iglocska
95f17d6acd
fix: [sync] Some minor changes to the sighting push
...
- correctly handle anonymisation
- only push sightings, not rest of the event (decide on sender side)
- handle receiving sanitised sightings
2019-11-25 14:32:22 +01:00
Richard van den Berg
dd963c2e21
Sync sightings on push, pull and push on add
2019-11-22 21:53:51 +01:00
iglocska
c4f1d4d15e
new: [SightingDB] Added integration with SightingDB
...
- Added configuration tool
- Added lookups from the event view
- Added includeSightingdb flag for the restSearch searches
- Added SightingDB search tool
- Added SightingDB connection test tool
2019-11-06 21:20:04 +01:00
mokaddem
b51871fe52
fix: [Sightings] Plugin.Sightings_policy=Event Owner now shows sightings
...
that belong to the creating org
2019-08-26 16:49:30 +02:00
mokaddem
ed98d73be7
Merge branch '2.4' of github.com:MISP/MISP into decaying
2019-08-22 15:33:09 +02:00
mokaddem
cd5c9f7d1d
Merge remote-tracking branch 'origin/2.4' into decaying
2019-08-20 15:00:38 +02:00
Jakub Onderka
4ef9595023
fix: Replace not exists MethodNotFoundException with NotFoundException
2019-08-14 21:27:05 +02:00
iglocska
de99495edf
fix: [API] sightings restSearch now accepts uuids as org_id, fixes #4992
2019-08-14 11:52:54 +02:00
mokaddem
6ba45b27f8
Merge remote-tracking branch 'origin/2.4' into decaying
2019-08-13 16:32:58 +02:00
mokaddem
bbab646d01
chg: [decaying:simulation] Support of sightings in the decaying simulation
2019-07-16 09:31:49 +02:00
Nikos Filippakis
9d59b10368
Publish events to Kafka
...
Signed-off-by: Nikos Filippakis <nikolaos.filippakis@cern.ch>
2019-03-18 15:53:22 +01:00
mokaddem
47e53230ac
fix: [sighting] Bug adding sightings on every attributes
...
When trying to add a sighting to a value via the REST API,
if a value was given to the key `values` instead of an array,
the Model function `addSighting` would *crash* and skip the condition on
the value, consequently adding a sighting on every attributes.
2019-01-29 12:54:50 +01:00
Sami Mokaddem
ed4f752d3a
Merge remote-tracking branch 'origin/2.4' into querybuilder
2018-12-17 16:36:27 +01:00
iglocska
2d0259ce13
fix: [CS] coding standards script re-run
2018-11-23 14:11:33 +01:00
mokaddem
7f5225b154
new: [rest client] added first draft of querybuilder widget
2018-11-06 16:54:17 +01:00
iglocska
bbc8a8bf4d
fix: [API] minor fixes to the sightings api
...
- fixed duplicate sighting tags in XML output
- added attribute value to the sighting
2018-10-29 20:18:29 +01:00
Sami Mokaddem
5763a74b96
chg: [sighting/api] improved comments
2018-10-23 13:39:29 +02:00
Sami Mokaddem
ff5f5faf02
new: [sighting/api] xml output format + improved error feedback
2018-10-23 13:06:37 +02:00
Sami Mokaddem
01cba114f2
fix: [sightings/api] now support json output format
2018-10-23 12:17:54 +02:00
Sami Mokaddem
99e5f560a8
new: [sighting/api] trying to follow the new API architecture. JSON
...
export is broken but CSV is working. WIP...
2018-10-23 11:24:03 +02:00
Sami Mokaddem
41d2de90db
chg: typo
2018-10-23 00:05:24 +02:00
Sami Mokaddem
731a4d5e2b
new: [Sightings/API] Added possiblity to get sightings based on a
...
timerange/source/...
2018-10-22 23:27:58 +02:00
iglocska
0bda88db39
fix: [internal] Fixes to invalid model function calls
2018-10-17 12:31:43 +02:00
Steve Clement
51a3a5cdbf
chg: [python] Added and amended varios places where python is called
2018-09-28 14:59:26 +02:00
chrisr3d
8628757f65
fix: [Sighting] Fixed sighting creation
2018-09-07 15:45:57 +02:00
jgo
32bb9c4b80
check if sighting with given uuid already exists before saving new sighting
2018-07-27 14:23:40 +02:00
jgo
719bcb5a65
add attribute UUID to sighting item (easier for synchronization)
2018-07-27 13:34:20 +02:00
iglocska
a81894f14c
chg: [CS] Changed to PSR-2
...
- to make contributions easier, adopted PSR-2
- used php-cs-fixer to rework the style
- *sniff sniff* Goodbye tab indentation
2018-07-19 11:48:22 +02:00
iglocska
56808265b7
fix: [python3] Updated script to python3 only
2018-07-12 16:26:49 +02:00
iglocska
6090e77cff
fix: Rework of tags index / galaxy view
...
- performance tweaks
- no more silly queries
- added sharing group aware ACL to the event/attribute counters
2017-11-09 11:53:57 +01:00
iglocska
57b935e7de
fix: Added context to the sightings zmq feed
2017-11-08 18:57:08 +01:00
iglocska
7492d2799f
new: Sightings ingested on import/sync
2017-11-03 15:18:46 +01:00
iglocska
17b00e0376
fix: Fixed a bug where sightings couldn't be added to objects
2017-10-27 12:16:41 +02:00
iglocska
68f4833893
new: First version of the zmq reimplementation
2017-10-27 09:10:46 +02:00
iglocska
69436f3dd9
fix: Fixed the duplicate sighting save that kept popping up in the ZMQ feed
2017-06-16 09:23:05 +02:00
iglocska
57857c3a32
new: Performance improvements for the pub-sub modules
...
- Only load and open connection to redis for the pub-sub connection once.
- Massive performance boost when the ZMQ functionality is enabled
2017-06-16 08:41:12 +02:00
iglocska
ab9f282a44
new: Added sightings to ZMQ pub sub system
2017-05-28 00:33:20 +10:00
Ángel González
926895733b
Cosmetic changes
...
Change space indents to tabs
Remove ?> at end of file
Add or remove some indentation where appropriate
2017-05-08 00:45:57 +02:00
Iglocska
72a326f50f
fix: Fixed several issues with the sightings
...
- Main issue was the expensive and potentially large query used to find all sightings for a list of tags (used on the tag and galaxy cluster index)
potentially fixes #1993
2017-02-26 08:12:53 +01:00
iglocska
3fca8de6bf
new: Added activity charts to tag and galaxy cluster indeces
...
- bunch of small improvements additionally
2017-02-24 19:34:18 +01:00
iglocska
b719b69ff7
chg: Better error message for invalid types when posting sightings
...
- sent before doing the lookup against existing attributes
2017-02-22 16:44:04 +01:00
iglocska
e7d1cd6f4d
fix: small fix for an invalid error message in the sightings
2017-02-21 14:26:33 +01:00
iglocska
3c558c653d
fix: Added validation for sighting type and fixed responses for adding sightings
2017-02-20 11:13:39 +01:00
iglocska
fb16d77e5c
fix: several fixes to the new sightings
2017-02-17 01:27:07 +01:00
iglocska
94c01d5896
new: First revision of the new sightings system
2017-02-16 22:46:30 +01:00
iglocska
4e41b55572
new: First iteration of the improved sightings
2017-02-05 23:48:18 +01:00
iglocska
8ccd817435
new: Index API for sightings added
2017-01-06 15:25:31 +01:00
iglocska
62a2211a23
Merge branch '2.4' into 1457
2016-09-18 13:06:03 +02:00
iglocska
a599ec24f7
Merge branch '2.4' into 1501
2016-09-18 11:07:10 +02:00
Andreas Ziegler
25e52a6786
chg: remove some references to variables
2016-09-15 17:08:58 +02:00
Andreas Ziegler
b4b9a35de3
chg: remove redundant className attributes
2016-09-15 17:07:35 +02:00
Andreas Ziegler
7a5dad6598
chg: use new Tool for random string generation
2016-09-15 17:07:12 +02:00
iglocska
822b0bf8fa
chg: Cleanup of the controllers and models
...
- removed incorrect, useless boiler plate comments
- kept useful comments intact
- added some missing line breaks to make the codebase a bit more uniform
- removed some obviously obsolete TODO comments
2016-08-25 11:38:37 +02:00
Andreas Ziegler
6c07ae78fa
chg: cleanup Sighting.php
2016-08-21 23:53:56 +02:00
Andreas Ziegler
1d06f25b38
chg: add newline character before EOF to non-minified (text-)files
2016-06-06 10:09:55 +02:00
Andreas Ziegler
0fe692c56a
remove whitespace at end of line
2016-06-04 01:10:45 +02:00
Andreas Ziegler
898ea1d97c
remove whitespace (space/tab) from empty lines
2016-06-04 01:08:16 +02:00
Andreas Ziegler
8a9ffc1f9b
remove obsolete space from: File (
2016-05-31 18:03:59 +02:00
Andreas Ziegler
b746763dfe
reformatting, indention, comment fixes
2016-05-31 17:34:46 +02:00
Iglocska
4c2ca05c9a
Second iteration of the sightings
...
- Added STIX sighting support
- better API add (via url parameter or POSTed object)
2016-04-09 18:48:33 +02:00
Iglocska
868d4cdd3f
First version of the sightings
...
- add / delete sightings via REST
- add sightings via the UI
- View sightings info on an event and attribute level (event view only for now)
- differentiate between own sightings and that of other orgs (additional information via popover still coming)
- settings:
- 1. enable / disable sightings server wide
- 2. set sightings policy
- a. Only Event owner can see sightings + everyone sees what they themeselves contribute
- b. Anyone that contributes sightings to an event can see the sightings data
- c. Everyone that can see the event can see the sightings
- 3. Anonymisisation (in progress, data correctly retrieved in business logic)
- a. if true, then only own org + "other" is shown
- b. otherwise all orgs that submitted sightings are shown
Further improvements needed for version 1 of sightings:
- 1. Delete via the interface
- 2. View detailed sightings information
- 3. Graph the sightings data for the event
- 4. Include the Sightings data in the XML/JSON views
- 5. View sighting for attribute / event via the API
2015-12-20 13:41:52 +01:00
iglocska
485c007b39
Merge branch 'master' into 2.4-beta
...
Conflicts:
VERSION.json
app/Lib/Tools/XMLConverterTool.php
app/Model/Event.php
app/Model/EventTag.php
app/Model/TemplateElementAttribute.php
app/Model/TemplateElementFile.php
app/Model/TemplateElementText.php
app/Model/ThreatLevel.php
app/View/Attributes/index.ctp
app/View/Elements/eventattribute.ctp
app/View/Elements/eventattributerow.ctp
app/View/Elements/global_menu.ctp
app/View/Elements/side_menu.ctp
app/View/Events/automation.ctp
app/View/Events/index.ctp
app/View/Pages/administration.ctp
app/View/ShadowAttributes/index.ctp
app/View/Tags/index.ctp
2015-11-17 01:14:51 +01:00