MISP
/
MISP
mirror of https://github.com/MISP/MISP
2
2
Fork 0
Code Issues Releases Wiki Activity
25,165 Commits
42 Branches
370 Tags
181 MiB
Commit Graph

20085 Commits (ffe39a2145bb7fb6affea122c2150e314ea208c8)

Author SHA1 Message Date
Anders Einar Hilden ffe39a2145
Update ServerShell.php 2024-02-22 12:49:08 +01:00
iglocska fd7548243b
Merge branch 'develop' of github.com:MISP/MISP into develop 2024-02-16 16:27:43 +01:00
iglocska a2c9740c0f
fix: [missing images] re-added 2024-02-16 16:27:17 +01:00
Alexandre Dulaunoy b1649cca55
chg: [taxonomies] updated to the latest version 2024-02-16 16:23:47 +01:00
Alexandre Dulaunoy e84ca24ff5
chg: [misp-objects] updated to the latest version 2024-02-16 16:23:09 +01:00
Alexandre Dulaunoy 1b3fd41a64
chg: [warning-lists] updated to the latest version 2024-02-16 16:22:42 +01:00
Alexandre Dulaunoy ecfa6224a9
chg: [misp-galaxy] updated to the latest version 2024-02-16 16:22:17 +01:00
Raphaël Vinot e4e6f1625a chg: [PyMISP] Bump version 2024-02-16 14:50:47 +01:00
iglocska c47f1987dc
Merge branch 'develop' of github.com:MISP/MISP into develop 2024-02-16 14:24:44 +01:00
iglocska c1638e0a9c
fix: [sighting sync] speculative fix for critical sync issue 
- pulls from an instance with extremely high numbers of sightings (~300M+) can lead to the pulled instance becoming unusable
- This fix addresses multiple issues:
  - The use of last:0 as a sighting pull filter parameter lead to a search using an unindexed field
  - Internally searching for sighting IDs across 500 events in one shot can lead to massive data-sets
  - Internally searching for sighting IDs by Event.uuid on a joined table is extremely slow compared to searching on the sighting table alone
 2024-02-16 14:21:10 +01:00
Andras Iklody aa67046917
Merge pull request #9564 from Wachizungu/fix-objects-restsearch-first-seen 
fix: fix objects restsearch first_seen filter
 2024-02-15 17:26:43 +01:00
iglocska 7a22d7c413
Merge branch 'develop' of github.com:MISP/MISP into develop 2024-02-15 15:37:32 +01:00
iglocska 9c244eb115
fix: [security] Org image upload moved out of webroot 
- images will no longer be accessible directly, only via inclusion via file-read/b64 encoding
- The new store for org images is MISP/app/files/img/orgs

- As reported by Yusuke Nakajima
 2024-02-15 15:35:12 +01:00
Jeroen Pinoy bf6a148bc8
fix: fix objects restsearch first_seen filter 2024-02-14 15:40:06 +01:00
Jeroen Pinoy e99b89433a
fix: fix object_name, object_template_uuid and object_template_version object restsearch filters 2024-02-14 09:41:08 +01:00
Jeroen Pinoy 236759217e
chg: [doc/openapi] clarify 'deleted' restsearch filter (#9485) 2024-02-13 17:40:30 +01:00
Sami Mokaddem 9887843358
chg: [servers:getVersion] Include the remote instance UUID if user has perm_sync permission 2024-02-07 17:15:58 +01:00
Alexandre Dulaunoy da7a21a333
chg: [develop] merge back the Curl option issue 2024-02-07 10:51:54 +01:00
Benni0 45f264de49 fix: CurlClient doesn't use correct Proxy settings 2024-02-07 09:59:26 +01:00
Swapneel Patnekar a8fb77c848 Added Shreshta NRD 1 week and 1 month community feeds 2024-02-03 21:53:48 +05:30
Alexandre Dulaunoy 6a7a7a81f3
chg: [GeoOpen] updated 2024-02-02 15:50:28 +01:00
Alexandre Dulaunoy 4cb3c38613
chg: [warning-lists] updated to the latest version 2024-02-02 15:47:26 +01:00
Alexandre Dulaunoy d7fa34f47e
chg: [misp-galaxy] updated to the latest version 2024-02-02 15:46:26 +01:00
iglocska c691965480
chg: [appcontroller] versions bump 2024-02-02 15:28:32 +01:00
iglocska 5f45c9adf3
chg: [submodules] updated 2024-02-02 15:25:51 +01:00
Jakub Onderka 70c2b83e84 fix: [log] Do not save to database big changes 2024-02-01 17:46:56 +01:00
Sami Mokaddem 9da67879d4
fix: [security] auditlogs's fullChange lack of ACL controls 
Added proper ACL handling
- As reported by Jeroen Pinoy
 2024-02-01 15:17:53 +01:00
Jakub Onderka 3d8a3919d0 fix: [internal] Raise size for access_logs action column 2024-01-31 16:32:12 +01:00
Sami Mokaddem 065b492280
Merge branch 'develop' of github.com:MISP/MISP into develop 2024-01-31 14:30:32 +01:00
Sami Mokaddem 312d2d5422
fix: [security] Improved security checks for organisation logo upload 
- As reported by Andrei Agape / Teliacompany

Checks are:
- Maximum file size of 250K since the recommanded picture size is 48x48.
- File extension check
- File mime type checks
 2024-01-31 14:27:59 +01:00
Sami Mokaddem 51840a0697
chg: [events:export] Make setting `MISP.disable_cached_exports` enabled by default 
Since the /events/export has been marked deprecated for a years started
the process to phase it out by first disabling the endpoint by default.
 2024-01-31 14:26:22 +01:00
Sami Mokaddem 0ac2468c28
fix: [security] Enforce usage of POST to start an export generation process 
As reported by Andrei Agape / Teliacompany
 2024-01-31 14:24:17 +01:00
Alexandre Dulaunoy 4be80d39a8
Merge branch 'develop' of github.com:MISP/MISP into develop 2024-01-31 13:34:26 +01:00
Alexandre Dulaunoy 7b49980b5c
chg: [develop] merge back 2.4 2024-01-31 13:33:58 +01:00
Sami Mokaddem 9425c99894
Merge branch 'develop' of github.com:MISP/MISP into develop 2024-01-31 10:44:43 +01:00
Sami Mokaddem ebdf1c0004
fix: [organisation:orgMerge] Added missing models for organisation handover 2024-01-31 10:44:11 +01:00
Jakub Onderka ebbe17b88c
Merge pull request #9534 from JakubOnderka/speedup-vol2 
chg: [internal] Faster check for session destruction
 2024-01-31 10:30:36 +01:00
Sami Mokaddem 7513cfaeb0
fix: [organisation:orgMerge] Make sure to serialize array before insertion 2024-01-31 10:06:16 +01:00
Jakub Onderka c2811888e4 chg: [internal] Faster freetext parsing 2024-01-31 09:47:54 +01:00
Jakub Onderka 7f935f4cec chg: [internal] Faster check for session destruction 2024-01-30 18:54:11 +01:00
Luciano Righetti f1bab1e98c Revert "fix: incorrect foreing key" 
This reverts commit 6a36d7a3cd.
 2024-01-30 18:49:05 +01:00
Luciano Righetti 6a36d7a3cd fix: incorrect foreing key 2024-01-30 15:16:18 +01:00
Jakub Onderka b1d31d653d fix: [admin] Show logos in SVG format in admin 2024-01-30 14:49:37 +01:00
Jakub Onderka be4b1e975d
Merge pull request #9528 from JakubOnderka/binary-file-cache 
new: [internal] Binary cache plugin
 2024-01-29 16:01:35 +01:00
Jakub Onderka 01c3a0329f fix: [internal] Email new login sending 2024-01-29 15:44:40 +01:00
Jakub Onderka dbb320f0e0 new: [internal] Binary cache plugin 2024-01-29 15:32:52 +01:00
Jakub Onderka 867d5281f0
Merge pull request #9525 from JakubOnderka/speedup 
chg: [internal] Use Attribute::fetchAttributesInChunks for correlations
 2024-01-29 14:48:16 +01:00
Jakub Onderka 67eeb9df9d chg: [internal] Use Attribute::fetchAttributesInChunks for correlations 2024-01-28 22:12:17 +01:00
Jakub Onderka de18832ec9
Merge pull request #9524 from JakubOnderka/speedup 
Speedup
 2024-01-28 20:43:48 +01:00
Jakub Onderka ac50cfc56b
Merge pull request #9510 from JakubOnderka/redis-serialization-format 
chg: [internal] Detect serialization format in RedisTool
 2024-01-28 20:43:29 +01:00