MISP
/
MISP
mirror of https://github.com/MISP/MISP
2
2
Fork 0
Code Issues Releases Wiki Activity
15,505 Commits
35 Branches
366 Tags
190 MiB
Commit Graph

99 Commits (e02816e4af7319640dbec3e80e3a158bdada7fdd)

Author SHA1 Message Date
mokaddem dcd3664bba
Merge branch '2.4' of github.com:MISP/MISP into pr-5256 2020-05-18 14:14:51 +02:00
mokaddem 0c8d233787
fix: [feed:edit] Do not override feed settings if not provided via the 
API. Fix #5896
 2020-05-14 15:50:08 +02:00
Jakub Onderka 94b36c9259 chg: [feed] Provide more info when caching feeds about failures 2020-05-11 15:00:52 +02:00
mokaddem 61c80edf5c
fix: [feed:add] Do not override `new_event_at_each_pull` value. Fix #5815 2020-04-27 11:21:59 +02:00
iglocska 2d63f68fc1
new: [feeds] index refactor and new features 
- added the ability to select an orgc ID for CSV/freetext feeds
  - all events created from this feed will carry the selected orgc_id

- Refactored the index fully
  - using the factories
  - better warnings against the dangerous new feed each pull setting
  - event index search added
  - several settings cleaned up / made more clear

- auto reload of default feed configuration disabled, fixes #2542, fixes #5789
  - added a button / endpoint to handle that instead to allow for the deleted default feeds to stay deleted
 2020-04-17 14:17:54 +02:00
iglocska 30ff4b6451
chg: [security] Added setting to restrict the encoding of local feeds 
- By adding local feeds, a malicious administrator could point MISP to ingest configuration files that the apache user has access to
- This includes some more sensitive files (database.php / config.php / .gnupg data)
- Whilst this is currently not leading to an exploitable vulnerability as the current implementation wouldn't trigger on the values,
  having a setting to disable this will become much more interesting once we have a system in place for custom feed parsers
- The setting can only be enabled/disabled via the CLI

- As reported by Matthias Weckbecker
 2020-03-30 14:02:14 +02:00
Andras Iklody 6bcd8b200c
Merge branch '2.4' into fix/import_empty_feed 2019-10-02 22:55:14 +02:00
Pierre-Jean Grenier 8415cea5db fix: [feed] fix REST problems 2019-10-02 16:53:44 +02:00
Pierre-Jean Grenier f4ad4578dd fix: undefined variable when no feed was enable 2019-10-02 15:29:06 +02:00
Jakub Onderka a45575a44d chg: [feed] Error handling for saveFreetextFeedData 2019-09-03 17:24:06 +02:00
Jakub Onderka 78f113c563 chg: [feed] Proper error handling for fetching feed events 2019-09-02 17:51:37 +02:00
Jakub Onderka 5b2bb6d0fa chg: [feed] Proper error handling for fetching freetext feed 2019-09-02 17:51:37 +02:00
Jakub Onderka 9ee3570379 chg: [feed] Proper error handling for fetching feed manifest 2019-09-02 17:51:37 +02:00
Jakub Onderka 6174c9c698
fix: [UI] Info message should not be error 2019-08-23 19:40:20 +02:00
iglocska 64fafa1913
fix: [api fix] Deletes broken due to invalid boolean 
- /facepalm
 2019-07-10 13:55:33 +02:00
iglocska ed401d88be
fix: [API] delete http requests properly accepted by some /delete endpoints 2019-07-10 11:57:21 +02:00
4ekin 14feb57e2f fix: Typos in controllers 2019-04-29 16:12:55 +03:00
iglocska c6974d217e Merge branch '2.4' of github.com:MISP/MISP into 2.4 2019-04-01 16:21:30 +02:00
iglocska dc39255be5 fix: [ACL] Added ACL for the new cache searches 2019-04-01 16:16:16 +02:00
iglocska ab858d5f17 new: [feeds] Feed/Server cache search added 
- /feeds/searchCaches added
 2019-04-01 16:09:24 +02:00
iglocska a10e175f83 fix: [API] Feed index shouldn't adhere to pagination defaults of the UI, fixes MISP/misp-book#149 2019-04-01 14:20:09 +02:00
iglocska fc34510eda new: [Feeds] New overlap tool finished 
- compare a feed against a combination of feeds/servers to find if you can cover the contents with a combination of other cached feeds
 2019-03-10 18:09:46 +01:00
iglocska 8b68dbc7e2 new: [Feed preview UI] Added quick filter to the MISP feed preview 2019-02-23 12:57:00 +01:00
iglocska 358a8f2eac fix: [Feeds API] blackholes due to invalid csrf check relaxation call 2019-02-11 22:28:59 +01:00
Christophe Vandeplas 67efc70bf5 fix: [style] consistent space indentation 2019-02-10 13:08:55 +01:00
iglocska 498a7ae77c new: [feeds] Opened up feed inspection to host org users and added servers to overlap matrix 2019-01-20 10:19:05 +01:00
iglocska fe3bf1f57a fix: [feeds] Fixed an issue that caused a misp format feed fetch to fail intermittently 2018-12-12 17:30:58 +01:00
iglocska 2d0259ce13 fix: [CS] coding standards script re-run 2018-11-23 14:11:33 +01:00
iglocska 2d66dd421b new: [feeds] Changed default feed target to fixed event 
- major cause of death by overcorrelating
 2018-11-05 18:21:52 +01:00
iglocska a81894f14c chg: [CS] Changed to PSR-2 
- to make contributions easier, adopted PSR-2
- used php-cs-fixer to rework the style
- *sniff sniff* Goodbye tab indentation
 2018-07-19 11:48:22 +02:00
Steve Clement c607729e18 chg: [i18n] More __(); 2018-07-12 23:36:47 +02:00
iglocska 2b2a0c25a4 fix: Various fixes to the add feed action/view 2018-05-17 10:03:26 +02:00
iglocska 68b8266584 new: New flash message system, fixes #3252 
- 3 types of flash messages (success, error, warning)
- uses bootstrap's own classes/structure
 2018-05-16 19:32:38 +02:00
iglocska ffcecbf3cc fix: Fixed editing feeds via the UI 2018-04-24 10:44:02 +02:00
iglocska 4022285e06 new: Added Feed management API 
- add/edit/delete feeds via the API
- new APIs are RestResponseComponent aware
- GET on add/edit to receive usage information
 2018-04-23 14:57:59 +02:00
iglocska 2495dc8b38 chg: Renamed the cachefeeds console command to cachefeed for consistency's sake 2018-04-16 07:58:32 +02:00
iglocska e89d7ebc16 new: Added separation between enabled feeds and feeds enabled for caching 2018-03-30 23:30:54 +02:00
iglocska fd858d627b new: Allow passing headers along with feeds 
- add any arbitrary header to a feed
- can be used for authentication via basic auth for example
 2018-01-19 00:28:44 +01:00
Andras Iklody 04c89499a2
Merge pull request #2422 from panzertime/add-button-fetch-all-feeds 
Added a button to fetch all enabled feeds
 2018-01-16 12:52:06 +01:00
iglocska dedfea3610 new: Mass enable/disable feeds 
- protecting the sanity of MISP admins since 2012!
 2018-01-15 17:25:11 +01:00
iglocska 56dc5ea3bc fix: Better error handling when previewing csv/freetext feeds if no valid data is returned 2018-01-13 15:36:27 +01:00
iglocska 995a1c700e fix: Better handling of something going wrong whilst fetching a MISP feed's manifest 2018-01-13 15:33:00 +01:00
iglocska 4f6dba5f35 new: various improvements 
- use the feed uuid caches to link directly to affected MISP events
- various UI improvements
- Feed preview pagination / POSTed event ID filters added
 2017-12-05 00:05:11 +01:00
Andras Iklody 5157141425 fix: Change 2/2 for fixing the feed scheduler fixes #2503 
As described by @lucamemini
 2017-10-23 18:07:14 +02:00
RT Hatfield 9d38ca0c97 Added a "fetch all" button to the feeds page 2017-08-25 16:04:20 -04:00
iglocska 1dc58939f9 new: Exposed Feed previews to the API 
- The following can now be fetched via the API (requires site admin access):
  CSV, Freetext, MISP feeds: /feeds/previewEvent/[feed_id]
  MISP feeds: /feeds/previewIndex/[feed_id]/[event_uuid]
 2017-08-10 14:02:52 +02:00
iglocska 6c7c40e773 fix: Further performance tweaks to the feed fetcher 2017-07-07 12:58:51 +02:00
iglocska d42d290136 fix: Return json dict instead of string when queuing a feed pull job 2017-07-07 10:11:40 +02:00
iglocska 65c4c11c58 fix: Allow triggering the fetch feed from the API 2017-06-19 16:46:03 +02:00
iglocska 0b9d55c7b5 fix: Fixed invalid looping to pick up feed correlation event info fields 2017-06-12 09:51:04 +02:00