MISP
/
misp-website
mirror of https://github.com/MISP/misp-website
2
0
Fork 0
Code Issues Releases Wiki Activity

chg: [changelog] updated

pull/76/head
Alexandre Dulaunoy 2023-03-14 21:07:36 +01:00
parent ccf514b512
commit 4272f8e175
No known key found for this signature in database
GPG Key ID: 09E2CD4944E6CBCD
7 changed files with 794 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

224
static/Changelog-PyMISP.txt
View File

@ -2,8 +2,220 @@ Changelog
=========
%%version%% (unreleased)
------------------------
v2.4.169.1 (2023-03-14)
-----------------------
Changes
~~~~~~~
- Bump changelog. [Raphaël Vinot]
- Bump version. [Raphaël Vinot]
- Add greynoise-ip object. [Raphaël Vinot]
Fix #951
v2.4.169 (2023-03-10)
---------------------
Changes
~~~~~~~
- Bump changelog. [Raphaël Vinot]
- Bump version. [Raphaël Vinot]
- Bump templates. [Raphaël Vinot]
- Bump deps. [Raphaël Vinot]
Fix
~~~
- Add local key in MISPTag. [Raphaël Vinot]
Related #947
- Use pytest for the tests. [Raphaël Vinot]
v2.4.168.1 (2023-02-28)
-----------------------
New
~~~
- [doc] added the Jupyter notebook used in a.7-rest-api-extensive-
restsearch. [Alexandre Dulaunoy]
Changes
~~~~~~~
- Bump changelog, version. [Raphaël Vinot]
- Bump templates, again. [Raphaël Vinot]
- Bump templates. [Raphaël Vinot]
- Bump deps, templates. [Raphaël Vinot]
- Bump deps. [Raphaël Vinot]
- Bump deps. [Raphaël Vinot]
- Bump deps. [Raphaël Vinot]
- Bump deps. [Raphaël Vinot]
- Bump deps. [Raphaël Vinot]
- Bump deps. [Raphaël Vinot]
Fix
~~~
- Properly handle missing parameter in CSV importer. [Raphaël Vinot]
Fix #931
- Undefined variable in event delegation. [Raphaël Vinot]
- Remove reference to old pydeep. [Raphaël Vinot]
Fix #914
v2.4.168 (2023-01-23)
---------------------
Changes
~~~~~~~
- Bump changelog. [Raphaël Vinot]
- Bump version. [Raphaël Vinot]
- Bump deps. [Raphaël Vinot]
- Bump deps. [Raphaël Vinot]
v2.4.167.2 (2023-01-17)
-----------------------
Changes
~~~~~~~
- Bump changelog. [Raphaël Vinot]
- Bump deps, version. [Raphaël Vinot]
Fix
~~~
- Set relationship_type default in MISPTag to empty string. [Raphaël
Vinot]
- Another typo in readme. [Raphaël Vinot]
- Typo in readme. [Raphaël Vinot]
v2.4.167.1 (2023-01-16)
-----------------------
New
~~~
- Add relationship_type in Tag entries for feeds. [Raphaël Vinot]
Changes
~~~~~~~
- Bump changelog. [Raphaël Vinot]
- Bump version. [Raphaël Vinot]
- Bump deps. [Raphaël Vinot]
- Bump requests. [Raphaël Vinot]
- Bump pyzmq. [Raphaël Vinot]
- Bump deps. [Raphaël Vinot]
- Bump python version used by read the docs. [Raphaël Vinot]
- Bump warning to inform user that python 3.10 wil be required in 12
months. [Raphaël Vinot]
- Bump minimal PyMISP version to 3.8. [Raphaël Vinot]
- Re-bump changelog. [Raphaël Vinot]
Fix
~~~
- Update whl files. [Raphaël Vinot]
- Nvm, readthedocs requires python 3.8 at most. [Raphaël Vinot]
v2.4.167 (2022-12-22)
---------------------
Changes
~~~~~~~
- Bump objects. [Raphaël Vinot]
- Bump changelog. [Raphaël Vinot]
- Bump version. [Raphaël Vinot]
- Bump objects. [Raphaël Vinot]
- Bump dependencies, move to poetry 1.3. [Raphaël Vinot]
- Bump certifi. [Raphaël Vinot]
- Bump deps. [Raphaël Vinot]
- Bump deps. [Raphaël Vinot]
- Re-order classes. [Raphaël Vinot]
Other
~~~~~
- Creation fo "add_attributes_from_csv.py" [Julien Mongenet]
The file aims to ingest a formated CSV file containing attributes for MISP ingestion.
- Graceful handling of tagging when name attribute is missing. [Sura De
Silva]
- Add: Galaxy test sample. [Christian Studer]
- Add: Added very straight forward tests to make sure the galaxy
clusters are properly defined. [Christian Studer]
- Add: Added the `Galaxy` field to MISPAttribute using the MISPGalaxy
class. [Christian Studer]
- Including an `add_galaxy` method similar to the
one used for events
- `attribute.galaxies` gives the list of attached
galaxy clusters
v2.4.166 (2022-11-28)
---------------------
New
~~~
- Basic support for listing, enabling and disabling decaying models.
[Raphaël Vinot]
- [tests] Test for local tags. [Raphaël Vinot]
Changes
~~~~~~~
- Re-bump changelog. [Raphaël Vinot]
- Bump changelog. [Raphaël Vinot]
- Bump deps, version. [Raphaël Vinot]
- [types] added azure-application-id. [iglocska]
- Bump deps. [Raphaël Vinot]
- Bump deps. [Raphaël Vinot]
- Bump deps. [Raphaël Vinot]
Fix
~~~
- [describetypes] updated with the latest output from MISP. [iglocska]
- [types] added missing type value. [iglocska]
v2.4.165.1 (2022-11-10)
-----------------------
Changes
~~~~~~~
- Bump changelog. [Raphaël Vinot]
- Bump deps. [Raphaël Vinot]
Fix
~~~
- Properly bump version. [Raphaël Vinot]
Other
~~~~~
- Update __init__.py. [Marcelo Chaves]
Regardless of running the latest PyMISP version, the message below is presented:
```
The version of PyMISP recommended by the MISP instance (2.4.165) is newer than the one you're using now (2.4.162.1). Please upgrade PyMISP.
```
v2.4.165 (2022-11-09)
---------------------
Changes
~~~~~~~
- Bump changelog. [Raphaël Vinot]
- Bump mypy. [Raphaël Vinot]
- Add links to doc. [Raphaël Vinot]
- Bump deps. [Raphaël Vinot]
Fix
~~~
- Issue with EMailObject. [Raphaël Vinot]
v2.4.162.2 (2022-11-02)
-----------------------
New
~~~
@ -11,6 +223,9 @@ New
Changes
~~~~~~~
- Bump changelog. [Raphaël Vinot]
- Bump lief (CVEs), version. [Raphaël Vinot]
- Bump deps. [Raphaël Vinot]
- [misp-objects] updated to the latest version. [Alexandre Dulaunoy]
- [tests] fix the list name test following latest warning-list updates.
[Alexandre Dulaunoy]
@ -79,7 +294,6 @@ Changes
Fix
~~~
- Change DNS warning list test. [Raphaël Vinot]
- Missing place to update version. [Raphaël Vinot]
v2.4.162 (2022-09-09)
@ -100,6 +314,10 @@ Changes
[Tom King]
- Improve documentation for add_attribute. [Raphaël Vinot]
Fix
~~~
- Missing place to update version. [Raphaël Vinot]
v2.4.160.1 (2022-08-09)
-----------------------

213
static/Changelog-misp-galaxy.txt
View File

@ -1,5 +1,218 @@
# Changelog
## v2.4.169 (2023-03-10)
### Changes
* [sigma] updated. [Alexandre Dulaunoy]
* [ransomware] fixing duplicate cluster element Avaddon. [Alexandre Dulaunoy]
* [mitre] updated with correct ID parsing. [Tom King]
* [doc] update README. [Christophe Vandeplas]
* [first-dns] Adds FIRST DNS Abuse Techniques Matrix. [Christophe Vandeplas]
* [360net] updated to latest online version. [Christophe Vandeplas]
* [threat-actor] version updated. [Alexandre Dulaunoy]
* [tools] TgToxic added. [Alexandre Dulaunoy]
* [sigma] updated to the latest version. [Alexandre Dulaunoy]
* [sigma] updated to the latest version. [Alexandre Dulaunoy]
* [stealer] Adds Album Stealer. [Jürgen Löhel]
* [backdoor] Adds BOLDMOVE. [Jürgen Löhel]
* [stealer] Removes BluStealer. [Jürgen Löhel]
The BluStealer is already in the malpedia cluster.
* [stealer] Adds DarkCloud and BluStealer. [Jürgen Löhel]
* [region] Updated the `region` Galaxy Cluster. [Christian Studer]
- Added missing entry (Antarctica)
- Ordered the `subregions` meta field
### Fix
* [first-dns] corrected typo. [Christophe Vandeplas]
* [region] JQed all the things !! [Christian Studer]
* [tools] Added missing closing `'` [Christian Studer]
### Other
* Merge pull request #826 from jloehel/wasabi. [Alexandre Dulaunoy]
[Proofpoint] [Campaign] Screentime
* Chg [tool]: Add tools used by TA866 during the Screentime campaign. [Jürgen Löhel]
* Chg [stealer]: Add Rhadamanthys. [Jürgen Löhel]
* Chg [tds]: Add 404 TDS. [Jürgen Löhel]
* Chg [threat-actors] Add TA866. [Jürgen Löhel]
* Merge pull request #824 from Delta-Sierra/main. [Alexandre Dulaunoy]
update based on ransomlook
* Fix stupid duplicate-bis. [Delta-Sierra]
* Fix stupid duplicate. [Delta-Sierra]
* Update based on ransomlook. [Delta-Sierra]
* Merge pull request #823 from Mathieu4141/threat-actors/add-some-actors. [Alexandre Dulaunoy]
Add a few threat actors and aliases
* [threat-actors] bump version. [Mathieu Beligon]
* [threat-actors] Add SLIPPY SPIDER alias to LAPSUS. [Mathieu Beligon]
* [threat-actors] Add PROPHET SPIDER. [Mathieu Beligon]
* [threat-actors] Add Nemesis Kitten. [Mathieu Beligon]
* [threat-actors] Add Karakurt. [Mathieu Beligon]
* [threat-actors] Add CYBORG SPIDER alias to GOCLD BURLAP. [Mathieu Beligon]
* [threat-actors] Add Chamelgang. [Mathieu Beligon]
* [threat-actors] Add TA453. [Mathieu Beligon]
* [threat-actors] Add APT42. [Mathieu Beligon]
* [threat-actors] Add TA406. [Mathieu Beligon]
* Merge pull request #822 from r0ny123/patch-1. [Alexandre Dulaunoy]
add other actor synonyms from Google's report https://services.google.com/fh/files/blogs/google_fog_of_war_research_report.pdf
* Add DEV-0147 https://twitter.com/MsftSecIntel/status/1625181255754039318. [Rony]
* Add other actor synonyms from Google's report https://services.google.com/fh/files/blogs/google_fog_of_war_research_report.pdf. [Rony]
* Merge pull request #821 from Delta-Sierra/main. [Alexandre Dulaunoy]
add/update ransomware based on ransomlook
* Synonyms must be an array. [Delta-Sierra]
* Merge https://github.com/MISP/misp-galaxy. [Delta-Sierra]
* Merge pull request #820 from tomking2/bug/mitre-attack-external-id-parsing. [Alexandre Dulaunoy]
[fix] Mitre ATT&CK parsing to pull correct external_id value and update cluster
* Add/update ransomware based on ransomlook. [Delta-Sierra]
* Merge pull request #819 from danielplohmann/patch-29. [Alexandre Dulaunoy]
adding Google names for RU threat actors
* Adding Google names for RU threat actors. [Daniel Plohmann]
https://blog.google/threat-analysis-group/fog-of-war-how-the-ukraine-conflict-transformed-the-cyber-threat-landscape/
* Merge pull request #818 from Mathieu4141/threat-actors/proofpoint-aliases. [Alexandre Dulaunoy]
[threat actors] Adding some actors from ProofPoint
* [threat-actors] Fix: country was in the wrong place. [Mathieu Beligon]
* [threat-actors] fix: Add missing uuids. [Mathieu Beligon]
* Fix. [Mathieu Beligon]
* [threat-actors] bump version. [Mathieu Beligon]
* [threat-actors] Add TA2536. [Mathieu Beligon]
* [threat-actors] Add TA577. [Mathieu Beligon]
* [threat-actors] Add TA575. [Mathieu Beligon]
* [threat-actors] Add TA570. [Mathieu Beligon]
* [threat-actors] Add Moskalvzapoe. [Mathieu Beligon]
* Merge pull request #817 from danielplohmann/patch-28. [Alexandre Dulaunoy]
adding Broadcom name for SaintBear.
* Adding Broadcom name for SaintBear. [Daniel Plohmann]
* Merge pull request #816 from Mathieu4141/threat-actors/noname057-aliases. [Alexandre Dulaunoy]
[threat-actors] Add more information about NoName057(16)
* [threat-actors] Add more information about NoName057(16) [Mathieu Beligon]
* Merge pull request #815 from danielplohmann/patch-27. [Alexandre Dulaunoy]
new APT29 name used by Recorded Future
* New APT29 name used by Recorded Future. [Daniel Plohmann]
cf. https://go.recordedfuture.com/hubfs/reports/cta-2023-0127.pdf
* Merge pull request #814 from jloehel/album. [Alexandre Dulaunoy]
chg: [stealer] Adds Album Stealer
* Merge pull request #812 from jloehel/boldmove. [Alexandre Dulaunoy]
chg: [backdoor] Adds BOLDMOVE
* Merge pull request #813 from jloehel/darkcloud. [Alexandre Dulaunoy]
chg: [stealer] Adds DarkCloud
* Merge pull request #809 from MISP/dev. [Alexandre Dulaunoy]
Updated the `region` cluster
* Add: [region] Added script to update the `region` cluster based on the UNSD M49 csv file. [Christian Studer]
* Merge pull request #789 from Mathieu4141/threat-actors/fix-sectorj04. [Alexandre Dulaunoy]
[threat-actors] Remove SectorJ04 duplicate
* [threat-actors] pr.review: Add SectorJ04 as alias of TA505. [Mathieu Beligon]
* [threat-actors] Remove SectorJ04 duplicate. [Mathieu Beligon]
* Merge pull request #810 from Delta-Sierra/main. [Alexandre Dulaunoy]
add Anubis & Godfather android banking trojans
* Merge https://github.com/MISP/misp-galaxy. [Delta-Sierra]
* Merge pull request #808 from 0xOFenomeno/uavs-final. [Alexandre Dulaunoy]
Adding UAVs' galaxy and related cluster
* Adding uavs. [ofenomeno]
* Merge branch 'main' of github.com:MISP/misp-galaxy. [Christian Studer]
* Fix missing brackets. [Delta-Sierra]
* Add Anubis & Godfather android banking trojans. [Delta-Sierra]
## v2.4.168 (2023-01-23)
### New

15
static/Changelog-misp-modules.txt
View File

@ -1,6 +1,21 @@
# Changelog
## v2.4.169 (2023-03-10)
### Changes
* [REQUIREMENTS] remove specific version of psutil as mentioned in #593. [Alexandre Dulaunoy]
### Other
* Merge pull request #602 from crowdsecurity/crowdsec_user_agent. [Alexandre Dulaunoy]
Set user agent of crowdsec misp module to crowdsec-misp/v1.0.0
* Set user agent of crowdsec misp module to crowdsec-misp/v1.0.0. [Shivam Sandbhor]
## v2.4.165 (2022-11-08)
### New

140
static/Changelog-misp-objects.txt
View File

@ -1,5 +1,145 @@
# Changelog
## %%version%% (unreleased)
### Changes
* [doc] updated. [Alexandre Dulaunoy]
* [greynoise-intelligence] JSON fixed. [Alexandre Dulaunoy]
### Other
* Merge branch 'GreyNoise-Intelligence-add_greynoise_ip_object' into main. [Alexandre Dulaunoy]
* Add greynoise-ip object. [Brad Chiappetta]
## v2.4.169 (2023-03-10)
### New
* [ransomware-group-post] First draft object for ransomlook.io. [Alexandre Dulaunoy]
* [victim] add information and cultural industries sector. [Thomas Dupuy]
* [transport-ticket] new object template to describe a transport ticket. [Alexandre Dulaunoy]
Credits for the idea: Maxime Benoit
### Changes
* Rename AIS -> ais to match the directory name. [Raphaël Vinot]
* [schema] updated attribute types. [Christophe Vandeplas]
* [AIS] Addition of AIS maritime ship identification and tracking. [Christophe Vandeplas]
* [victim] sort sectors. [Thomas Dupuy]
* [transport-ticket] update to add the type of ticket (e.g. boarding pass versus ticket) [Alexandre Dulaunoy]
### Fix
* [network-connection, network-socket] Bytes count if also better with an S. [Christian Studer]
* [network-connection, network-socket] Packets count is better with an S. [Christian Studer]
* [network-socket] Typo. [Christian Studer]
* Forgot to jq all the things. [Raphaël Vinot]
* [ais] invalid ref name in requirements. [Raphaël Vinot]
* [victim] format fixed. [Alexandre Dulaunoy]
* [victim] replace tab with spaces. [Thomas Dupuy]
* [objects description] ref #384 - Grammar fixes included in the JSON files. [Alexandre Dulaunoy]
* [transport-ticket] JSON orders. [Alexandre Dulaunoy]
### Other
* Add: [network-socket] Added bytes & packets count object relations for both the source and destination. [Christian Studer]
* Add: [network-socket] Added the first & last packet seen object relation and made the protocol attribute multiple. [Christian Studer]
* Add: [network-connection] Added bytes & packets count object relations for both the source and destination. [Christian Studer]
* Add: [network-connection] Added a `last-packet-seen` attribute. [Christian Studer]
* Add: [network-connection] Added MAC address attributes. [Christian Studer]
* Add: [registry-key-value] New template to describe registry key values. [Christian Studer]
- The `registry-key` object template includes
already the `data`, `data-type` & `name` fields
of a registry key value, but there is a
limitation in the case of multiple registry key
values
- In order to describe multiple registry key
values, instead of adding a simple `multiple`
field to the related and above mentioned fields,
it is better to use the `registry-key-value`
template so we know which data, data type and
name values are related to a given registry key
value
- It is then possible to have a reference between
the registry key object and the related values
* Add: [readme] Added the `directory` object in the list of available templates. [Christian Studer]
* Add: [directory] New object template for directories. [Christian Studer]
* Merge branch 'main' of github.com:MISP/misp-objects. [Christian Studer]
* Merge pull request #386 from chrisr3d/main. [Alexandre Dulaunoy]
File object update
* Add: [file] Added creation, modification & access time attributes. [Christian Studer]
* Merge branch 'main' of github.com:MISP/misp-objects. [Christian Studer]
* Merge branch 'main' of github.com:MISP/misp-objects. [Christian Studer]
* Merge pull request #385 from Delta-Sierra/master. [Alexandre Dulaunoy]
Add relationships based on XFN format
* Add relationships based on XFN format. [Delta-Sierra]
* Merge pull request #383 from nyx0/main. [Alexandre Dulaunoy]
[victim] add information and cultural industries sector
* Merge pull request #384 from rickhenderson/main. [Alexandre Dulaunoy]
Correct basic grammar in a few areas.
* Correct basic grammar in a few areas. [Rick Henderson]
I tried not to be too academic, but to me as a native English (Canadian) speaker and writer I have made some suggestions that include simple grammar corrections. Mostly I just added 's' where it needs to be.
* Merge pull request #382 from Delta-Sierra/master. [Alexandre Dulaunoy]
add relationships
* Comma. [Delta-Sierra]
* Fix typo -or stupid. [Delta-Sierra]
* Fix typo. [Delta-Sierra]
* Merge https://github.com/MISP/misp-objects. [Delta-Sierra]
* Add relationships. [Delta-Sierra]
* Merge branch 'main' of github.com:MISP/misp-objects. [Christian Studer]
## v2.4.168 (2023-01-23)
### New

13
static/Changelog-misp-taxonomies.txt
View File

@ -1,6 +1,19 @@
# Changelog
## %%version%% (unreleased)
### Changes
* [threatmatch] removing trailing end line. [Alexandre Dulaunoy]
* [misp-taxonomy] updated threatmatch taxonomies. [paulingega-sa]
### Other
* Merge branch 'paulingega-sa-main' into main. [Alexandre Dulaunoy]
## v2.4.168 (2023-01-23)
### Changes

38
static/Changelog-misp-warninglists.txt
View File

@ -1,6 +1,44 @@
# Changelog
## v2.4.169 (2023-03-10)
### Changes
* [warning-lists] updated. [Alexandre Dulaunoy]
* [warning-lists] updated. [Alexandre Dulaunoy]
### Fix
* [captive-portals] jq all the things. [Alexandre Dulaunoy]
### Other
* Merge pull request #246 from MichaelDwucet/MichaelDwucet-captive-portals-readme-edit. [Alexandre Dulaunoy]
Update README.md for captive portal detection hostnames list
* Update README.md. [Michael Dwucet]
added description of captive portal detection list to the readme.md
* Merge pull request #245 from MichaelDwucet/MichaelDwucet-New-Warning-List-Captive-Portals. [Alexandre Dulaunoy]
Add Captive Portal detection hostnames
* Create captive-portals/list.json. [Michael Dwucet]
Warning list with hostnames used by different OS and devices (Mac OS, Microsoft Windows, Apple iOS, Google Android, Samsung Android, HTC Android, Amazon FireOS, Firefox Browser, Chrome OS) for detection of captive portals used in public Wi-Fi networks. The source for the list is the official documentation of the Wireless Broadband Alliance: https://captivebehavior.wballiance.com/
Additional Microsoft hostname www.msftconnecttest.com added from: https://learn.microsoft.com/de-de/troubleshoot/windows-client/networking/internet-explorer-edge-open-connect-corporate-public-network
* Merge pull request #244 from DavidCruciani/main. [Alexandre Dulaunoy]
add: [parking]
* Add: [parking] [David Cruciani]
## v2.4.168 (2023-01-23)
### New

154
static/Changelog.txt
View File

@ -2,6 +2,160 @@ Changelog
=========
v2.4.169 (2023-03-14)
---------------------
New
~~~
- [ApacheAuthenticate] Add STARTTLS support for LDAP connection. [Anders
Einar Hilden]
Controlled by setting `ApacheSecureAuth.starttls`. Default (`ApacheSecureAuth.starttls undefined`) is `false`, since it is a new feature.
config.default.php is updated with `ApacheSecureAuth.starttls = true` as default and extra explanations.
- [LS22 shell] added setSetting command. [iglocska]
- [misp-workflow-modules] Splunk HEC export Module implemented. [Benni0]
Changes
~~~~~~~
- [misp-stix] Bumped latest version. [Christian Studer]
- Order for tests. [Raphaël Vinot]
- Update GHA to fix composer, maybe. [Raphaël Vinot]
- Bump ubuntu version to use. [Raphaël Vinot]
- Bump PyMISP. [Raphaël Vinot]
- [version] bump. [iglocska]
- [db_schema] version bump. [iglocska]
- [db_schema] update. [iglocska]
- [vendor dir check diagnostic] made the execution optional if the
required package is missing. [iglocska]
- [misp-galaxy] updated to the latest version. [Alexandre Dulaunoy]
- [workflow:module_splunk_hec_export] added parameter for source type
specification. [benni0]
- [command:ls22] Improved scoring for LS shell. [Sami Mokaddem]
- [diagnostics] Report on Vendor dependencies. [Christophe Vandeplas]
- [misp-objects] updated to the latest version. [Alexandre Dulaunoy]
- [misp-warning] updated to the latest version. [Alexandre Dulaunoy]
- [PyMISP] updated. [Alexandre Dulaunoy]
- [misp-galaxy] updated to the latest version. [Alexandre Dulaunoy]
- [workflow:module_splunk_hec_export] Small refactoring. [Sami Mokaddem]
- [workflow:module_webhook] Added support of more parameter to perform a
request. [Sami Mokaddem]
- [misp-galaxy] updated. [Alexandre Dulaunoy]
- [misp-stix] updated to the latest version. [Alexandre Dulaunoy]
- [dashboard-widget:TrendingTags] Added filtering and over time
functionalities. [Sami Mokaddem]
- [events:add_misp_export] Handle case of missing Event key. [Sami
Mokaddem]
- [events:populate] Added support of regeneration of UUIDs. [Sami
Mokaddem]
- [events:populate] Improved support of MISP core format. [Sami
Mokaddem]
- [view:ajaxTags] Added placeholder for highlighted taxonomies without a
tag. [Sami Mokaddem]
Fix
~~~
- Install guide links. [fukusuket]
- [testlive security] change the test org name to not include spaces.
[iglocska]
there's a lookup via orgname in the URL that causes the tests to fail otherwise
- [php7.2 compat] make 7.2 happy with no trailing comma in the funciton
params. [iglocska]
- [LS22 shell] parameter name fixed. [iglocska]
- [security] XSS in event-graph relationship tooltip. [Sami Mokaddem]
- [security] XSS in event-graph node tooltips. [Sami Mokaddem]
- as reported by Cyber Controls from SIX Group
- [workflowModules:splunkHec] Fixed indentation. [Sami Mokaddem]
- [workflow:module_splunk_hec_export] typo colon removed. [Benni0]
- [workflow:module_splunk_hec_export] top level event required by splunk
hec. [benni0]
- [Sighting] rework of the loading via restsearch. [iglocska]
- the chunking and limiting by attribute IDs in the sighting restsearch caused long delays due to a select with two AND-ed in value lists causing the query optimiser to constantly run statistics on the table
- moved the filtering by attribute to PHP side via a loop, it should boost the performance of the function - and with it the sync considerably
- [Sighting] rework of the loading via restsearch. [iglocska]
- the chunking and limiting by attribute IDs in the sighting restsearch caused long delays due to a select with two AND-ed in value lists causing the query optimiser to constantly run statistics on the table
- moved the filtering by attribute to PHP side via a loop, it should boost the performance of the function - and with it the sync considerably
- [attribute correlations] account for both entry points, event view and
attribute index. [iglocska]
- to select the correct field for the remote ID (rather than point at an attribute ID in the related events)
- [correlations] attribute index / search shows incorrect correlations,
fixes #8930. [iglocska]
- showed the attribute ID rather than the event ID, also leading to invalid URLs for pivoting
- [object correlations] fixed - ACL was incorrectly hiding valid
correlations for a user, fixes #8929. [iglocska]
- inherit as the object distribution was blocked when showing correlations
- [tools] corrected path to misp-website. [Christophe Vandeplas]
- [taxii servers] invalid baseurl field type. [iglocska]
- copy pasta strikes again
- [workflow:standalone_module_execute] Clear error output on sucess.
[Sami Mokaddem]
- [workflow:baseModule] Removed unused line. [Sami Mokaddem]
- [objects:group_attributes_into_object] Typo in find options. [Sami
Mokaddem]
- [attribute:bro] Restored bro export. [Sami Mokaddem]
The broExport should probably be rewritten to sue the standard restSearch export later on
- [dashboard:widget_render] Use the correct render when using cache.
[Sami Mokaddem]
- [attribute:bro] Restored bro export. [Sami Mokaddem]
The broExport should probably be rewritten to sue the standard restSearch export later on
Other
~~~~~
- Merge branch '2.4' of github.com:MISP/MISP into develop. [Christian
Studer]
- Merge pull request #8951 from fukusuket/fix-install-guide-doc-links.
[Alexandre Dulaunoy]
fix: install guide links
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[Christian Studer]
- Merge pull request #8952 from MISP/composer_fix. [Raphaël Vinot]
chg: update GHA to fix composer, maybe.
- Merge branch 'develop' into composer_fix. [Raphaël Vinot]
- Merge branch '2.4' into develop. [iglocska]
- Merge branch 'develop' into 2.4. [iglocska]
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[iglocska]
- Merge branch 'develop' of https://github.com/MISP/MISP into develop.
[Christophe Vandeplas]
- Merge branch 'pr-8948' into develop. [Sami Mokaddem]
- [new]: [doc] [ApacheSecureAuth] Add minimal docs for ApacheSecureAuth,
and a bigger section about using the /users/logout401 endpoint.
[Anders Einar Hilden]
- [new]: [ApacheSecureAuth] Add endpoint /users/logout401 for logging
out from HTTP Basic Auth. [Anders Einar Hilden]
This can be used by i.e. ApacheSecureAuth to make a browser forget cached HTTP Basic Auth credentials, which would otherwise result in a logut->login loop.
- Merge branch 'pr-8946' into develop. [Sami Mokaddem]
- Merge branch 'develop' of github.com:MISP/MISP into develop. [Sami
Mokaddem]
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[Alexandre Dulaunoy]
- Merge branch 'pr-8835' into develop. [Sami Mokaddem]
- Merge pull request #1 from Benni0/develop. [Benni0]
Merge fix for workflow:module_splunk_hec_export
- Merge branch 'develop' of github.com:MISP/MISP into develop. [Sami
Mokaddem]
- Merge branch '2.4' into develop. [iglocska]
- Merge branch '2.4' into develop. [iglocska]
- Merge branch 'pr-8835' into develop. [Sami Mokaddem]
- Merge branch '2.4' into develop. [Alexandre Dulaunoy]
- Merge branch '2.4' into develop. [Sami Mokaddem]
- Merge branch '2.4' into develop. [iglocska]
v2.4.168 (2023-02-01)
---------------------