MISP
/
MISP
mirror of https://github.com/MISP/MISP
2
2
Fork 0
Code Issues Releases Wiki Activity
23,820 Commits
34 Branches
365 Tags
188 MiB
Commit Graph

6283 Commits (e6001bc9fa81938e68042105f43a4002ae9455a4)

Author SHA1 Message Date
Christophe Vandeplas e6001bc9fa
Revert "Feature/api log and pin ip (#8965)" 
This reverts commit d5ce838ddc.
 2023-03-29 09:53:29 +08:00
Christophe Vandeplas d5ce838ddc
Feature/api log and pin ip (#8965) 
* fix: [sightings] don't be case insensitive on code side

* chg: [AuthKey] store IPs used to connect and show them

* chg: [AuthKey] db change

* fix: [AuthKeys] prevent race condition with double IPs

* chg: [git] exclude DebugKit plugin from git

* fix: [AuthKey] integrate mokaddem's remarks

* chg: [authkey] One-click IP as only allowed IP

* chg: [authkey] pin IP on view page

---------
 2023-03-29 09:18:47 +08:00
iglocska 13d99cfaca
chg: [pymisp] bump 2023-03-27 11:01:42 +02:00
iglocska e498158208
chg: [pymisp] version string bump 2023-03-27 10:51:41 +02:00
iglocska aa9dffb03f
fix: [galaxyCluster index] filter by galaxy should accept UUID too not just ID 2023-03-17 15:50:47 +01:00
iglocska 8594d2ab47
fix: [Galaxy index search] fixed 
- seems to be using the Cerebrate format rather than MISP?
 2023-03-17 15:25:40 +01:00
Raphaël Vinot 68c130a099 chg: Bump PyMISP 2023-03-10 15:14:22 +02:00
Sami Mokaddem 8dbcd43b42
Merge branch 'pr-8948' into develop 2023-03-10 11:22:16 +01:00
Sami Mokaddem a78b2d7b77
Merge branch 'pr-8946' into develop 2023-03-10 11:19:42 +01:00
Anders Einar Hilden b2ad8fc687 new: [ApacheAuthenticate] Add STARTTLS support for LDAP connection 
Controlled by setting `ApacheSecureAuth.starttls`. Default (`ApacheSecureAuth.starttls undefined`) is `false`, since it is a new feature.

config.default.php is updated with `ApacheSecureAuth.starttls = true` as default and extra explanations.
 2023-03-10 10:34:26 +01:00
Anders Einar Hilden da5278d349 [new]: [doc] [ApacheSecureAuth] Add minimal docs for ApacheSecureAuth, and a bigger section about using the /users/logout401 endpoint. 2023-03-10 10:34:05 +01:00
Anders Einar Hilden ec495da477 [new]: [ApacheSecureAuth] Add endpoint /users/logout401 for logging out from HTTP Basic Auth 
This can be used by i.e. ApacheSecureAuth to make a browser forget cached HTTP Basic Auth credentials, which would otherwise result in a logut->login loop.
 2023-03-10 10:34:05 +01:00
Sami Mokaddem 34ebd89c43
Merge branch '2.4' into develop 2023-02-20 15:05:10 +01:00
Sami Mokaddem 3bb6f9f43f
fix: [objects:group_attributes_into_object] Typo in find options 2023-02-20 15:04:31 +01:00
Sami Mokaddem 6df6924ca3
fix: [attribute:bro] Restored bro export 
The broExport should probably be rewritten to sue the standard restSearch export later on
 2023-02-17 16:16:49 +01:00
Sami Mokaddem 2c30e9af7e
fix: [attribute:bro] Restored bro export 
The broExport should probably be rewritten to sue the standard restSearch export later on
 2023-02-17 16:14:00 +01:00
Sami Mokaddem edfdc5bfa2
chg: [events:add_misp_export] Handle case of missing Event key 2023-02-17 15:59:34 +01:00
Sami Mokaddem d51bebcbf4
chg: [events:populate] Added support of regeneration of UUIDs 2023-02-14 08:59:06 +01:00
Sami Mokaddem dab1abb2af
chg: [events:populate] Improved support of MISP core format 2023-02-14 08:34:47 +01:00
Sami Mokaddem 92d88f6f9d
fix: [dashboard:widget_render] Use the correct render when using cache 2023-02-09 11:42:21 +01:00
iglocska a7905b40ce
Merge branch 'develop' into 2.4 2023-02-01 14:37:06 +01:00
Christophe Vandeplas 827bf50f3c chg: [auth] group authentication code 2023-01-27 02:42:40 +01:00
Sami Mokaddem b074a4c1d9
Merge branch 'develop' of github.com:MISP/MISP into develop 2023-01-25 11:51:49 +01:00
Sami Mokaddem 6aa5f32215
fix: [shadowAttribute:accept] Restored accepting functionality 
Replace cake's magic finder by the standard way to fetch data
 2023-01-25 11:51:41 +01:00
Raphaël Vinot 5edcd9083f chg: [PyMISP] Bump 2023-01-23 10:09:01 +01:00
Sami Mokaddem 56b9aefb49
chg: [servers:testConnection] Prematurely close the session allowing concurrent requests 2023-01-20 11:02:54 +01:00
Sami Mokaddem 93bf15d3bd
fix: [security] Prevent unauthorized access to decaying import function 
- as reported by Cyber Controls from SIX Group
 2023-01-18 15:05:46 +01:00
Sami Mokaddem 9b6a9d2ef6
Merge branch 'develop' of github.com:MISP/MISP into develop 2023-01-10 10:05:43 +01:00
Sami Mokaddem f7238fe5e7
fix: [security] XSS in authkey add 
- as reported by Dawid Czarnecki from Zigrin Security
 2023-01-10 10:05:22 +01:00
Christophe Vandeplas 9115a30423 minor code cosmetic fix 2023-01-06 09:19:36 +01:00
Andras Iklody faa1fc5300
fix: [querystring] bumped 2023-01-03 12:20:35 +01:00
iglocska e3d716b9a7
fix: [postTest] speculative fix for case sensitivity of headers 
- as reported by @DavoDirty
 2023-01-02 12:29:33 +01:00
iglocska 5667a3dd84
chg: [event index] changed to the indextable generator 2022-12-24 06:28:42 +01:00
iglocska 206f540f02
chg: [runaway function] split into easier to comprehend ones 2022-12-22 15:35:30 +01:00
iglocska 1edbc25699
chg: [cleanup] indexfilter unused leftover functionality reworked 2022-12-22 13:11:57 +01:00
Jakub Onderka ea2e0421b6
Merge pull request #8613 from JakubOnderka/fix-ui 
Fix UI
 2022-12-22 12:54:56 +01:00
Raphaël Vinot 68571e8534 chg: [PyMISP] Bump version 2022-12-22 11:37:28 +01:00
Jakub Onderka c2b9c472f9 chg: [internal] Add blackhole exception logging 2022-12-15 10:05:13 -05:00
Jakub Onderka 7613016cac fix: [UI] Undefined shortDist array 2022-12-15 10:05:13 -05:00
Jakub Onderka f1c1d95b1c chg: [UI] Show exception message to user when importing MISP file 2022-12-15 10:05:13 -05:00
Jakub Onderka 511d2aa0db fix: [UI] Galaxy cluster distribution levels 2022-12-15 10:05:13 -05:00
Jakub Onderka ed4cf8172a fix: [UI] Galaxy cluster UI cleanup 2022-12-15 10:05:13 -05:00
Jakub Onderka a3d44283dc fix: [UI] Show correct message when creating event when MISP.unpublishedprivate is enabled 2022-12-15 10:05:13 -05:00
Jakub Onderka dac0feb164 new: [UI] Show similar objects when creating object from freetext 2022-12-15 10:05:13 -05:00
Jakub Onderka 9153234885 new: [UI] Allow to create object from freetext 2022-12-15 10:05:13 -05:00
Jakub Onderka 119000bf3e chg: [internal] Move finding object similarities from controller to model 2022-12-15 10:05:13 -05:00
Jakub Onderka e35c13d0f4 new: [UI] Preparation for creating object from freetext 2022-12-15 10:05:13 -05:00
Jakub Onderka fba49a5a04 chg: [internal] Simplify ObjectTemplate::checkTemplateConformityBasedOnTypes method 2022-12-15 10:05:13 -05:00
Jakub Onderka b959b94bbb chg: [UI] Cleanup for resolved_attributes template 2022-12-15 10:05:13 -05:00
Jakub Onderka fd37c0b0c7 chg: [internal] Add object code cleanup 2022-12-15 10:05:13 -05:00