Commit Graph

19057 Commits (e6001bc9fa81938e68042105f43a4002ae9455a4)

Author SHA1 Message Date
Christophe Vandeplas e6001bc9fa
Revert "Feature/api log and pin ip (#8965)"
This reverts commit d5ce838ddc.
2023-03-29 09:53:29 +08:00
Christophe Vandeplas d5ce838ddc
Feature/api log and pin ip (#8965)
* fix: [sightings] don't be case insensitive on code side

* chg: [AuthKey] store IPs used to connect and show them

* chg: [AuthKey] db change

* fix: [AuthKeys] prevent race condition with double IPs

* chg: [git] exclude DebugKit plugin from git

* fix: [AuthKey] integrate mokaddem's remarks

* chg: [authkey] One-click IP as only allowed IP

* chg: [authkey] pin IP on view page

---------
2023-03-29 09:18:47 +08:00
iglocska 13d99cfaca
chg: [pymisp] bump 2023-03-27 11:01:42 +02:00
iglocska e498158208
chg: [pymisp] version string bump 2023-03-27 10:51:41 +02:00
Sami Mokaddem b94c7978e5
fix: [security] XSS in community index
- As reported by Zigrin Security
2023-03-25 09:27:57 +01:00
iglocska aa9dffb03f
fix: [galaxyCluster index] filter by galaxy should accept UUID too not just ID 2023-03-17 15:50:47 +01:00
iglocska 8594d2ab47
fix: [Galaxy index search] fixed
- seems to be using the Cerebrate format rather than MISP?
2023-03-17 15:25:40 +01:00
Christian Studer 947427b7ae
chg: [misp-stix] Bumped latest version 2023-03-14 11:31:17 +01:00
iglocska ddd9700b99
Merge branch 'develop' of github.com:MISP/MISP into develop 2023-03-10 14:31:25 +01:00
iglocska e77a4fced7
fix: [php7.2 compat] make 7.2 happy with no trailing comma in the funciton params 2023-03-10 14:30:20 +01:00
Raphaël Vinot 68c130a099 chg: Bump PyMISP 2023-03-10 15:14:22 +02:00
iglocska 7fa48b8772
chg: [vendor dir check diagnostic] made the execution optional if the required package is missing 2023-03-10 13:56:03 +01:00
Christophe Vandeplas eefb1fc32a Merge branch 'develop' of https://github.com/MISP/MISP into develop 2023-03-10 13:16:36 +01:00
Christophe Vandeplas 5b1bc40ba0 chg: [diagnostics] Report on Vendor dependencies 2023-03-10 13:14:39 +01:00
Sami Mokaddem 8dbcd43b42
Merge branch 'pr-8948' into develop 2023-03-10 11:22:16 +01:00
Sami Mokaddem a78b2d7b77
Merge branch 'pr-8946' into develop 2023-03-10 11:19:42 +01:00
Sami Mokaddem 92c29436d4
Merge branch 'develop' of github.com:MISP/MISP into develop 2023-03-10 11:11:58 +01:00
Sami Mokaddem 78f423451a
fix: [security] XSS in event-graph relationship tooltip 2023-03-10 11:11:13 +01:00
Sami Mokaddem 30255b8d68
fix: [security] XSS in event-graph node tooltips
- as reported by Cyber Controls from SIX Group
2023-03-10 11:10:42 +01:00
Anders Einar Hilden b2ad8fc687 new: [ApacheAuthenticate] Add STARTTLS support for LDAP connection
Controlled by setting `ApacheSecureAuth.starttls`. Default (`ApacheSecureAuth.starttls undefined`) is `false`, since it is a new feature.

config.default.php is updated with `ApacheSecureAuth.starttls = true` as default and extra explanations.
2023-03-10 10:34:26 +01:00
Anders Einar Hilden da5278d349 [new]: [doc] [ApacheSecureAuth] Add minimal docs for ApacheSecureAuth, and a bigger section about using the /users/logout401 endpoint. 2023-03-10 10:34:05 +01:00
Anders Einar Hilden ec495da477 [new]: [ApacheSecureAuth] Add endpoint /users/logout401 for logging out from HTTP Basic Auth
This can be used by i.e. ApacheSecureAuth to make a browser forget cached HTTP Basic Auth credentials, which would otherwise result in a logut->login loop.
2023-03-10 10:34:05 +01:00
Alexandre Dulaunoy 9898c68482
Merge branch 'develop' of github.com:MISP/MISP into develop 2023-03-10 08:46:36 +01:00
Alexandre Dulaunoy 066f49f64e
chg: [misp-galaxy] updated to the latest version 2023-03-10 08:45:52 +01:00
Sami Mokaddem 69e3948dea
fix: [workflowModules:splunkHec] Fixed indentation 2023-03-10 08:44:30 +01:00
Sami Mokaddem 7155b9afe2
Merge branch 'pr-8835' into develop 2023-03-10 08:41:22 +01:00
Sami Mokaddem f96abece4f
Merge branch 'develop' of github.com:MISP/MISP into develop 2023-03-10 08:34:01 +01:00
Sami Mokaddem 55bc56d8d7
chg: [command:ls22] Improved scoring for LS shell 2023-03-10 08:33:27 +01:00
Alexandre Dulaunoy 84d620fd9a
chg: [misp-objects] updated to the latest version 2023-03-09 18:10:04 +01:00
Alexandre Dulaunoy b17ea1c38f
chg: [misp-warning] updated to the latest version 2023-03-09 15:13:13 +01:00
iglocska 5720f25888
fix: [LS22 shell] parameter name fixed 2023-03-08 10:08:00 +01:00
iglocska 2872bc1374
Merge branch '2.4' into develop 2023-03-08 10:05:06 +01:00
iglocska 4ece8c74c9
new: [LS22 shell] added setSetting command 2023-03-08 10:04:29 +01:00
Alexandre Dulaunoy 8c8034543d
chg: [misp-galaxy] updated to the latest version 2023-03-07 12:24:27 +01:00
Benni0 82b01aae15
fix: [workflow:module_splunk_hec_export] typo colon removed 2023-03-02 22:15:44 +01:00
iglocska 9619c0e866
fix: [Sighting] rework of the loading via restsearch
- the chunking and limiting by attribute IDs in the sighting restsearch caused long delays due to a select with two AND-ed in value lists causing the query optimiser to constantly run statistics on the table
- moved the filtering by attribute to PHP side via a loop, it should boost the performance of the function - and with it the sync considerably
2023-03-02 10:30:43 +01:00
iglocska cdf270606c
fix: [Sighting] rework of the loading via restsearch
- the chunking and limiting by attribute IDs in the sighting restsearch caused long delays due to a select with two AND-ed in value lists causing the query optimiser to constantly run statistics on the table
- moved the filtering by attribute to PHP side via a loop, it should boost the performance of the function - and with it the sync considerably
2023-03-02 09:49:44 +01:00
iglocska 68c6563dc8
fix: [attribute correlations] account for both entry points, event view and attribute index
- to select the correct field for the remote ID (rather than point at an attribute ID in the related events)
2023-02-28 13:56:07 +01:00
iglocska 91d87b4e44
fix: [correlations] attribute index / search shows incorrect correlations, fixes #8930
- showed the attribute ID rather than the event ID, also leading to invalid URLs for pivoting
2023-02-27 14:56:30 +01:00
iglocska d123b27960
fix: [object correlations] fixed - ACL was incorrectly hiding valid correlations for a user, fixes #8929
- inherit as the object distribution was blocked when showing correlations
2023-02-27 14:21:47 +01:00
benni0 8eb26b7a9d chg: [workflow:module_splunk_hec_export] added parameter for source type specification 2023-02-26 12:25:24 +00:00
benni0 6ae140e5a9 fix: [workflow:module_splunk_hec_export] top level event required by splunk hec 2023-02-26 12:23:54 +00:00
iglocska 391a16fa88
Merge branch '2.4' into develop 2023-02-24 02:01:03 +01:00
iglocska 738fd95db2
fix: [taxii servers] invalid baseurl field type
- copy pasta strikes again
2023-02-24 02:00:16 +01:00
Sami Mokaddem f179b2db7a
chg: [workflow:module_splunk_hec_export] Small refactoring 2023-02-23 10:47:56 +01:00
Sami Mokaddem 1994f35e95
chg: [workflow:module_webhook] Added support of more parameter to perform a request 2023-02-23 10:46:52 +01:00
Sami Mokaddem d418f33835
fix: [workflow:standalone_module_execute] Clear error output on sucess 2023-02-23 10:45:28 +01:00
Sami Mokaddem 39408794ef
fix: [workflow:baseModule] Removed unused line 2023-02-23 10:45:00 +01:00
Sami Mokaddem 4adcf06b1c
Merge branch 'pr-8835' into develop 2023-02-23 09:14:33 +01:00
Alexandre Dulaunoy 7204fe7720
Merge branch '2.4' into develop 2023-02-21 11:49:04 +01:00