MISP
/
MISP
mirror of https://github.com/MISP/MISP
2
2
Fork 0
Code Issues Releases Wiki Activity
14,938 Commits
34 Branches
364 Tags
187 MiB
Commit Graph

755 Commits (c1ee4d8bfbb9dcbb5703cd8bdeb76c5c6812edc7)

Author SHA1 Message Date
iglocska e2bbece354
Merge branch '2.4' of github.com:MISP/MISP into 5802 2020-04-30 08:30:01 +02:00
iglocska 1c3dc3fe51
Merge branch '2.4' into 5272 2020-04-28 15:31:17 +02:00
mokaddem 94bf826841
Merge remote-tracking branch 'origin/2.4' into JakubOnderka-event_loading_speedup 2020-04-28 11:39:51 +02:00
Jakub Onderka f0ada41963 chg: [internal] Speed up of loading event page 2020-04-27 16:00:28 +02:00
mokaddem eebde57ee1
fix: [attribute:restSearch] Make sure to always pass all tags to Decaying's 
computation function
 2020-04-27 10:45:19 +02:00
mokaddem 3547a8a888
fix: [correlations] Update correlations on Attribute or Event 
`distribution` change
 2020-04-17 11:29:09 +02:00
iglocska 20e1c62d11
fix: [API] fixes to set_filter_uuid 2020-04-02 07:02:24 +02:00
iglocska 150b5f7338
fix: [search] Fixed the UUID / ID searches on the attribute scope, fixes #5636 2020-04-01 23:14:29 +02:00
mokaddem 4f3ed331f0
chg: Removed unwanted indentation 2020-03-06 10:58:50 +01:00
mokaddem 2061707932
fix: [attribute:validation] Better validation of IPv6-[dst/src] and 
improved display.

fix #5682
 2020-03-06 10:54:06 +01:00
iglocska 9913d194fa
fix: [correlations] fix to an issue where attribute edits could purge correlations 
- bug introduced by a merge gone wrong
- attribute edits that modify fields that do not affect the correlations (such as to_ids, comment, etc) would cause correlations to be purged
 2020-02-26 14:28:29 +01:00
mokaddem f94c693aa0
fix: [decaying] Attributes not having a DM associated will be defaulted 
as `not decayed`
 2020-02-21 14:47:52 +01:00
mokaddem 8e2da13e0e
Merge branch '2.4' into enforce-iso-datetime 2020-02-10 14:18:14 +01:00
iglocska 4806652448
fix: [API] several fixes to the Bro API 
- always use flatten:1 to also include object attributes
- fix the generated full export to only include the header once
 2020-01-31 11:45:23 +01:00
iglocska bae2717eaf
new: [API] Enveloping improvements 
- user controlled envelope settings to control memory estimation for attribute/event sizes
- logging of potentially too large events for the current memory envelope
- tuning of the default values
- added a divider for the event:attribute conversion to account for objects / event level contextualisation / correlations
 2020-01-29 22:33:27 +01:00
mokaddem b03d86221b
chg: [attribute:type] Datetime value is forced to be a valid ISO format 
- It is converted into UTC in the server
- /attribute/add Form includes javascript validation part
 2020-01-28 14:38:58 +01:00
Jakub Onderka ed6bb367e3 chg: [UI] Disable Advanced extraction button if it is not installed 2020-01-26 18:56:41 +01:00
Jakub Onderka 73b9513a38 chg: [internal] Refactoring malware handling 2020-01-26 18:56:41 +01:00
Jakub Onderka 6f212dd97c
chg: [UI] Resizing images 2020-01-24 10:58:01 +01:00
mokaddem d16369f4b3
Merge branch '2.4' of github.com:MISP/MISP into pr-view_picutre 2020-01-24 10:42:35 +01:00
iglocska f88743cb7a
fix: [internal] slight tuning to the attribute restsearch memory envelop size 2020-01-23 09:45:27 +01:00
Alexandre Dulaunoy 42f106610b
chg: [attributes] new attribute type 'chrome-extension-id' 
This attribute is used by Chrome to uniquely identify extension.
 2020-01-21 09:40:25 +01:00
mokaddem 2a5112cc1e
Merge branch '2.4' of github.com:MISP/MISP into zoidberg-final 2020-01-17 09:20:49 +01:00
mokaddem 96c1f41ffd
chg: [attributeTag] Stop pruning outdated attribute tag when syncing. 
Will be re-enabled in the future
 2020-01-16 15:13:10 +01:00
mokaddem 5c97c5da53
fix: [Attribute:editTag] Correctly escalate the timestamp refresh to the 
Object
 2020-01-16 11:02:56 +01:00
Alexandre Dulaunoy 7a82a9f8d7
new: [attribute type] kusto-query attribute type 
Kusto query is the query language for the Kusto services in Azure used
to search large dataset. It's used in Windows Defender ATP Hunting-Queries
and also Azure Sentinel (Cloud-native SIEM).

To fix #5475
 2019-12-28 15:21:19 +01:00
mokaddem 7797aeed94
Merge branch '2.4' of github.com:MISP/MISP into zoidberg-final 
Not a simple merge. Needed to fix forms and simplified how
form_seen_input works
 2019-12-16 13:36:01 +01:00
mokaddem 092348ffcd
chg: [Attribute:seen] Moved conversion iso<->utc of fs/ls in dedicated 
functions
 2019-12-16 10:47:07 +01:00
iglocska 208e9e9cfc
fix: [API] include the local flag in tags when using restSearch 2019-12-11 10:29:45 +01:00
mokaddem a1fdea754d
Merge branch 'zoidberg-timeline' into zoidberg-final 2019-12-06 15:40:51 +01:00
Alexandre Dulaunoy a740d14593
chg: [types] new eppn attribute type added - EduPersonPricincipalName 
Fix #5448
 2019-12-05 19:22:38 +01:00
iglocska bde75e9443
fix: [internal] attribute restsearch - handle empty lines returned from the module better 
- no more empty lines hopefully in some exports
 2019-12-05 09:42:49 +01:00
iglocska 5768ff9485
fix: [internal] hard delete of attributes after a soft delete fixed 2019-12-04 16:11:38 +01:00
iglocska 1c5afa49ed
new: [refactor] Massive internal refactor and cleanup of deprecated APIs 
- new centralised restSearch function in AppController as entry point via all controllers
- new component handling restSearch related support functions, such as parameter mapping
- hollowed out all deprecated export functions on the event/attribute controller
  - replaced with a new functionality that remaps them to restSearch
  - all functionality should be maintained with all additional advantages introduced with restsearch
- additional cleanup (some unused functions removed)
 2019-11-29 10:11:30 +01:00
Andras Iklody ae5c228c05
Merge pull request #5273 from JakubOnderka/patch-54 
fix: [internal] Remove unused function
 2019-11-26 13:42:56 +01:00
iglocska e4c82eb9ff
fix: [API] adding objects now has better validation errors 
- instead of silently dropping attributes in certain cases
 2019-11-15 14:11:24 +01:00
iglocska 0f40cef0f1
fix: [internal] Attribute/Event connectors for attribute_timestamp added 2019-11-11 16:09:54 +01:00
mokaddem e396941dcf
fix: [attributes:restSearch] Fixed typo 2019-11-08 15:25:53 +01:00
mokaddem 437490872b
chg: [restSearch] Improved meta-search code 
- Correctly returns nothing if search on metas does not return anything
- Renamed `orgc.sector` into `org.sector` while still being `orgc`
behind the hood
- Removed duplicated code
 2019-11-08 11:37:43 +01:00
mokaddem 8e60c3d8d4
Merge branch '2.4' of github.com:MISP/MISP into feature-meta-search 2019-11-08 11:15:34 +01:00
iglocska c4f1d4d15e
new: [SightingDB] Added integration with SightingDB 
- Added configuration tool
- Added lookups from the event view
- Added includeSightingdb flag for the restSearch searches
- Added SightingDB search tool
- Added SightingDB connection test tool
 2019-11-06 21:20:04 +01:00
mokaddem a53a06d080
new: [attribute:restSearch] Support of Orgc and GalaxyElement meta searches 2019-11-06 11:12:30 +01:00
Jakub Onderka caa62220ff new: [internal] Attribute::isImage method 2019-10-12 09:34:49 +02:00
mokaddem 015ec7d989
Merge branch '2.4' of github.com:MISP/MISP into zoidberg-timeline 2019-10-08 14:12:38 +02:00
iglocska 173054ccd3
fix: [internal] Set attribute restsearch page to 1 if limit is set without setting the page number 2019-10-08 08:27:21 +02:00
Jakub Onderka 87b568526f
fix: [internal] Remove unused function 2019-10-05 23:17:19 +02:00
garanews 85c28ce36e Fix some typo 
Fix some typo
 2019-10-04 13:02:59 +02:00
mokaddem b44b369eec
Merge remote-tracking branch 'origin/2.4' into zoidberg-timeline 2019-10-02 14:35:00 +02:00
mokaddem 265f96dac8
chg: [object:quickAddAttribute] Improved feedback when creation fails 2019-10-02 14:30:34 +02:00
mokaddem bb3cf85776
Merge branch '2.4' into zoidberg-timeline 2019-10-02 11:23:04 +02:00