MISP
/
MISP
mirror of https://github.com/MISP/MISP
2
2
Fork 0
Code Issues Releases Wiki Activity
23,820 Commits
33 Branches
364 Tags
186 MiB
Commit Graph

23820 Commits (e6001bc9fa81938e68042105f43a4002ae9455a4)

Author SHA1 Message Date
Christophe Vandeplas e6001bc9fa
Revert "Feature/api log and pin ip (#8965)" 
This reverts commit d5ce838ddc.
 2023-03-29 09:53:29 +08:00
Christophe Vandeplas d5ce838ddc
Feature/api log and pin ip (#8965) 
* fix: [sightings] don't be case insensitive on code side

* chg: [AuthKey] store IPs used to connect and show them

* chg: [AuthKey] db change

* fix: [AuthKeys] prevent race condition with double IPs

* chg: [git] exclude DebugKit plugin from git

* fix: [AuthKey] integrate mokaddem's remarks

* chg: [authkey] One-click IP as only allowed IP

* chg: [authkey] pin IP on view page

---------
 2023-03-29 09:18:47 +08:00
iglocska 13d99cfaca
chg: [pymisp] bump 2023-03-27 11:01:42 +02:00
iglocska e498158208
chg: [pymisp] version string bump 2023-03-27 10:51:41 +02:00
Sami Mokaddem b94c7978e5
fix: [security] XSS in community index 
- As reported by Zigrin Security
 2023-03-25 09:27:57 +01:00
Luciano Righetti c979ab33f4
Update background-jobs-migration-guide.md 2023-03-21 14:56:33 +01:00
Alexandre Dulaunoy ce0c79f7f7
Merge pull request #8970 from righel/fix-installer-pages 
[fix] fix installer pages
 2023-03-21 11:25:22 +01:00
Luciano Righetti 263ef07577 [fix]: comment (properly) md inclusion for archived guides, cannot include from parent dir 2023-03-21 09:37:08 +01:00
Luciano Righetti cd8c8f4845 [fix]: comment md inclusion for archived guides, cannot include from parent dir 2023-03-21 09:29:52 +01:00
Luciano Righetti 75ea7a61af [fix]: relative md inclusion (archived) 2023-03-21 09:21:47 +01:00
Luciano Righetti 221ed730ae [fix]: relative md inclusion 2023-03-21 09:14:41 +01:00
Luciano Righetti 7257674831 [fix]: relative md inclusion 2023-03-21 09:07:44 +01:00
Luciano Righetti b9ad564d4f [fix]: relative md inclusion 2023-03-21 08:44:49 +01:00
Christophe Vandeplas 67ba12c7a5 fix: [docs] revert attempt 2023-03-20 17:58:45 +08:00
Christophe Vandeplas 7e24f262d5 fix: [docs] attempt to fix failing includes in github pages 2023-03-20 17:41:04 +08:00
Christophe Vandeplas 63fd65683b fix: [docs] Fixes one more broken link 2023-03-20 11:30:06 +08:00
Christophe Vandeplas fba5a6c8b5 fix: [docs] Fixes broken links on misp.github.io website 2023-03-20 10:11:39 +08:00
iglocska aa9dffb03f
fix: [galaxyCluster index] filter by galaxy should accept UUID too not just ID 2023-03-17 15:50:47 +01:00
iglocska 8594d2ab47
fix: [Galaxy index search] fixed 
- seems to be using the Cerebrate format rather than MISP?
 2023-03-17 15:25:40 +01:00
Christian Studer 947427b7ae
chg: [misp-stix] Bumped latest version 2023-03-14 11:31:17 +01:00
Christian Studer e898879484 Merge branch '2.4' of github.com:MISP/MISP into develop 2023-03-14 11:29:48 +01:00
Christian Studer 08bcb0f619 Merge branch 'develop' of github.com:MISP/MISP into develop 2023-03-14 11:29:30 +01:00
Alexandre Dulaunoy 96734dc481
Merge pull request #8951 from fukusuket/fix-install-guide-doc-links 
fix: install guide links
 2023-03-14 06:05:05 +01:00
Raphaël Vinot 8af1f27a02
Merge pull request #8952 from MISP/composer_fix 
chg: update GHA to fix composer, maybe.
 2023-03-13 18:37:06 +01:00
Raphaël Vinot ffb6246de3 chg: Order for tests. 2023-03-13 17:13:05 +01:00
Raphaël Vinot a70977f8de Merge branch 'develop' into composer_fix 2023-03-13 15:49:40 +01:00
iglocska d2ed1175bd
Merge branch '2.4' into develop 2023-03-13 15:36:05 +01:00
iglocska e48e7037f9
fix: [testlive security] change the test org name to not include spaces 
there's a lookup via orgname in the URL that causes the tests to fail otherwise
 2023-03-13 15:33:28 +01:00
Raphaël Vinot b5342dd167 chg: update GHA to fix composer, maybe. 2023-03-11 15:32:58 +01:00
Raphaël Vinot d1977f5375 chg: Bump ubuntu version to use 2023-03-11 14:25:14 +01:00
fukusuket 8c9f00bfad fix: install guide links 2023-03-11 08:50:02 +09:00
iglocska af516ed534
Merge branch 'develop' into 2.4 2023-03-10 22:13:16 +01:00
iglocska ddd9700b99
Merge branch 'develop' of github.com:MISP/MISP into develop 2023-03-10 14:31:25 +01:00
iglocska e77a4fced7
fix: [php7.2 compat] make 7.2 happy with no trailing comma in the funciton params 2023-03-10 14:30:20 +01:00
Raphaël Vinot 68c130a099 chg: Bump PyMISP 2023-03-10 15:14:22 +02:00
iglocska ba63fc217f
chg: [version] bump 2023-03-10 14:00:54 +01:00
iglocska 51546c8c7d
chg: [db_schema] version bump 2023-03-10 14:00:18 +01:00
iglocska 58ba5260f5
chg: [db_schema] update 2023-03-10 13:59:12 +01:00
iglocska 7fa48b8772
chg: [vendor dir check diagnostic] made the execution optional if the required package is missing 2023-03-10 13:56:03 +01:00
Christophe Vandeplas eefb1fc32a Merge branch 'develop' of https://github.com/MISP/MISP into develop 2023-03-10 13:16:36 +01:00
Christophe Vandeplas 5b1bc40ba0 chg: [diagnostics] Report on Vendor dependencies 2023-03-10 13:14:39 +01:00
Sami Mokaddem 8dbcd43b42
Merge branch 'pr-8948' into develop 2023-03-10 11:22:16 +01:00
Sami Mokaddem a78b2d7b77
Merge branch 'pr-8946' into develop 2023-03-10 11:19:42 +01:00
Sami Mokaddem 92c29436d4
Merge branch 'develop' of github.com:MISP/MISP into develop 2023-03-10 11:11:58 +01:00
Sami Mokaddem 78f423451a
fix: [security] XSS in event-graph relationship tooltip 2023-03-10 11:11:13 +01:00
Sami Mokaddem 30255b8d68
fix: [security] XSS in event-graph node tooltips 
- as reported by Cyber Controls from SIX Group
 2023-03-10 11:10:42 +01:00
Anders Einar Hilden b2ad8fc687 new: [ApacheAuthenticate] Add STARTTLS support for LDAP connection 
Controlled by setting `ApacheSecureAuth.starttls`. Default (`ApacheSecureAuth.starttls undefined`) is `false`, since it is a new feature.

config.default.php is updated with `ApacheSecureAuth.starttls = true` as default and extra explanations.
 2023-03-10 10:34:26 +01:00
Anders Einar Hilden da5278d349 [new]: [doc] [ApacheSecureAuth] Add minimal docs for ApacheSecureAuth, and a bigger section about using the /users/logout401 endpoint. 2023-03-10 10:34:05 +01:00
Anders Einar Hilden ec495da477 [new]: [ApacheSecureAuth] Add endpoint /users/logout401 for logging out from HTTP Basic Auth 
This can be used by i.e. ApacheSecureAuth to make a browser forget cached HTTP Basic Auth credentials, which would otherwise result in a logut->login loop.
 2023-03-10 10:34:05 +01:00
Alexandre Dulaunoy 9898c68482
Merge branch 'develop' of github.com:MISP/MISP into develop 2023-03-10 08:46:36 +01:00