iglocska
e2bbece354
Merge branch '2.4' of github.com:MISP/MISP into 5802
2020-04-30 08:30:01 +02:00
iglocska
1c3dc3fe51
Merge branch '2.4' into 5272
2020-04-28 15:31:17 +02:00
mokaddem
94bf826841
Merge remote-tracking branch 'origin/2.4' into JakubOnderka-event_loading_speedup
2020-04-28 11:39:51 +02:00
Jakub Onderka
f0ada41963
chg: [internal] Speed up of loading event page
2020-04-27 16:00:28 +02:00
mokaddem
eebde57ee1
fix: [attribute:restSearch] Make sure to always pass all tags to Decaying's
...
computation function
2020-04-27 10:45:19 +02:00
mokaddem
3547a8a888
fix: [correlations] Update correlations on Attribute or Event
...
`distribution` change
2020-04-17 11:29:09 +02:00
iglocska
20e1c62d11
fix: [API] fixes to set_filter_uuid
2020-04-02 07:02:24 +02:00
iglocska
150b5f7338
fix: [search] Fixed the UUID / ID searches on the attribute scope, fixes #5636
2020-04-01 23:14:29 +02:00
mokaddem
4f3ed331f0
chg: Removed unwanted indentation
2020-03-06 10:58:50 +01:00
mokaddem
2061707932
fix: [attribute:validation] Better validation of IPv6-[dst/src] and
...
improved display.
fix #5682
2020-03-06 10:54:06 +01:00
iglocska
9913d194fa
fix: [correlations] fix to an issue where attribute edits could purge correlations
...
- bug introduced by a merge gone wrong
- attribute edits that modify fields that do not affect the correlations (such as to_ids, comment, etc) would cause correlations to be purged
2020-02-26 14:28:29 +01:00
mokaddem
f94c693aa0
fix: [decaying] Attributes not having a DM associated will be defaulted
...
as `not decayed`
2020-02-21 14:47:52 +01:00
mokaddem
8e2da13e0e
Merge branch '2.4' into enforce-iso-datetime
2020-02-10 14:18:14 +01:00
iglocska
4806652448
fix: [API] several fixes to the Bro API
...
- always use flatten:1 to also include object attributes
- fix the generated full export to only include the header once
2020-01-31 11:45:23 +01:00
iglocska
bae2717eaf
new: [API] Enveloping improvements
...
- user controlled envelope settings to control memory estimation for attribute/event sizes
- logging of potentially too large events for the current memory envelope
- tuning of the default values
- added a divider for the event:attribute conversion to account for objects / event level contextualisation / correlations
2020-01-29 22:33:27 +01:00
mokaddem
b03d86221b
chg: [attribute:type] Datetime value is forced to be a valid ISO format
...
- It is converted into UTC in the server
- /attribute/add Form includes javascript validation part
2020-01-28 14:38:58 +01:00
Jakub Onderka
ed6bb367e3
chg: [UI] Disable Advanced extraction button if it is not installed
2020-01-26 18:56:41 +01:00
Jakub Onderka
73b9513a38
chg: [internal] Refactoring malware handling
2020-01-26 18:56:41 +01:00
Jakub Onderka
6f212dd97c
chg: [UI] Resizing images
2020-01-24 10:58:01 +01:00
mokaddem
d16369f4b3
Merge branch '2.4' of github.com:MISP/MISP into pr-view_picutre
2020-01-24 10:42:35 +01:00
iglocska
f88743cb7a
fix: [internal] slight tuning to the attribute restsearch memory envelop size
2020-01-23 09:45:27 +01:00
Alexandre Dulaunoy
42f106610b
chg: [attributes] new attribute type 'chrome-extension-id'
...
This attribute is used by Chrome to uniquely identify extension.
2020-01-21 09:40:25 +01:00
mokaddem
2a5112cc1e
Merge branch '2.4' of github.com:MISP/MISP into zoidberg-final
2020-01-17 09:20:49 +01:00
mokaddem
96c1f41ffd
chg: [attributeTag] Stop pruning outdated attribute tag when syncing.
...
Will be re-enabled in the future
2020-01-16 15:13:10 +01:00
mokaddem
5c97c5da53
fix: [Attribute:editTag] Correctly escalate the timestamp refresh to the
...
Object
2020-01-16 11:02:56 +01:00
Alexandre Dulaunoy
7a82a9f8d7
new: [attribute type] kusto-query attribute type
...
Kusto query is the query language for the Kusto services in Azure used
to search large dataset. It's used in Windows Defender ATP Hunting-Queries
and also Azure Sentinel (Cloud-native SIEM).
To fix #5475
2019-12-28 15:21:19 +01:00
mokaddem
7797aeed94
Merge branch '2.4' of github.com:MISP/MISP into zoidberg-final
...
Not a simple merge. Needed to fix forms and simplified how
form_seen_input works
2019-12-16 13:36:01 +01:00
mokaddem
092348ffcd
chg: [Attribute:seen] Moved conversion iso<->utc of fs/ls in dedicated
...
functions
2019-12-16 10:47:07 +01:00
iglocska
208e9e9cfc
fix: [API] include the local flag in tags when using restSearch
2019-12-11 10:29:45 +01:00
mokaddem
a1fdea754d
Merge branch 'zoidberg-timeline' into zoidberg-final
2019-12-06 15:40:51 +01:00
Alexandre Dulaunoy
a740d14593
chg: [types] new eppn attribute type added - EduPersonPricincipalName
...
Fix #5448
2019-12-05 19:22:38 +01:00
iglocska
bde75e9443
fix: [internal] attribute restsearch - handle empty lines returned from the module better
...
- no more empty lines hopefully in some exports
2019-12-05 09:42:49 +01:00
iglocska
5768ff9485
fix: [internal] hard delete of attributes after a soft delete fixed
2019-12-04 16:11:38 +01:00
iglocska
1c5afa49ed
new: [refactor] Massive internal refactor and cleanup of deprecated APIs
...
- new centralised restSearch function in AppController as entry point via all controllers
- new component handling restSearch related support functions, such as parameter mapping
- hollowed out all deprecated export functions on the event/attribute controller
- replaced with a new functionality that remaps them to restSearch
- all functionality should be maintained with all additional advantages introduced with restsearch
- additional cleanup (some unused functions removed)
2019-11-29 10:11:30 +01:00
Andras Iklody
ae5c228c05
Merge pull request #5273 from JakubOnderka/patch-54
...
fix: [internal] Remove unused function
2019-11-26 13:42:56 +01:00
iglocska
e4c82eb9ff
fix: [API] adding objects now has better validation errors
...
- instead of silently dropping attributes in certain cases
2019-11-15 14:11:24 +01:00
iglocska
0f40cef0f1
fix: [internal] Attribute/Event connectors for attribute_timestamp added
2019-11-11 16:09:54 +01:00
mokaddem
e396941dcf
fix: [attributes:restSearch] Fixed typo
2019-11-08 15:25:53 +01:00
mokaddem
437490872b
chg: [restSearch] Improved meta-search code
...
- Correctly returns nothing if search on metas does not return anything
- Renamed `orgc.sector` into `org.sector` while still being `orgc`
behind the hood
- Removed duplicated code
2019-11-08 11:37:43 +01:00
mokaddem
8e60c3d8d4
Merge branch '2.4' of github.com:MISP/MISP into feature-meta-search
2019-11-08 11:15:34 +01:00
iglocska
c4f1d4d15e
new: [SightingDB] Added integration with SightingDB
...
- Added configuration tool
- Added lookups from the event view
- Added includeSightingdb flag for the restSearch searches
- Added SightingDB search tool
- Added SightingDB connection test tool
2019-11-06 21:20:04 +01:00
mokaddem
a53a06d080
new: [attribute:restSearch] Support of Orgc and GalaxyElement meta searches
2019-11-06 11:12:30 +01:00
Jakub Onderka
caa62220ff
new: [internal] Attribute::isImage method
2019-10-12 09:34:49 +02:00
mokaddem
015ec7d989
Merge branch '2.4' of github.com:MISP/MISP into zoidberg-timeline
2019-10-08 14:12:38 +02:00
iglocska
173054ccd3
fix: [internal] Set attribute restsearch page to 1 if limit is set without setting the page number
2019-10-08 08:27:21 +02:00
Jakub Onderka
87b568526f
fix: [internal] Remove unused function
2019-10-05 23:17:19 +02:00
garanews
85c28ce36e
Fix some typo
...
Fix some typo
2019-10-04 13:02:59 +02:00
mokaddem
b44b369eec
Merge remote-tracking branch 'origin/2.4' into zoidberg-timeline
2019-10-02 14:35:00 +02:00
mokaddem
265f96dac8
chg: [object:quickAddAttribute] Improved feedback when creation fails
2019-10-02 14:30:34 +02:00
mokaddem
bb3cf85776
Merge branch '2.4' into zoidberg-timeline
2019-10-02 11:23:04 +02:00