MISP
/
MISP
mirror of https://github.com/MISP/MISP
2
2
Fork 0
Code Issues Releases Wiki Activity
25,582 Commits
35 Branches
366 Tags
190 MiB
Commit Graph

162 Commits (df7ff3d4cd51c44a9df946eb7e185985b017450c)

Author SHA1 Message Date
iglocska 95f17d6acd
fix: [sync] Some minor changes to the sighting push 
- correctly handle anonymisation
- only push sightings, not rest of the event (decide on sender side)
- handle receiving sanitised sightings
 2019-11-25 14:32:22 +01:00
Richard van den Berg dd963c2e21 Sync sightings on push, pull and push on add 2019-11-22 21:53:51 +01:00
iglocska c4f1d4d15e
new: [SightingDB] Added integration with SightingDB 
- Added configuration tool
- Added lookups from the event view
- Added includeSightingdb flag for the restSearch searches
- Added SightingDB search tool
- Added SightingDB connection test tool
 2019-11-06 21:20:04 +01:00
mokaddem b51871fe52
fix: [Sightings] Plugin.Sightings_policy=Event Owner now shows sightings 
that belong to the creating org
 2019-08-26 16:49:30 +02:00
mokaddem ed98d73be7
Merge branch '2.4' of github.com:MISP/MISP into decaying 2019-08-22 15:33:09 +02:00
mokaddem cd5c9f7d1d
Merge remote-tracking branch 'origin/2.4' into decaying 2019-08-20 15:00:38 +02:00
Jakub Onderka 4ef9595023 fix: Replace not exists MethodNotFoundException with NotFoundException 2019-08-14 21:27:05 +02:00
iglocska de99495edf
fix: [API] sightings restSearch now accepts uuids as org_id, fixes #4992 2019-08-14 11:52:54 +02:00
mokaddem 6ba45b27f8
Merge remote-tracking branch 'origin/2.4' into decaying 2019-08-13 16:32:58 +02:00
mokaddem bbab646d01
chg: [decaying:simulation] Support of sightings in the decaying simulation 2019-07-16 09:31:49 +02:00
Nikos Filippakis 9d59b10368 Publish events to Kafka 
Signed-off-by: Nikos Filippakis <nikolaos.filippakis@cern.ch>
 2019-03-18 15:53:22 +01:00
mokaddem 47e53230ac fix: [sighting] Bug adding sightings on every attributes 
When trying to add a sighting to a value via the REST API,
if a value was given to the key `values` instead of an array,
the Model function `addSighting` would *crash* and skip the condition on
the value, consequently adding a sighting on every attributes.
 2019-01-29 12:54:50 +01:00
Sami Mokaddem ed4f752d3a Merge remote-tracking branch 'origin/2.4' into querybuilder 2018-12-17 16:36:27 +01:00
iglocska 2d0259ce13 fix: [CS] coding standards script re-run 2018-11-23 14:11:33 +01:00
mokaddem 7f5225b154 new: [rest client] added first draft of querybuilder widget 2018-11-06 16:54:17 +01:00
iglocska bbc8a8bf4d fix: [API] minor fixes to the sightings api 
- fixed duplicate sighting tags in XML output
- added attribute value to the sighting
 2018-10-29 20:18:29 +01:00
Sami Mokaddem 5763a74b96 chg: [sighting/api] improved comments 2018-10-23 13:39:29 +02:00
Sami Mokaddem ff5f5faf02 new: [sighting/api] xml output format + improved error feedback 2018-10-23 13:06:37 +02:00
Sami Mokaddem 01cba114f2 fix: [sightings/api] now support json output format 2018-10-23 12:17:54 +02:00
Sami Mokaddem 99e5f560a8 new: [sighting/api] trying to follow the new API architecture. JSON 
export is broken but CSV is working. WIP...
 2018-10-23 11:24:03 +02:00
Sami Mokaddem 41d2de90db chg: typo 2018-10-23 00:05:24 +02:00
Sami Mokaddem 731a4d5e2b new: [Sightings/API] Added possiblity to get sightings based on a 
timerange/source/...
 2018-10-22 23:27:58 +02:00
iglocska 0bda88db39 fix: [internal] Fixes to invalid model function calls 2018-10-17 12:31:43 +02:00
Steve Clement 51a3a5cdbf chg: [python] Added and amended varios places where python is called 2018-09-28 14:59:26 +02:00
chrisr3d 8628757f65
fix: [Sighting] Fixed sighting creation 2018-09-07 15:45:57 +02:00
jgo 32bb9c4b80 check if sighting with given uuid already exists before saving new sighting 2018-07-27 14:23:40 +02:00
jgo 719bcb5a65 add attribute UUID to sighting item (easier for synchronization) 2018-07-27 13:34:20 +02:00
iglocska a81894f14c chg: [CS] Changed to PSR-2 
- to make contributions easier, adopted PSR-2
- used php-cs-fixer to rework the style
- *sniff sniff* Goodbye tab indentation
 2018-07-19 11:48:22 +02:00
iglocska 56808265b7 fix: [python3] Updated script to python3 only 2018-07-12 16:26:49 +02:00
iglocska 6090e77cff fix: Rework of tags index / galaxy view 
- performance tweaks
- no more silly queries
- added sharing group aware ACL to the event/attribute counters
 2017-11-09 11:53:57 +01:00
iglocska 57b935e7de fix: Added context to the sightings zmq feed 2017-11-08 18:57:08 +01:00
iglocska 7492d2799f new: Sightings ingested on import/sync 2017-11-03 15:18:46 +01:00
iglocska 17b00e0376 fix: Fixed a bug where sightings couldn't be added to objects 2017-10-27 12:16:41 +02:00
iglocska 68f4833893 new: First version of the zmq reimplementation 2017-10-27 09:10:46 +02:00
iglocska 69436f3dd9 fix: Fixed the duplicate sighting save that kept popping up in the ZMQ feed 2017-06-16 09:23:05 +02:00
iglocska 57857c3a32 new: Performance improvements for the pub-sub modules 
- Only load and open connection to redis for the pub-sub connection once.
- Massive performance boost when the ZMQ functionality is enabled
 2017-06-16 08:41:12 +02:00
iglocska ab9f282a44 new: Added sightings to ZMQ pub sub system 2017-05-28 00:33:20 +10:00
Ángel González 926895733b Cosmetic changes 
Change space indents to tabs
Remove ?> at end of file
Add or remove some indentation where appropriate
 2017-05-08 00:45:57 +02:00
Iglocska 72a326f50f fix: Fixed several issues with the sightings 
- Main issue was the expensive and potentially large query used to find all sightings for a list of tags (used on the tag and galaxy cluster index)

potentially fixes #1993
 2017-02-26 08:12:53 +01:00
iglocska 3fca8de6bf new: Added activity charts to tag and galaxy cluster indeces 
- bunch of small improvements additionally
 2017-02-24 19:34:18 +01:00
iglocska b719b69ff7 chg: Better error message for invalid types when posting sightings 
- sent before doing the lookup against existing attributes
 2017-02-22 16:44:04 +01:00
iglocska e7d1cd6f4d fix: small fix for an invalid error message in the sightings 2017-02-21 14:26:33 +01:00
iglocska 3c558c653d fix: Added validation for sighting type and fixed responses for adding sightings 2017-02-20 11:13:39 +01:00
iglocska fb16d77e5c fix: several fixes to the new sightings 2017-02-17 01:27:07 +01:00
iglocska 94c01d5896 new: First revision of the new sightings system 2017-02-16 22:46:30 +01:00
iglocska 4e41b55572 new: First iteration of the improved sightings 2017-02-05 23:48:18 +01:00
iglocska 8ccd817435 new: Index API for sightings added 2017-01-06 15:25:31 +01:00
iglocska 62a2211a23 Merge branch '2.4' into 1457 2016-09-18 13:06:03 +02:00
iglocska a599ec24f7 Merge branch '2.4' into 1501 2016-09-18 11:07:10 +02:00
Andreas Ziegler 25e52a6786 chg: remove some references to variables 2016-09-15 17:08:58 +02:00
Andreas Ziegler b4b9a35de3 chg: remove redundant className attributes 2016-09-15 17:07:35 +02:00
Andreas Ziegler 7a5dad6598 chg: use new Tool for random string generation 2016-09-15 17:07:12 +02:00
iglocska 822b0bf8fa chg: Cleanup of the controllers and models 
- removed incorrect, useless boiler plate comments
- kept useful comments intact
- added some missing line breaks to make the codebase a bit more uniform
- removed some obviously obsolete TODO comments
 2016-08-25 11:38:37 +02:00
Andreas Ziegler 6c07ae78fa chg: cleanup Sighting.php 2016-08-21 23:53:56 +02:00
Andreas Ziegler 1d06f25b38 chg: add newline character before EOF to non-minified (text-)files 2016-06-06 10:09:55 +02:00
Andreas Ziegler 0fe692c56a remove whitespace at end of line 2016-06-04 01:10:45 +02:00
Andreas Ziegler 898ea1d97c remove whitespace (space/tab) from empty lines 2016-06-04 01:08:16 +02:00
Andreas Ziegler 8a9ffc1f9b remove obsolete space from: File ( 2016-05-31 18:03:59 +02:00
Andreas Ziegler b746763dfe reformatting, indention, comment fixes 2016-05-31 17:34:46 +02:00
Iglocska 4c2ca05c9a Second iteration of the sightings 
- Added STIX sighting support
- better API add (via url parameter or POSTed object)
 2016-04-09 18:48:33 +02:00
Iglocska 868d4cdd3f First version of the sightings 
- add / delete sightings via REST
- add sightings via the UI
- View sightings info on an event and attribute level (event view only for now)
- differentiate between own sightings and that of other orgs (additional information via popover still coming)

- settings:
  - 1. enable / disable sightings server wide
  - 2. set sightings policy
    - a. Only Event owner can see sightings + everyone sees what they themeselves contribute
    - b. Anyone that contributes sightings to an event can see the sightings data
    - c. Everyone that can see the event can see the sightings
  - 3. Anonymisisation (in progress, data correctly retrieved in business logic)
    - a. if true, then only own org + "other" is shown
    - b. otherwise all orgs that submitted sightings are shown

Further improvements needed for version 1 of sightings:
  - 1. Delete via the interface
  - 2. View detailed sightings information
  - 3. Graph the sightings data for the event
  - 4. Include the Sightings data in the XML/JSON views
  - 5. View sighting for attribute / event via the API
 2015-12-20 13:41:52 +01:00
iglocska 485c007b39 Merge branch 'master' into 2.4-beta 
Conflicts:
	VERSION.json
	app/Lib/Tools/XMLConverterTool.php
	app/Model/Event.php
	app/Model/EventTag.php
	app/Model/TemplateElementAttribute.php
	app/Model/TemplateElementFile.php
	app/Model/TemplateElementText.php
	app/Model/ThreatLevel.php
	app/View/Attributes/index.ctp
	app/View/Elements/eventattribute.ctp
	app/View/Elements/eventattributerow.ctp
	app/View/Elements/global_menu.ctp
	app/View/Elements/side_menu.ctp
	app/View/Events/automation.ctp
	app/View/Events/index.ctp
	app/View/Pages/administration.ctp
	app/View/ShadowAttributes/index.ctp
	app/View/Tags/index.ctp
 2015-11-17 01:14:51 +01:00