MISP
/
MISP
mirror of https://github.com/MISP/MISP
2
2
Fork 0
Code Issues Releases Wiki Activity
19,211 Commits
35 Branches
366 Tags
190 MiB
Commit Graph

4811 Commits (ad1b373766c79d8ad9c17b88cc6343043607d27a)

Author SHA1 Message Date
Jakub Onderka ad1b373766 new: [log] Audit log 2021-05-03 13:44:44 +02:00
iglocska 43836e2fb4
Merge branch '2.4' into develop 2021-05-04 09:46:58 +02:00
iglocska f18fc7cb51
fix: [worker] restart not working correctly with SELinux 
- endless process spawn due to not being able to fetch the user's name
 2021-05-04 09:46:42 +02:00
iglocska e441808fa1
fix: [worker] restart not working correctly with SELinux 
- endless process spawn due to not being able to fetch the user's name
 2021-05-04 09:44:09 +02:00
mokaddem 95ceeebebb
chg: [event:alert] Added option to refresh to ban 2021-04-30 15:00:08 +02:00
mokaddem b71c73a304
chg: [event:getEventRepublishBanStatus] Improved wording 2021-04-30 13:59:15 +02:00
mokaddem 4c5daa55c5
fix: [server:settings] Typo 2021-04-30 13:59:02 +02:00
mokaddem eac4918ab6
new: [event:alert] Re-publishing ban feature based on configurable threshold 2021-04-30 13:58:53 +02:00
iglocska ad37454e89
Merge branch '2.4' into develop 2021-04-28 15:34:49 +02:00
iglocska ef9370514f
fix: [emailing] password resets and OTP didn't handle line breaks correctly 2021-04-28 15:33:50 +02:00
mokaddem 5cdba48eef
chg: [server:queryAvailableSyncFilteringRules] Returns error message instead of throwing error 2021-04-28 15:14:28 +02:00
iglocska 0e10b2780f
Merge branch '2.4' of github.com:MISP/MISP into 2.4 2021-04-28 00:40:26 +02:00
iglocska c0a1514814
new: [Correlation exclusions] clean function reworked 
- does everything on DB side
- no more issues with large lists being passed around
- should also be a fair bit faster
 2021-04-28 00:39:30 +02:00
mokaddem 5a7a108fe9 fix: [galaxyCluster:export] Only unset fields if they exists 
In some cases, galaxy clusters might not have targeting clusters
 2021-04-27 16:49:52 +02:00
iglocska d61ebc9905
new: [correlation exclusions] now have an optional comment field 
- explain why you exclude a value for easier maintenance
- edit existing exclusions to add those comments after the fact
 2021-04-27 10:52:53 +02:00
iglocska a0b1d0964e
chg: [correlations] reverted the division by 2 for the correlation counts 
- there are legitimate cases where we get one way correlations
  - we use the value field to aggregate the count, which leads to it being incorrect when using advanced correlations (the reverse correlation will use the value of the remote side)
 2021-04-27 08:41:41 +02:00
iglocska 81c2d01bcd
fix: [top correlations] Divide the count by 2 
- Each correlation has 2 entries in the DB (A->B and B->A)
- this doesn't mean that we should count each of those entries, but rather divide by 2 to get the actual correlation count
 2021-04-27 00:45:51 +02:00
iglocska 0d348bfd01
new: [Correlations] Added cached toplist 
- stored via zset in redis
- very fast, but needs to be generated
- generation background processed
 2021-04-27 00:40:40 +02:00
iglocska a55bb74673
fix: [galaxy] logging - use SYSTEM as the default org name for logging 2021-04-26 13:44:12 +02:00
iglocska 487cb2d67e
fix: [galaxy] new logging to catch meta field errors assumed that the user object was available 
- [narrator] It wasn't.
 2021-04-26 13:42:25 +02:00
iglocska e5c567ae91
fix: [galaxy] update fails gracefully and skips over malformed meta fields in a cluster 2021-04-26 13:26:29 +02:00
iglocska 3cbe5280d8
fix: [correlations] added fix for invalid function call 
- introduced by the refactor, looking up Attribute object variables such as noncorrelatingTypes
 2021-04-25 23:28:17 +02:00
iglocska 5b67cd147a
fix: [correlations] Don't barf when trying to add data with no correlations 2021-04-25 23:18:28 +02:00
iglocska 4ba1a1ab13
fix: [Correlations] fixed advanced correlations for ssdeep and separated into own function 2021-04-25 18:09:37 +02:00
iglocska 823a870ca0
Merge branch 'develop' of github.com:MISP/MISP into develop 2021-04-25 17:54:53 +02:00
iglocska 15fc60ebbf
new: [Correlations] refactor / rework 
- moved to own controller and model
- refactored several long incomprehensible functions

- extracted reused tasks from functions and made them reusable
- added a way to correlate individual values as opposed to attributes

- Added top correlations index
 2021-04-25 17:36:29 +02:00
Andras Iklody 6734e9d30e
Merge pull request #7366 from righel/allow-cake-cli-set-null-settings 
fix: allow setting org_id=0 via cake console, add --force option
 2021-04-23 15:08:34 +02:00
Luciano Righetti 04560a067b fix: add strict commit test function 2021-04-23 15:03:24 +02:00
Luciano Righetti da0f9c4148 fix: allow setting org_id=0 via cake console, add --force option to force settings. 2021-04-23 12:01:07 +02:00
mokaddem ec746fa064
Merge branch 'develop' of github.com:MISP/MISP into feature-galaxy-cluster-wipe-default 2021-04-23 09:06:08 +02:00
mokaddem 983be8bc69
chg: [server:queryAvailableSyncFilteringRules] Includes the HTTP return code in case of errors 2021-04-22 12:50:25 +02:00
iglocska 9e1b9f9b6e
new: [Correlations] added dedicated controller/model/views 2021-04-22 09:46:10 +02:00
mokaddem 7675427170
new: [galaxyCluster:wipe_default] New endpoint to wipe out all default clusters 2021-04-21 12:53:05 +02:00
mokaddem 50ccc022e1
Merge branch 'develop' of github.com:MISP/MISP into improvements-sync-filter-rules 2021-04-21 09:14:55 +02:00
iglocska e711fcc7c5
chg: [internal] fetchEventIds refactored 
- the stupid ordered params were driving me nuts
 2021-04-21 09:09:29 +02:00
iglocska 6c6f6170b0
new: [Cache] search allows bulk lookups 
- it is now possible to search for a list of values such as:

{
    "value": ["1.1.1.1", "8.8.8.8", "8.8.4.4"]
}

- this will now return a dictionary with the key being the lookup value and the value being a list of hits and their metadata

- passing a single value will revert to the old behaviour, returning a simple list with the hits and their metadata
 2021-04-20 17:21:18 +02:00
mokaddem 3ac9ca3453
Merge branch 'develop' of github.com:MISP/MISP into improvements-sync-filter-rules 2021-04-20 15:32:02 +02:00
mokaddem 1946960c88
new: [servers:edit] Fetches available orgs and tags from remote server 
- Componentized views and made them responsive
- Usage of picker for orgs and tags
- For server pull rule, fetches available choices from remote server
 2021-04-20 10:46:43 +02:00
Andras Iklody 5b8afa1a4f
Merge pull request #7342 from Wachizungu/fix-checkForDuplicateObjects-typo 
chg: [MispObject] fix copy paste error in checkForDuplicateObjects
 2021-04-19 22:41:45 +02:00
Jeroen Pinoy d1556d21b3
chg: [MispObject] fix copy paste error in editObject 2021-04-15 04:49:03 -07:00
Jeroen Pinoy 233c1f2fe9
chg: [MispObject] fix copy paste error in checkForDuplicateObjects 2021-04-15 04:39:47 -07:00
mokaddem 22c90a58c0
Merge branch 'develop' of github.com:MISP/MISP into develop 2021-04-08 15:51:35 +02:00
mokaddem b86af240b6
new: [servers:diagnostic] Tool to remove orphaned correlations 2021-04-08 15:50:45 +02:00
iglocska c150dbfe6e
Merge branch '2.4' into develop 2021-04-08 11:12:05 +02:00
iglocska a0f08501d2
fix: [security] Sharing group misassociation on sync 
- when an object has a sharing group associated on an event edit, the sharing group object is ignored and instead the passed local ID is reused
- as reported by Jeroen Pinoy
 2021-04-08 10:57:20 +02:00
Luciano Righetti c8286a10f5 fix: remove call to private method, call __alterAttributeCount() from Attribute::restore() method. 2021-04-06 14:33:43 +02:00
mokaddem 108d1a3c76
chg: [event:search] Allow filtering by org uuid. 
Fix #7288
 2021-04-06 14:05:11 +02:00
Jakub Onderka 81a6454c94
Merge pull request #7187 from JakubOnderka/related-attributes 
chg: [internal] Move fetching related attributes to one place
 2021-04-03 17:53:10 +02:00
Jakub Onderka f8ae2f40ae
Merge pull request #7158 from JakubOnderka/sg-user-org-id 
fix: [internal] Organisation object for user is not included all time
 2021-04-03 17:42:17 +02:00
Jeroen Pinoy d8415342b0
chg: [attributes/restSearch] add clarifying comments 2021-03-30 14:22:46 -07:00