MISP
/
misp-website
mirror of https://github.com/MISP/misp-website
2
0
Fork 0
Code Issues Releases Wiki Activity

2.4.140

pull/40/head
iglocska 2021-03-10 15:34:25 +01:00
parent 499ca7ec02
commit cad01a6432
No known key found for this signature in database
GPG Key ID: BEA224F1FEF113AC
1 changed files with 39 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

39
_posts/2021-03-10-MISP.2.4.140.released.md Normal file
View File

@ -0,0 +1,39 @@
---
title: MISP 2.4.140 released (Authentication and general improvement release)
layout: post
featured: /assets/images/misp/blog/dashb.png
---
# MISP 2.4.140 released
We have released 2.4.140, the latest release for MISP, introducing a host of new features, including integrations with various authentication systems, various improvements to the handling of objects, CLI improvements as well as a package containing general bug fixes, along with the usual update of the JSON libraries.
# Manage my identity!
MISP already had a host of integration options with various IDPs, but this release will give you some additional options, in the shape of OpenID Connect authentication and Azure Active Directory Authentication integrations. Have a look at the various authentication plugins' configuration in the MISP/app/Plugin directory.
# Built in security report
As of this release, you can get some guidance on the security posture and potential security impacting misconfigurations and best practices via the new security audit tool, locate in the diagnostics section of the server settings. Make sure you go through the tools findings and make any changes you find appropriate from the suggestions offered. When in doubt, feel free to start a discussion on the [support chat](https://gitter.im/MISP/Support) hosted on gitter.
The audit also gives you a sanity check over your CSP posture, used in junction with the new settings and tightened security measures.
Massive kudos to @JakubOnderka for all this work!
# Cross referencing objects across extended events
Whilst extended events were the most flexible way of creating counter analyses in MISP as well as being able to provide additional information to a report, we were always lacking a crucial component to make this feature truly shine: The ability to build connected graphs of the data points contained in a set of events extending one another. This has now been added to MISP as of 2.4.140.
# CLI improvements
We want to make scripting and using the CLI in general a bit more straight-forward. Since the phasing out of the build in task scheduler, we find that there has been a massive uptick in the usage of these tools so expect more improvements in the future. For now, we have added tools to list the connectd servers directly from the CLI, to be able to automate the sync process per connected server.
Additionally, a new set of CLI tools is being built for developers, to ease our lives when trying to modify MISP. The first tool for this toolkit allows us to massage the direct feed description dumps to the expected format for easier modification.
# Acknowledgement
We would like to thank all the [contributors](https://www.misp-project.org/contributors), reporters and users who have helped us in the past months to improve MISP and information sharing at large. This release includes multiple updates in [misp-objects](https://www.misp-project.org/objects.html), [misp-taxonomies](https://www.misp-project.org/taxonomies.html) and [misp-galaxy](https://www.misp-project.org/galaxy.html)
.
As always, a detailed and [complete changelog is available](https://www.misp-project.org/Changelog.txt) with all the fixes, changes and improvements.