175c8f958 fix: Fix a rare issue with zombie sighting data throwing a notice 2017-10-09 16:00:31 +02:00
iglocska ca6f4a783a fix: Fix to a potential reflected XSS on the quickDelete 
- low impact, XSS required user confirmation of malicious payload

- as reported by Or Hanuka (PALANTIR)
 2017-10-09 15:40:40 +02:00
iglocska 17592a4f27 fix: small fix to a missing ajax check 
- ajax forms opened full screen look bad
 2017-10-09 15:39:44 +02:00
iglocska 1b30913d66 fix: Various UI fixes 
- no more walk of shame after demoing MISP on a potato quality projector (beamer for our Belgian/Dutch/German friends)
 2017-10-09 15:38:31 +02:00
iglocska af01b18844 fix: Removed debug output from adding object references 
- caused the spinning loading of doom
 2017-10-09 11:28:09 +02:00
iglocska 9259f072fe chg: ACL updated 2017-10-08 20:33:59 +02:00
iglocska 483c8704ac new: Added first experimental STIX 2 export implementation 
- kudos to @chrisr3d for digging into the deepest bowels of the scary beast that is STIX2

- PoC, definitely needs further improvements/mapping. Let us know about issues you find!
 2017-10-08 20:29:50 +02:00
iglocska fa7d3fdb36 new: First round of updates to the correlation engine ready 
- node deletion temporarily disabled until a bug is resolved
 2017-10-08 19:50:28 +02:00
iglocska b5b4652c61 fix: galaxies updated 2017-10-08 15:33:56 +02:00
iglocska f5bcd37944 Merge branch '2.4' of https://github.com/MISP/MISP into 2.4 2017-10-08 15:32:57 +02:00
iglocska d0e99c061e new: Further progress on the graphing 
- also, added new icon field to galaxies
 2017-10-08 15:32:26 +02:00
iglocska a399ef1186 new: Further work on the graphing engine 2017-10-07 16:18:39 +02:00
chrisr3d 5c7a4746db Added Tags as labels and links as external_references (both properties of Reports) 
Will also add custom objects later, and handle the precision issues
for 'created' and 'modified' properties of all the STIX Objects
 2017-10-06 16:38:15 +02:00
iglocska 5290214c9b new: First iteration of the graphing engine rework 2017-10-06 10:05:00 +02:00
iglocska 9185991f08 Merge branch '2.4' of https://github.com/MISP/MISP into 2.4 2017-10-05 22:48:01 +02:00
iglocska 1dec3e23e8 fix: Fix notice if invalid taxonomy is viewed 2017-10-05 22:47:36 +02:00
chrisr3d 1aa113814b add: First WiP STIX 2.0 export from MISP JSON standard format 
This is an early stage export from MISP JSON into the STIX 2.0
(still unpublished). Some attributes type are missing, galaxy and
objects needs to be exported into custom object due to the current
limited state of STIX 2.0. Tags will be added later as labels and link
as external_references (open points with OASIS CTI ongoing discussions).
 2017-10-05 18:07:41 +02:00
Andras Iklody 67758258fa Merge pull request #2539 from RichieB2B/ncsc-nl/certauth 
Allow creating users with CertAuth via userDefaults
 2017-10-05 12:06:57 +02:00
iglocska bbbdea72e3 Merge branch 'attributefiltering' into 2.4 2017-10-05 12:00:36 +02:00
iglocska cd9fe1883e fix: Some cleanup of the attribute filtering 2017-10-05 11:59:59 +02:00
Richard van den Berg 0e97e67be0 Allow creating users with CertAuth via userDefaults, fixes #2538 2017-10-05 11:41:54 +02:00
iglocska 67a59a7ac2 fix: Internal reference: type with a uuid of an event converts to a clickable link 2017-10-05 10:37:52 +02:00
Andras Iklody bdb7afa06f Merge pull request #2536 from RichieB2B/stix-mispobjects 
Add MISP objects to STIX export
 2017-10-04 22:49:59 +02:00
Andras Iklody 4688df15ee Merge pull request #2537 from RichieB2B/ncsc-nl/stix-conditions 
Add Condition attribute to HTTP_Method STIX export
 2017-10-04 22:49:37 +02:00
Richard van den Berg 7d7a01da56 Add Condition attribute to HTTP_Method STIX export 2017-10-04 20:50:49 +02:00
Tristan METAYER 66a43f5511 Add an imput for search on all attributes in an event. 
field to search can be modify in administration page.
 2017-10-04 19:07:58 +02:00
Richard van den Berg c812d2207d Add MISP objects to STIX export 2017-10-04 17:48:55 +02:00
Andras Iklody 05161f023f Merge pull request #2533 from RichieB2B/stix-composites 
Add ip-src|port and ip-dst|port attributes to STIX export
 2017-10-04 14:32:14 +02:00
Richard van den Berg 9458129ee7 Add ip-src|port and ip-dst|port attributes to STIX export 2017-10-04 14:23:59 +02:00
iglocska e27d788090 fix: Potential fix to missing proposals during sync 
- rather stupid adherence to push rules removed for proposal sync
 2017-10-04 12:57:11 +02:00
iglocska 0a15ecd6eb fix: Fixed wonky object pre-save view 
- showed numeric distributiion level for attributes
- showed numeric sharing group ID for attributes
- showed currently selected sharing group ID even if the distribution was ultimately not set to sharing groups
 2017-10-04 10:44:02 +02:00
Andras Iklody 4841da1056 Merge pull request #2529 from SHSauler/patch-3 
Fix: Removed duplicates from $categoryDefinitions
 2017-10-04 09:55:03 +02:00