MISP
/
MISP
mirror of https://github.com/MISP/MISP
2
2
Fork 0
Code Issues Releases Wiki Activity
2,630 Commits
35 Branches
366 Tags
190 MiB
Commit Graph

1985 Commits (6ef7772e0b9774ef6804005d2bd1b91f4df6d024)

Author SHA1 Message Date
Iglocska 524871ab52 Sync users should default to termsaccepted and no password change required, fixes #432 2015-03-14 08:35:24 +01:00
Iglocska 50a03e897d Search in logs fixed, fixes #434 
- The log search incorrectly set the search terms for empty fields, meaning that any log entries that had unfilled columns, such as it is the case with admin_email would never return results
 2015-03-14 08:29:19 +01:00
iglocska 6763159e87 Security fix 
- filenames are now enclosed by quotes instead of double quotes while executing the zip command via exec
 2015-03-10 10:58:15 +01:00
Richard van den Berg 7f201fdf81 Consistent timestamps for STIX objects 2015-03-05 13:26:13 +01:00
Richard van den Berg 2a56a00e88 Consistent id's for malware-sample artifacts 2015-03-04 17:28:44 +01:00
Richard van den Berg bff42361ef Consistent id's for observable compositions 2015-03-04 17:07:32 +01:00
Richard van den Berg a4fd3b957a Use property class name in object ID 2015-02-25 09:50:00 +01:00
Richard van den Berg 8b89caf5b9 Use attribute uuid for cybox id's 2015-02-24 18:02:51 +01:00
iglocska 66db71e835 json view fixed, fixes #411 2015-02-24 15:46:42 +01:00
iglocska 8dad666b38 Disabled the animation in the MISP logo 
- it was quite heavy on CPU usage and it was too subtle to notice anyway
 2015-02-20 11:11:00 +01:00
iglocska 4239edffc9 Org admins editing privileged users demotes the privileged user to a lower permission level, fixes #408 
- an org admin now correctly can select the previously assigned privileged role for a user that he/she is editing
 2015-02-20 09:17:25 +01:00
Richard van den Berg d2556ff91d Use org name and baseurl in XML namespace for STIX 2015-02-19 15:46:54 +01:00
Richard van den Berg c9bd754adc More informative CIQ titles 2015-02-19 15:46:45 +01:00
Richard van den Berg 3c205c66f7 More informative STIX titles 2015-02-19 15:46:34 +01:00
iglocska 6782159b53 API search incorrectly generating JSON with several events, fixes #407 
- also fixed the edit button on the index
 2015-02-18 11:45:15 +01:00
iglocska 0dd8318fb3 Further work on the exports 
- Performance improvements for the event search exports
- JSON view code moved to Lib
- Fixed an issue that didn't restrict the dates correctly with the from / to parameters
 2015-02-16 17:31:32 +01:00
iglocska fbca80d680 Added more contextual info for the CSV exports, fixes #391 2015-02-16 14:47:21 +01:00
iglocska b5be1a36fb Correlation disabled for http-method, fixes #406 2015-02-16 13:30:15 +01:00
iglocska eed95b1129 Missing json view file added 
- return attributes fails when requesting the results in JSON
- added missing view file
 2015-02-16 13:14:05 +01:00
iglocska 54a86732e4 Relaxed the auth key requirement for nids exports 
- incorrect check on the nids exports blocked logged in users from downloading the snort/suricata rules of an event
- check removed
 2015-02-16 08:59:53 +01:00
iglocska 701160acd9 Fixed an issue with the free-text import failing on more than ~100 parsed values, fixes #389 
- Caused by a 1k variable / form limit imposed by php since 5.3.9
- Form data now collected by JS and passed as a single JSON in the POST request
- Allows massive IOC lists to be imported
- improved performance
 2015-02-10 14:42:24 +01:00
Richard van den Berg d5e556ee1e Fixed missing parentheses‎ 2015-02-05 17:40:56 +01:00
iglocska 12d7025bce Patch fixing json download, fixes #387 
- World's smallest patch
 2015-02-05 17:25:40 +01:00
Richard van den Berg 12dc5b6579 Make unpublished events private if MISP.unpublishedprivate == true 2015-02-05 17:16:40 +01:00
Richard van den Berg d3c0144b25 Merge remote-tracking branch 'upstream/master' 2015-02-05 14:17:10 +01:00
iglocska 2aa902cd4b Removed the old documentation, fixes #378 and some small fixes 
- resolved an issue of warnings being generated when an event without attributes / relations gets XML exported.
- added new dump of the documentation
 2015-02-05 10:11:29 +01:00
Aaron Kaplan 335d5b1492 Merge branch 'master' of https://github.com/MISP/MISP 2015-02-04 11:45:59 +01:00
iglocska 2401cedfdc Left off file in previous hotfix added 
- added a file that was not pushed during the last hotfix
- some improvements to the XML export to lower memory usage
 2015-02-04 11:06:41 +01:00
iglocska 8c30115f12 Documentation fail fixes #384 2015-02-03 21:53:03 +01:00
iglocska fddb06b3c2 Small change to the XML export 
- won't write to file after all, simply keeps adding to a string in memory. Should still resolve the XML conversion taking up high amounts of memory issue.
 2015-02-03 17:29:46 +01:00
iglocska f0aa849d04 Various improvements to the exports 
- Unified the way exports accept negated parameters
- Fixed the documentation
- Most exports are now restrictable by the event date (From/To parameters)
- none cached XML export now writes to file after converting each event, clearing the memory and resolving any potential memory issues
 2015-02-03 17:06:05 +01:00
iglocska 98f65aae09 Merging several pull requests and a few other changes 
- Pull request by RichieB2B: CentOS 6 & 7 installation instructions
- Pull request by RichieB2B: STIX exports now include comments for indicators
- Pull request by RichieB2B: Issue fixed with md5 type attributes not generating observables correctly during a STIX export
- Password policy change-able by a site admin via a regex and a min char requirement. Old functionality assumed if not set.
- bug fixed with incorrect jobs being created appearing during a scheduled pull (designates a push)
- slight changes to the installation instructions
- database.default.php now uses localhost instead of 127.0.0.1 and the default MySQL port
 2015-02-02 13:12:15 +01:00
iglocska be0fbfd108 Merge branch 'RichieB2B-ncsc-nl/stix_indicator_comments' into hotfix-2.3.41 2015-02-02 10:41:28 +01:00
Richard van den Berg c3615eff32 Pretify some comments 2015-01-29 17:24:44 +01:00
Richard van den Berg e6e66f3f1c Fixed typo 2015-01-29 17:21:54 +01:00
Richard van den Berg 883fe07861 Fixed typo 2015-01-29 17:20:57 +01:00
Richard van den Berg 0aa09fec4d Fix string assignments to StructuredText 2015-01-29 17:19:10 +01:00
Richard van den Berg 09511986e7 Map most MISP attribute comments into STIX 2015-01-28 17:48:11 +01:00
Richard van den Berg b4ceff477f Fixed typo 2015-01-28 14:01:30 +01:00
Richard van den Berg 2ef361d21a Also respect GnuPG.bodyonlyencrypted for posts alerts 2015-01-28 13:51:15 +01:00
Richard van den Berg c7671d0b41 Merge branch 'ncsc-nl/posts-alerts' into ncsc-nl/email_body_only_encrypted 2015-01-28 13:41:39 +01:00
Richard van den Berg 83a3903ec3 Fix whitespaces 2015-01-28 13:24:51 +01:00
Richard van den Berg 11052d85ce Fix posts alerts 2015-01-28 13:24:51 +01:00
Richard van den Berg 506e1fcb0d Send E-mail notifications for new posts in discussion and event threads 2015-01-28 13:24:51 +01:00
iglocska 0dd4304719 Merge branch 'RichieB2B-ncsc-nl/stix_md5_hash' into hotfix-2.3.41 2015-01-27 11:05:59 +01:00
iglocska 2018f822ec Fixed a bug with the way scheduled syncs are logged 2015-01-27 10:42:31 +01:00
iglocska 1b4f2a6408 Password complexity definable by admin 
- administrators can use a regex and a length setting to define password requirements
- old behavior used if left untouched
 2015-01-27 10:41:43 +01:00
Richard van den Berg 253e579307 Disallow unpublished events 2015-01-27 10:10:22 +01:00
Richard van den Berg 05cfbde5e7 Export md5 hashes without file name in STIX 2015-01-27 09:58:13 +01:00
Richard van den Berg 728e8cd29e Preserve indicator comments in STIX export 2015-01-27 09:54:52 +01:00
Richard van den Berg 886d36438e Do not send details of events unencrypted 2015-01-27 09:26:25 +01:00
Aaron Kaplan 461d2a36ab Merge branch 'master' of https://github.com/aaronkaplan/MISP 2015-01-18 20:57:38 +01:00
Aaron Kaplan 4a118cc28b should read if (defined(...)) 2015-01-18 20:56:30 +01:00
Aaron Kaplan 8e12004dbe Merge branch 'master' of https://github.com/MISP/MISP 2015-01-18 20:53:58 +01:00
iglocska 6b6c62bd53 Fix to the new sync issues since 2.3.39, fixing #365 
Incorrectly trying to look up authenticated user in the model fixed
 2015-01-15 13:46:11 +01:00
iglocska cedaac360a Fixes to the scheduled tasks and some documentation issues 
- Scheduled pulls should work correctly now
- Scheduled pushes and pulls correctly display in the logs
- Scheduled caching correctly sets the next date of execution
 2015-01-12 17:35:08 +01:00
Aaron Kaplan a2e9c60802 Merge branch 'master' of https://github.com/aaronkaplan/MISP 2014-12-21 23:55:31 +01:00
L. Aaron Kaplan 9baa9a9116 move CERT.at logo file 2014-12-21 23:55:14 +01:00
Aaron Kaplan ab4debd9f6 Merge https://github.com/MISP/MISP 2014-12-21 23:38:59 +01:00
iglocska 43e283a7e0 Copy pasta fail 2014-12-19 15:36:36 +01:00
iglocska 85e7f66ada Added missing view 2014-12-19 15:18:34 +01:00
iglocska bb642579b6 Remote attribute deletion removed 
- Deleting attributes on connected MISP instances can cause serious performance issues on multiple interconnected instnaces, temporarily removed
- Version number incremented
 2014-12-19 15:01:14 +01:00
iglocska f4723e06ff Update to the automation page 
- new parameters for the text export explained
 2014-12-19 14:59:34 +01:00
iglocska 92679f6b69 New way to download a single event 
- The event export buttons have been unified into a single download as... button
- clicking it loads a popup with all of the export formats
- added snort, suricata, text dump to the export options
- added the option for an extra setting for some exports (such as including non IDS flagged attributes, encoding attachments)
- easily extendable system

- moved the hidden popup divs into the general layout, can be easily reused anywhere

- removed the auth refresh option that was re-enabled recently as it seems to sometimes cause issues

- text exports now allow "all" to be specified as type, which will dump all attribute values that the user can see
- text exports now allow restricting the results based on event id
 2014-12-19 13:32:16 +01:00
Aaron Kaplan b40b0ec2ea Merge https://github.com/MISP/MISP 2014-12-16 22:56:37 +01:00
iglocska 3723119d83 Logging of admin emails and auth refresh 
- admin emails now generate log entries
- authentication is refreshed on activity
 2014-12-12 10:42:12 +01:00
iglocska f14a26444b Fix to some event altering actions not updating the timestamp 2014-12-10 14:08:08 +01:00
iglocska 3353b206b0 Small fix 2014-12-10 13:48:01 +01:00
iglocska 6e7554a26f Freetext import tool enhancement 
- mass edit types where applicable
- ip-src/ip-dst type will create two attributes, one for each
 2014-12-10 13:06:52 +01:00
iglocska 12692284fa Changed the annoying click to view feature on each row on certain index pages to double clicks 2014-12-05 15:27:54 +01:00
iglocska 67aa9d9859 Admin contact user menu moved next to new/list user buttons, recipient e-mails are now sorted alphabetically 2014-12-05 15:15:28 +01:00
iglocska 9e77393ee6 Empty filter options were not that obvious to some users in the event/user index filter popup. 2014-12-05 15:11:29 +01:00
iglocska 78edbc11d3 Long filename overlapping with malware button on attachment upload, fixes #357 2014-12-05 10:41:56 +01:00
iglocska 2e1dfca943 Attribute search now correctly searches attribute comments too for contained expressions, fixes #342 2014-12-05 10:13:07 +01:00
iglocska 2e28dd2dde Added tooltip for event ID in attribute search results, fixes #351 2014-12-03 17:23:32 +01:00
iglocska d895fb1834 Changed wording of warning message when entering a targeting type attribute, fixes #355 2014-12-03 17:17:40 +01:00
iglocska 800c550cc9 STIX export now correctly uses a custom namespace instead of the default "example", fixes #301 2014-12-03 16:23:30 +01:00
iglocska 1346f7e931 Fix to an issue with the markings in the STIX export 
- xpath describing the current node and descendants is incorrect
 2014-12-02 16:13:29 +01:00
iglocska 71d36b9c64 Several issues fixed 
- MYSQL.sql file now correctly includes the task entries
- GenerateCorrelation admin task is now a background job
- Organisation of events pulled now get the org in the server object as the owner instead of the one who initiates the pull
- Small fix to wrapping text in the pivot graph
 2014-11-27 14:47:13 +01:00
iglocska dc98d6f1d3 Some freetext import tweaks, fixes #330, fixes #334 
- freetext import now optionally allows setting the comment field
- removing rows in the freetext import result redirects to the event view if all rows are gone
 2014-11-25 15:56:32 +01:00
iglocska 7c6000ec21 Incorrect flash message on successfu freetext import fixed, fixes #322 2014-11-25 13:40:24 +01:00
iglocska 9e8803c6eb Confidence mapping changed to boolean in stix export, fixes #326 2014-11-25 13:37:22 +01:00
iglocska 9fae7a2193 Alternate event org display 
- shows both orgc and org to normal users
- naming convention changed (orgc => source org, org => member org)
- this should allow users to see if an event was generated on their instance or not.
 2014-11-25 13:21:25 +01:00
iglocska 2c7b7415b9 Improvements to the attribute search 
- case insensitivity
- tag searches

also, generatecorrelation is now a background job
 2014-11-20 10:40:24 +01:00
iglocska 53c1ef40b0 Fix to the CSRF protection blocking a proposal add 2014-11-19 10:24:46 +01:00
iglocska aa492066d8 Diagnostics check fails on PGP check if the server's key is a sign only key 2014-11-14 13:12:40 +01:00
iglocska bfdeda99dc Further corner case fixed (shadow attribute to attribute, not event) 2014-11-14 11:59:38 +01:00
iglocska 01fd0b93ce Comments also sanitized 2014-11-14 11:28:42 +01:00
iglocska c67af817e0 Related events not correctly sanitized in the xml export 2014-11-14 11:15:52 +01:00
iglocska 7a31e03021 Added to the caching mechanism 2014-11-14 11:05:37 +01:00
iglocska ad77555daa Stronger escaping of special characters in the XML exports 2014-11-14 09:04:36 +01:00
iglocska 4b7e56a43c Fix to an issue with the CSV export 
- missing linebreak after header row added
- fixed an issue with quotes in the value field not being escaped properly
 2014-11-12 15:36:07 +01:00
iglocska 4e116a8afe Fixes issue with file attachments not being downloadable for users of another org 2014-11-05 16:25:17 +01:00
iglocska ff606fc991 Document referencing deprecated way of passing authkey in url 2014-11-03 09:59:58 +01:00
iglocska 9b935d14ce Added flag to mimic the quickfilter of the event view to the API 
- search on any sub-string match in the event info, orgc, attribute value, attribute comment via the API
 2014-11-03 09:55:44 +01:00
iglocska 85166481b7 Fix to the missing accept terms button 2014-10-31 14:59:49 +01:00
iglocska 7fcbca5a7d Quick filter tool, some further tweaks to the filters 
- quick filter on the event index
- finds events with a sub-string match on event info, orgc, attribute value, attribute comment
 2014-10-31 14:44:10 +01:00
iglocska 6fba4308af Added new functionality to the filters 
- users can now search on attributes
- attribute search returns any event that has a a sub-string match on the entered attribute
- can also be used to negate (e.g: don't show me any events that have a sub-string match on any of its attributes)
 2014-10-30 15:07:57 +01:00
iglocska a879f3fc89 Left off from previous commit 2014-10-30 13:05:27 +01:00
iglocska 89b611f28a Font change caused some misalignment 2014-10-30 12:55:15 +01:00
iglocska a98dd9b489 Fix to the STIX export fixes #311 and a temporary fix to an OpenIOC import issue 
- STIX export had 2 issues as pointed out by RichieB2B:
    - Incorrect name assigned to incidents due to copy-pasta fail
    - Historyitems incorrectly handled

- For the OpenIOC import:
    - Mapping DnsEntryItem/Host to hostname
    - Mapping of hostnames to Network activity failed due to incorrect capitalistion
    - Temporarily removed the ignore function on certain indicators. Ignoring an element in an AND-ed branch happens without a pruning of the element IDs
 2014-10-30 10:30:55 +01:00
iglocska 02ca52bea6 Small visual fix 2014-10-29 15:58:48 +01:00
iglocska 4568589044 File management added and various small changes 
- Important! Logo images have now moved to a different location! Make sure that you update your settings!
- Site admins can now manage the uploaded image files and the terms of use file via the server settings interface
- add, link, delete files directly from the interface
 2014-10-29 15:20:30 +01:00
iglocska 15fa296fdb Update to the terms and conditions 
- use terms file as before if nothing else specified
- specify a file in the app/files/terms directory via the server settings tool
- specify whether to show it inline or create a download link for users instead
- by default everything is the same as before, except that the MISP installation path is no longer exposed by a non-existing terms file
 2014-10-28 15:11:40 +01:00
iglocska 035dfc8b12 Made the version check exclusive to the diagnostics tab 2014-10-27 17:21:57 +01:00
iglocska a87d88e049 Event attribute pagination is persistent through edits / deletes 2014-10-27 16:51:23 +01:00
iglocska 6d73409b90 Version check tool added 
- check the latest tag on github and compare it to the local version
- from here on all hotfix, minor, major releases should be tagged apropriately.
 2014-10-27 16:03:43 +01:00
iglocska efc580c938 Changing an attribute's field on the fly now requires a double click 2014-10-24 15:10:46 +02:00
iglocska d0b441132b Fix to the capitalisation in the user index filter and fix to the scripts tmp folder not being created on git clone 2014-10-24 14:17:58 +02:00
iglocska 4fec5d041f Added missing empty file 2014-10-23 15:59:38 +02:00
iglocska b7da6019f1 Further work on the manual, fix to the user filter 2014-10-23 14:09:50 +02:00
iglocska fc7ca7dcbe Work on the documentation and font change 
- Adding all the new features to the documentation
- removed Robotolight from css to fix issues with chrome/firefox on Windows
 2014-10-23 11:31:07 +02:00
iglocska def146b7a5 Merge branch 'hotfix-2.3.10' 2014-10-22 13:17:22 +02:00
iglocska c8cc55b243 Fix to the filters 2014-10-21 10:29:14 +02:00
iglocska 2ed9c18068 Fix to the filters 2014-10-21 10:27:55 +02:00
iglocska e6e72e7f29 Fix to the filter 2014-10-21 10:10:36 +02:00
iglocska 504527d36b Fixes to the proposal ajax mechanism for newer cakephp versions 2014-10-15 15:39:28 +02:00
iglocska 8f92361d4e Copy pasta fail breaking the proposal accept button fixed, fixes #293 2014-10-15 11:10:10 +02:00
iglocska dcc028516d Further improvements to the freetext regex to remove unprintable chars 2014-10-14 14:29:06 +02:00
iglocska 53d295868f Remove non printable characters from free text import 2014-10-14 10:59:12 +02:00
iglocska c7ec328fcf Better split on linebreaks for the freetext import 2014-10-13 17:43:31 +02:00
iglocska de4ec4885a Fix to the previous patch 2014-10-13 13:51:27 +02:00
iglocska 1abfe6120d Fixes issues with the event filters 
- tags not filtered correctly
- status bar showing current filters now shows actual strings for tags / analysis / distribution / threat level instead of the IDs
 2014-10-13 13:47:58 +02:00
iglocska caeba7fb91 CIDR now recognised by freetext import 2014-10-13 09:16:09 +02:00
iglocska 8235e8710d Updates to the documentation 2014-10-07 17:53:22 +02:00
iglocska c2a4a993ba Incorrect script tmp directory checked in the health tool 2014-10-07 15:55:40 +02:00
iglocska 06ef98af40 Another change to the baseurl check 2014-10-02 11:06:08 +02:00
iglocska 0e2d8e9a55 Update to the baseurl check in the health tool 
- https was checked incorrectly before
 2014-10-02 11:00:30 +02:00
iglocska 50b1676fe8 Small fix for the statistics 2014-10-02 10:48:43 +02:00
iglocska a0e9e304bd Removed unused column in the health tool 2014-10-01 14:31:48 +02:00
iglocska 259954a5aa Performance improvements 
- faster load time of the event view by not using Cake's Js generation
 2014-10-01 14:30:23 +02:00
iglocska 45cb52ca3f Cleanup of the worker health tool 2014-09-26 14:28:52 +02:00
iglocska e532e3561f Moved the eventattributerow element back directly into eventattribute 
- Removed serious performance issue on large events
 2014-09-25 16:28:51 +02:00
iglocska 6949f98d89 Update to the event view, attribute rows still had parts of the old forms in them hurting performance 2014-09-24 17:29:45 +02:00
iglocska e6bf73761e UI redesign of the template and worker health 
- UI of templates a bit clearer
- Worker health tool added to the server settings tool
 2014-09-24 15:35:25 +02:00
iglocska 2fe729535d Error fixed in the url generation for the filter event index popover 2014-09-16 14:52:03 +02:00
iglocska 5f69830d0b Incorrect naming fixed 2014-09-15 12:33:21 +02:00
iglocska eac25e3d3a Added the option to take ownership of an event uploaded via the Add MISP XML button 
- server setting has to be enabled to allow for this
- can cause issues if the event gets synchronised with an instance that has a different creator organisation for the same event
- it is recommended not to use this, but in some cases it can be very helpful - the setting for it in the configuration is called MISP.take_ownership_xml_import
 2014-09-15 12:30:26 +02:00
iglocska cb251c69ab Merge branch 'hotfix-2.2.40' into develop 2014-09-12 13:33:55 +02:00
iglocska d51fa92206 Changes to CakeResque installation fixes #287 
- CakeResque's installation instructions changed
 2014-09-12 13:29:30 +02:00
iglocska b5dbc71baf Issue with the new csrf protection with the new ajax fields 2014-09-11 17:40:58 +02:00
iglocska fc806b8919 Some missing tests added 2014-09-11 17:28:57 +02:00
iglocska 931bf75409 Merge branch 'feature/health' into develop 2014-09-11 14:55:05 +02:00
iglocska b69e51e867 No feedback from the failed numeric test for incorrect server settings 2014-09-11 13:02:38 +02:00
iglocska fa367febfa Download of the settings/diagnostics results implemented 
- Should help with trouble shooting, administrators can now download a json file containing all the settings and issues shown by the tool.
 2014-09-11 11:30:32 +02:00
iglocska 1058e418b9 Added the new server settings to the menues 2014-09-11 10:07:06 +02:00
iglocska 34cc73b21a Several changes for the diagnostic tool 
- Added extra diagnostic tools
 2014-09-10 16:55:34 +02:00
iglocska b178358f2a Default config.php added 2014-09-10 11:48:48 +02:00
iglocska 2521106254 Reworked the server settings for boolean settings and settings that have a few options as values. 
- Toggles instead of free-text
 2014-09-10 10:37:58 +02:00
iglocska 79127902b7 Cleanup, MISP health tool 
- cleanup of a lot of deprecated settings
- tool to help assess and alter issues with the instance settings
- new mechanism to store settings
 2014-09-10 09:43:22 +02:00
iglocska cef94553f7 Merge branch 'hotfix-2.2.39' into develop 2014-09-08 13:34:58 +02:00
iglocska be19976da4 Merge branch 'hotfix-2.2.39' 2014-09-08 13:34:43 +02:00
iglocska 4c6ea92ba3 Small fix to avoid repeated incorrect invalid messages after the first failed check 2014-09-08 13:34:14 +02:00
iglocska c11b388f32 Merge branch 'hotfix-2.2.39' into develop 2014-09-08 13:24:26 +02:00
iglocska f7bfbc91d7 Merge branch 'hotfix-2.2.39' 2014-09-08 13:24:09 +02:00
iglocska 2bb806d780 Fix to the PGP key validation tool, fixes #284 2014-09-08 13:23:23 +02:00
iglocska 982727819b debug left in code 2014-09-02 16:13:22 +02:00
iglocska 5a993dc120 Changes to the exports, fixes #285 
- XML export was slow, replaced SimpleXML with a simple script that outputs XML for massive performance gains
- New option in bootstrap to allow the cached XML export to also include the attachments
- CSV caching slightly rearranged, it's much more memory efficient now
- Some fixes to relatedevent orgs being shown even if showorg is disabled
- Added a new site admin action to generate several 3k events for load testing (slow)
 2014-09-02 15:56:28 +02:00
iglocska ae059c2f5a Pagination controls truncated for events with lots of attributes 2014-09-01 10:03:46 +02:00
iglocska 1d9881b2db slightly better looks for the tags on the index 2014-08-28 17:35:29 +02:00
iglocska 6206cdc619 Some minor changes to the event index 
- Tags are now fully shown on the event index
- can be enabled via bootstrap (the Configure::write setting is in the bootstrap.default.php file)
- shorthand distribution names
- narrowed some of the fields down
 2014-08-28 16:29:30 +02:00
iglocska 83369da25a Several fixes including compatibility with the STIX to_xml() performance fix 
- STIX export performance greatly improved thanks to 84ce8d8be6376797053668d68e1b863713f008dd
- some junk removed
- fixed some minor pagination issues on the event view
- site admin dummy event creator now has target-* type attributes
 2014-08-28 14:27:45 +02:00
iglocska 6874846ea4 Merge branch 'hotfix-2.2.38' into develop 2014-08-28 10:17:51 +02:00
iglocska e5806906ed Fixed authored date format, closes #283 2014-08-28 10:17:00 +02:00
iglocska 617f5a7add Import from OpenIOC now includes the original file as an attachment, fixes #157 2014-08-22 10:30:29 +02:00
iglocska d118a22b53 Added event distribution to alert e-mail, fixes #127 2014-08-21 17:04:02 +02:00
iglocska be00fbebff Publishing now immediately sets the event to published. A failed push will keep the event published, but it will note that it failed in the jobs / flash message. 2014-08-21 16:53:03 +02:00
iglocska d5ac3dea49 Merge branch 'hotfix-2.2.37' into develop 2014-08-21 15:29:18 +02:00
iglocska b6ee897b82 Fixed an incorrect check for the no PGP key warning condition partially responsible for #271 2014-08-21 15:27:25 +02:00
iglocska 9735a3041f Added the confirmation box div to all the pages that can have the publish popup 2014-08-21 13:52:36 +02:00
iglocska df11bfd920 Annoying css bug causing the menues that overlap with the filters not to work 2014-08-20 15:55:48 +02:00
iglocska 9813a3cfaa Added CVE to the freetext tool 2014-08-20 15:34:42 +02:00
iglocska 988ae667a1 CakePHP update 2014-08-20 14:58:53 +02:00
iglocska 7e2b8ceb85 Show the number of events for each tag in the tag index 2014-08-20 14:55:10 +02:00
iglocska 08b2db6895 Small permission change 2014-08-20 10:10:31 +02:00
iglocska 0fd92e6f50 Index filtering made more generic, added to users 2014-08-20 10:06:43 +02:00
iglocska 4e613bb049 Added the option to export the event info field with each attribute in the csv exports 2014-08-19 10:33:10 +02:00
iglocska e7dc801088 Merge branch 'develop' of https://github.com/MISP/MISP into develop 2014-08-19 08:44:39 +02:00
iglocska c535b940ab Merge branch 'feature/proposalfix' into develop 2014-08-19 08:43:24 +02:00
iglocska 7ec4457802 Typo causing the pushed proposals to have an incorrect "old_id" field 2014-08-18 15:51:01 +02:00
iglocska 2b85d1861d Publish button now loads a popover similar to the attribute delete buttons 2014-08-18 15:05:56 +02:00
iglocska 03e43e9824 Failed e-mails don't break the proposal creation any longer 2014-08-18 13:30:18 +02:00
iglocska 25c708f78a Small tweak to the contributor field 
- no need for a LIKE in the comparison, should make it slightly faster
 2014-08-15 12:36:45 +02:00
iglocska 7dacf1c8e7 Fix to the push failing 2014-08-15 12:06:37 +02:00
iglocska 63cebad0b7 Merge branch 'hotfix-2.2.36' into develop 
Conflicts:
	app/Controller/AppController.php
 2014-08-14 17:29:21 +02:00
iglocska 51189ab852 Merge branch 'master' of https://github.com/MISP/MISP 2014-08-14 17:27:48 +02:00
iglocska 1e6c9e662f Fixes authentication issues for some exports 
- some exports did not allow users to authenticate via passing the auth key through the header
 2014-08-14 17:26:40 +02:00
iglocska 22c1552bcc SQL scripts, some UI chnages 
MYSQL.sql and upgrade_2.3.sql updated
Fixed incorrect proposal counts showing up due to attributes that are flagged for deletion also being counted
Added some extra fields to the view proposal view to make it more useful
 2014-08-14 14:45:21 +02:00
iglocska 483827af15 Same as the previous commit, only for the freetext import tool 2014-08-14 14:14:06 +02:00
iglocska 35ba6321dc Various improvements with the way events are unpublished after changes 
- UI improvements, events appear unpublished after ajax queries that alter attributes
- Events get unpublished by the attribute replace tool and template population as they should
 2014-08-14 14:08:55 +02:00
iglocska bd6b206ac5 Further work on the sync 
- changed the pull implementation for proposals
 2014-08-14 11:33:33 +02:00
iglocska 0363a251e2 Merge branch 'hotfix-2.2.35' into feature/proposalfix 2014-08-13 16:14:48 +02:00
iglocska 62ad489e47 Merge branch 'hotfix-2.2.35' into develop 2014-08-13 16:14:29 +02:00
iglocska cf3809ef74 Further work on the previous patch 2014-08-13 16:13:38 +02:00
iglocska 76fec60fdc Merge branch 'hotfix-2.2.35' into feature/proposalfix 2014-08-13 15:50:17 +02:00
iglocska c8afd9beae Merge branch 'hotfix-2.2.35' into develop 2014-08-13 15:49:25 +02:00
iglocska 97eba22b46 Fix to the previous commit 2014-08-13 15:35:22 +02:00
iglocska 26a4f97adb Proposal validation now calls the Attribute validation method instead of using the (incorrect) duplication in ShadowAttribute 2014-08-13 15:24:22 +02:00
iglocska d0e121846c Missing validation for http-method in Shadow-Attributes 2014-08-13 15:21:16 +02:00
iglocska 77971d97db Publishing now also pushes proposals 
This is especially important to push deleted proposals once a proposal has been accepted
 2014-08-13 14:29:39 +02:00
iglocska 295e3d2655 Merge branch 'feature/proposalfix' of https://github.com/MISP/MISP into feature/proposalfix 2014-08-13 10:48:28 +02:00
iglocska 0a10844dec Work on the proposal sync for push - from the sender's side 2014-08-13 10:47:39 +02:00
iglocska bde4ad074d Permission fix to the event filters 
Users could only choose their own organisation in the org filter due to an overly restrictive filtering of the available options. Relaxed to all organisations that have an event that is visible to the user.
 2014-08-13 10:19:00 +02:00
iglocska 97358a405e Proposal package now correctly saved on the far end 2014-08-12 18:05:26 +02:00
iglocska 9799c1d9dd More work on the sync fix 2014-08-12 17:25:09 +02:00
iglocska 6bca13b3e5 Further work on the sync fixes 2014-08-12 15:35:32 +02:00
iglocska 8b16f0cf18 Push now also only does a differential push 
- send uuids of events to be pushed together with timestamps to the other instance
- other instance removes events that are already up to date or locally created from the array
- sends the remaining uuids back
- first instance initiates the push of events that were not filtered out
 2014-08-12 11:54:00 +02:00
iglocska 6e168e5b57 Small fix to the proposal accept button and cakephp 2.4.8+ (related to 3da49c9) 2014-08-12 09:43:53 +02:00
iglocska e6c28fe69a Futher work on the proposal sync 2014-08-11 16:40:09 +02:00
iglocska 1bbf678f70 Further changes 2014-08-11 16:26:49 +02:00
iglocska 99c04afa85 First round of fixes 2014-08-11 15:11:57 +02:00
iglocska 2ad040f0e6 view left off from previous commit 2014-08-08 15:33:57 +02:00
iglocska 559b39ceb5 Reworking of the event filtering 2014-08-08 15:28:37 +02:00
iglocska 8e987bee67 Made thread title clickable in event discussions fixes #270 2014-08-06 14:37:19 +02:00
iglocska e537c3aa49 Fixed an ajax issue with event discussions 
- could not add posts via the event view
- related to 3da49c964b
 2014-08-06 14:07:30 +02:00
iglocska a6a353252e Merge branch 'hotfix-2.2.34' into develop 2014-08-06 13:47:51 +02:00
iglocska f86bb89e14 Commas in CSV now escaped properly fixes #281 2014-08-06 13:46:52 +02:00
iglocska 90a5832638 Performance 2014-08-06 13:40:23 +02:00
iglocska de9affda91 Small performance improvement 
The contributor field in the event view is evaluated based on proposal log entries from the log table affecting the current event. In order to improve performance, the LIKE check for the event ID is moved to the last argument in order to avoid parsing rows that could be ignored by the other arguments quicker.
 2014-08-06 11:16:27 +02:00
iglocska edc8029869 Updated cakephp 2014-08-06 10:09:04 +02:00
iglocska 3da49c964b Fixed broken AJAX queries in MISP as a result to changes in cakephp 2.4.8+ 
A change in cakephp version 2.4.8+ has resulted in ajax form submitions breaking. Reason for this was a change in the SecurityComponent taking the url specified in the form into account when generating the CSRF tokens.

This is now fixed by embedding the correct url in the ajax forms.
 2014-08-06 10:02:52 +02:00
Aaron Kaplan 087cea49ad added CERT.at org file 
Also testing pull requests upstream
 2014-08-05 15:14:17 +02:00
iglocska 53ac9a16da More missing <?php tags 2014-08-05 11:24:07 +02:00
iglocska 9902217ac5 Missing <?php tag in a view file 2014-08-05 10:32:49 +02:00
iglocska 9e227ef724 Missing view file added 2014-08-04 18:15:39 +02:00
iglocska 83d5e191fc Updates to the STIX export 2014-08-04 18:07:15 +02:00
iglocska 525ef65008 Fix to the previous commit 
- previous commit broke the flash message alignment when debug was enabled
 2014-08-03 21:24:46 +02:00
iglocska 51d83f8ceb Fixed the annoying collapsing top bar 2014-08-01 15:41:48 +02:00
iglocska 2ddad51056 Merge branch 'develop' of https://github.com/MISP/MISP into develop 2014-08-01 15:30:48 +02:00
iglocska 23bc4127bf Merge branch 'feature/stix_export' into develop 2014-08-01 15:29:49 +02:00
iglocska b983147061 Some cleanup 2014-08-01 15:29:16 +02:00
iglocska 2915be5020 Download stix xml / json result 2014-08-01 15:22:39 +02:00
iglocska 5257fa2b4a removed old junk version of the export 2014-08-01 14:15:39 +02:00
iglocska 167e5e43a3 First version of the STIX export implementation 
- currently to_xml() has performance issues, if it's not resolved fast, it would be a good idea to move the export to the background workers

- some UI changes
 2014-08-01 14:14:20 +02:00
Christophe Vandeplas 9da90a1f0c Merge branch 'hotfix/export_suricata' into develop 2014-07-29 14:30:03 +02:00
Christophe Vandeplas f4e6e3fb12 regex bugfix in the ids export + suricata export using dns keyword 2014-07-29 14:28:34 +02:00
iglocska 7651f95faa Python scripts to handle the conversion from a MISP JSON event to stix/cybox 2014-07-25 10:47:08 +02:00
iglocska 40baedc531 Merge branch 'feature/templates' into develop 2014-07-19 16:26:36 +02:00
iglocska c64d6a8c93 same org / site admin restriction on freetext importer added 2014-07-19 16:25:43 +02:00
iglocska 61d2fe54ff Start of the stix export tool 2014-07-19 16:24:25 +02:00
iglocska c5ed7531cd Truncated the event info fragment shown in the pivot bubbles by one extra character 2014-07-19 16:03:21 +02:00
iglocska e1988690c6 Merge branch 'feature/templates' into develop 
Conflicts:
	app/Model/Event.php
 2014-07-19 15:51:30 +02:00
iglocska ab5b9a9dae Several features finished 
- first version of templating system complete
- first version of freetext importer complete
- first version of mass attribute replace tool complete

- some UI changes
 2014-07-19 15:09:37 +02:00
iglocska 893ef5a129 Freetext import tool 
Added freetext import tool
 2014-07-10 17:02:19 +02:00
iglocska 029ef252a2 Some fixes to the templating 
- resolved bugs with permissions
- fixed the broken mass delete tool
- Fixed an issue with the type not being chosen correctly for file type attributes when created through the templating tool
 2014-07-08 11:31:23 +02:00
iglocska 45d826a252 First version of the templating feature complete 
- still needs some refinement, but it's feature-complete
 2014-07-02 16:20:19 +02:00
iglocska 4b19de1033 Merge branch 'hotfix-2.2.33' into develop 2014-06-27 21:38:31 +02:00
iglocska 72d4db3007 2 Background worker issues fixed 
- Start-up script could only be started from the script's location

- Division by zero in e-mail alerts when calculating the progress of the background job
 2014-06-27 21:36:14 +02:00
iglocska 9bede8e1b4 Further work on the templates 2014-06-25 09:56:33 +02:00
iglocska 6ac105e132 Merge branch 'hotfix-2.2.32' into develop 2014-06-24 13:44:22 +02:00