MISP
/
misp-website
mirror of https://github.com/MISP/misp-website
2
0
Fork 0
Code Issues Releases Wiki Activity

chg: [blog] screenshots added

pull/8/head
Alexandre Dulaunoy 2018-11-26 14:24:55 +01:00
parent 980c139f78
commit 923365cb59
No known key found for this signature in database
GPG Key ID: 09E2CD4944E6CBCD
1 changed files with 3 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
_posts/2018-11-26-MISP.2.4.98.released.md
View File

@ -11,6 +11,9 @@ reason for the validation failing. A user can view the failed/succeeded saves re
A new experimental import functionality has been included to import SleuthKit mactime timelines from MISP directly. The user can import one or more mactime timelines in MISP, which will be included as a mactime object to describe forensic activities on an analysed file system. The import is a two-step process where the user can cherry pick the forensic events which took place and select the meaningful activity to be added in a MISP event. A new experimental import functionality has been included to import SleuthKit mactime timelines from MISP directly. The user can import one or more mactime timelines in MISP, which will be included as a mactime object to describe forensic activities on an analysed file system. The import is a two-step process where the user can cherry pick the forensic events which took place and select the meaningful activity to be added in a MISP event.
![SleuthKit mactime import in MISP](https://www.misp-project.org/assets/images/misp/blog/mactime1.png)
![SleuthKit mactime imported in MISP as objects](https://www.misp-project.org/assets/images/misp/blog/mactime2.png)
The API has been improved with many new features such as: The API has been improved with many new features such as:
- The result counts to restsearch API are now visible via the x-result-count header - The result counts to restsearch API are now visible via the x-result-count header