From efef423e300a71296862605495401efb435706b5 Mon Sep 17 00:00:00 2001 From: Alexandre Dulaunoy Date: Sun, 26 Nov 2023 11:53:50 +0100 Subject: [PATCH] chg: [changelog] updated --- static/Changelog-PyMISP.txt | 56 +++ static/Changelog-misp-galaxy.txt | 506 +++++++++++++++++++++ static/Changelog-misp-modules.txt | 29 ++ static/Changelog-misp-objects.txt | 76 ++++ static/Changelog-misp-taxonomies.txt | 62 +++ static/Changelog-misp-warninglists.txt | 39 ++ static/Changelog.txt | 600 ++++++++++++++++++++++++- 7 files changed, 1359 insertions(+), 9 deletions(-) diff --git a/static/Changelog-PyMISP.txt b/static/Changelog-PyMISP.txt index 417d75d..f0e0174 100644 --- a/static/Changelog-PyMISP.txt +++ b/static/Changelog-PyMISP.txt @@ -2,6 +2,62 @@ Changelog ========= +v2.4.179 (2023-11-23) +--------------------- + +Changes +~~~~~~~ +- Bump version, changelog. [Raphaël Vinot] +- Bump deps. [Raphaël Vinot] +- Bump deps. [Raphaël Vinot] +- [misp-objects] Bumped latest version. [Christian Studer] + +Fix +~~~ +- Eml and msg are in sync again. [Raphaël Vinot] +- Update calls to getStringStream to the public method. [Raphaël Vinot] +- Avoid confusing error when an auth key is limited to an IP. [Raphaël + Vinot] + + Fix #1099 + + +v2.4.178 (2023-10-24) +--------------------- + +New +~~~ +- Run tests on python 3.12 too. [Raphaël Vinot] + +Changes +~~~~~~~ +- Bump changelog. [Raphaël Vinot] +- Bump version, make __version__ dynamic. [Raphaël Vinot] +- Bump deps, allow older jsonschema for compatibility. [Raphaël Vinot] +- Bump deps. [Raphaël Vinot] +- Make mypy happy. [Raphaël Vinot] +- Bump deps. [Raphaël Vinot] +- Bump deps. [Raphaël Vinot] +- Disable search logs tests for now. [Raphaël Vinot] +- Disable fastmode, reenable fetching files. [Raphaël Vinot] +- Try to speedup tests by not importing galaxies, taxos, ... [Raphaël + Vinot] +- Do not clone repo from test. [Raphaël Vinot] + +Fix +~~~ +- Make other fieldnames in CSV also valid... [Raphaël Vinot] +- Make fieldnames actually valid. [Raphaël Vinot] +- Remove CI for python 3.12, waiting for pydeep wheels. [Raphaël Vinot] +- Allow object-relation names with uppercase characters defined in the + templates. [Raphaël Vinot] +- Check if path exists in tests. [Raphaël Vinot] + +Other +~~~~~ +- Ch: Bump deps. [Raphaël Vinot] + + v2.4.176 (2023-09-15) --------------------- diff --git a/static/Changelog-misp-galaxy.txt b/static/Changelog-misp-galaxy.txt index b2cdc4b..0614ef4 100644 --- a/static/Changelog-misp-galaxy.txt +++ b/static/Changelog-misp-galaxy.txt @@ -1,6 +1,512 @@ # Changelog +## v2.4.179 (2023-11-23) + +### New + +* [threat-actor] Storm-0558 added + Fix #880. [Alexandre Dulaunoy] + +### Changes + +* [sigma] updated to the latest version. [Alexandre Dulaunoy] + +* [surveillance] version updated and duplicates removed. [Alexandre Dulaunoy] + +* [threat-actor] TA499 added. [Alexandre Dulaunoy] + +* [threat-actor] version updated. [Alexandre Dulaunoy] + +* [threat-actor] version updated. [Alexandre Dulaunoy] + +* [mitre-attack] updated to ATT&CK v14.0 Enterprise. [Alexandre Dulaunoy] + +### Fix + +* [mitre-tool] fix following request the lead developer of flowintel-cm. [Alexandre Dulaunoy] + +* [threat-actor] replace `aliases` -> `synonyms` + version updated. [Alexandre Dulaunoy] + +* [threat-actor] `synonyms` not `aliases` [Alexandre Dulaunoy] + +* [malpedia] restore original MISP UUID for the cluster. [Alexandre Dulaunoy] + +* [aics] namespace added. [Alexandre Dulaunoy] + +### Other + +* Merge pull request #899 from Delta-Sierra/main. [Alexandre Dulaunoy] + + Kimsuky targets and relations + +* Fix version. [Delta-Sierra] + +* Merge https://github.com/MISP/misp-galaxy. [Delta-Sierra] + +* Merge branch 'main' of github.com:MISP/misp-galaxy into main. [Alexandre Dulaunoy] + +* Merge pull request #898 from Mathieu4141/threat-actors/2d4f4a51-5a1e-4d21-acdc-5516fe781ba2. [Alexandre Dulaunoy] + + [threat-actors] add 10 actors + +* [threat-actors] Add SilverFish. [Mathieu4141] + +* [threat-actors] Add TA402. [Mathieu4141] + +* [threat-actors] Add CostaRicto. [Mathieu4141] + +* [threat-actors] Add Storm Cloud. [Mathieu4141] + +* [threat-actors] Add OldGremlin. [Mathieu4141] + +* [threat-actors] Add TiltedTemple. [Mathieu4141] + +* [threat-actors] Add Moshen Dragon. [Mathieu4141] + +* [threat-actors] Add N4ughtysecTU. [Mathieu4141] + +* [threat-actors] Add Webworm. [Mathieu4141] + +* [threat-actors] Add PerSwaysion. [Mathieu4141] + +* Merge pull request #897 from Mathieu4141/threat-actors/424bc9c9-2bc3-4db7-88a3-6773417deab8. [Alexandre Dulaunoy] + + [threat-actors] add 9 actors + +* [threat-actors] Add DefrayX. [Mathieu4141] + +* [threat-actors] Add NewsPenguin. [Mathieu4141] + +* [threat-actors] Add UAC-0006. [Mathieu4141] + +* [threat-actors] Add TA444. [Mathieu4141] + +* [threat-actors] Add WeedSec. [Mathieu4141] + +* [threat-actors] Add TEMP_Heretic. [Mathieu4141] + +* [threat-actors] Add DEV-0928. [Mathieu4141] + +* [threat-actors] Add CL-STA-0043. [Mathieu4141] + +* [threat-actors] Add UNC4841. [Mathieu4141] + +* Merge pull request #896 from Mathieu4141/threat-actors/43ef0656-b566-46d8-a518-11c1c513bce4. [Alexandre Dulaunoy] + + [threat actors] Add 10 actors + +* [threat-actors] Add AppMilad. [Mathieu4141] + +* [threat-actors] Add Earth Kitsune. [Mathieu4141] + +* [threat-actors] Add FusionCore. [Mathieu4141] + +* [threat-actors] Add DragonSpark. [Mathieu4141] + +* [threat-actors] Add UNC4191. [Mathieu4141] + +* [threat-actors] Add DriftingCloud. [Mathieu4141] + +* [threat-actors] Add MurenShark. [Mathieu4141] + +* [threat-actors] Add Chernovite. [Mathieu4141] + +* [threat-actors] Add VulzSecTeam. [Mathieu4141] + +* [threat-actors] Add MirrorFace. [Mathieu4141] + +* Merge branch 'Mathieu4141-threat-actors/fe99d09c-e4e7-4842-bd26-3ed3f4350bed' into main. [Alexandre Dulaunoy] + +* Merge branch 'threat-actors/fe99d09c-e4e7-4842-bd26-3ed3f4350bed' of https://github.com/Mathieu4141/misp-galaxy into Mathieu4141-threat-actors/fe99d09c-e4e7-4842-bd26-3ed3f4350bed. [Alexandre Dulaunoy] + +* [threat-actors] Add KAX17. [Mathieu4141] + +* [threat-actors] Add Bohrium. [Mathieu4141] + +* Kimsuky target. [Delta-Sierra] + +* Kimsuky relations. [Delta-Sierra] + +* Merge pull request #894 from semelnyk/main. [Alexandre Dulaunoy] + + Updated surveillance-vendor.json with new entries + +* Updated surveillance-vendor.json with new entries. [semelnyk] + +* Merge pull request #893 from danielplohmann/patch-36. [Alexandre Dulaunoy] + + adding Prolific Puma + +* Adding Prolific Puma. [Daniel Plohmann] + +* Merge pull request #892 from Mathieu4141/threat-actors/b780c817-c1d2-4f6b-b03f-b9405d7d1473. [Alexandre Dulaunoy] + + [threat actors] Add 10 actors + +* [threat-actors] Add DarkCasino. [Mathieu4141] + +* [threat-actors] Add Zarya. [Mathieu4141] + +* [threat-actors] Add XakNet. [Mathieu4141] + +* [threat-actors] Add TA482. [Mathieu4141] + +* [threat-actors] Add TAG-56. [Mathieu4141] + +* [threat-actors] Add Water Labbu. [Mathieu4141] + +* [threat-actors] Add Caracal Kitten. [Mathieu4141] + +* [threat-actors] Add WIRTE. [Mathieu4141] + +* [threat-actors] Add WeRedEvils. [Mathieu4141] + +* [threat-actors] Add DEV-0950. [Mathieu4141] + +* Merge pull request #891 from Mathieu4141/threat-actors/289ae672-5442-436d-bc65-0548dba509dc. [Alexandre Dulaunoy] + + [threat actors] Add 3 actors + +* [threat-actors] Add DiceyF. [Mathieu4141] + +* [threat-actors] Add SCARLETEEL. [Mathieu4141] + +* [threat-actors] Add SingularityMD. [Mathieu4141] + +* Merge pull request #890 from Mathieu4141/threat-actors/7ca42298-3f55-49c0-b88d-dc7b14733dbb. [Alexandre Dulaunoy] + + [threat-actors] Add 10 actors + +* [threat-actors] Add Dalbit. [Mathieu4141] + +* [threat-actors] Add BlueBottle. [Mathieu4141] + +* [threat-actors] Add Xcatze. [Mathieu4141] + +* [threat-actors] Add TwoSail Junk. [Mathieu4141] + +* [threat-actors] Add DEV-1028. [Mathieu4141] + +* [threat-actors] Add Kiss-a-Dog. [Mathieu4141] + +* [threat-actors] Add Confucious. [Mathieu4141] + +* [threat-actors] Add Desorden Group. [Mathieu4141] + +* [threat-actors] Add UNC2565. [Mathieu4141] + +* [threat-actors] Add TheDarkOverlord. [Mathieu4141] + +* Merge branch 'Mathieu4141-threat-actors/9cc9036f-b31c-44a7-b8da-38287c3b95ef' into main. [Alexandre Dulaunoy] + +* [threat-actors] Add TraderTraitor. [Mathieu Beligon] + +* [threat-actors] Add UAC-0094. [Mathieu Beligon] + +* [threat-actors] Add UserSec. [Mathieu Beligon] + +* [threat-actors] Add IronHusky. [Mathieu Beligon] + +* [threat-actors] Add ShinyHunters. [Mathieu Beligon] + +* [threat-actors] Add ShroudedSnooper. [Mathieu Beligon] + +* [threat-actors] Add 1937CN. [Mathieu Beligon] + +* [threat-actors] Add Altahrea Team. [Mathieu Beligon] + +* [threat-actors] Add Cyber Av3ngers. [Mathieu Beligon] + +* [threat-actors] Add KromSec. [Mathieu Beligon] + +* [threat-actors] Add DustSquad. [Mathieu Beligon] + +* [threat-actors] Add Guacamaya. [Mathieu Beligon] + +* [threat-actors] Add SharpPanda. [Mathieu Beligon] + +* [threat-actors] Add BadRory. [Mathieu Beligon] + +* Merge pull request #888 from Mathieu4141/threat-actors/e8e0bf88-5b60-436f-8f61-ddafab6ca141. [Alexandre Dulaunoy] + + [threat actors] Add 10 actors + +* [threat-actors] Add Storm-1133. [Mathieu4141] + +* [threat-actors] Add REF2924. [Mathieu4141] + +* [threat-actors] Add REF5961. [Mathieu4141] + +* [threat-actors] Add HiddenArt. [Mathieu4141] + +* [threat-actors] Add OilAlpha. [Mathieu4141] + +* [threat-actors] Add GhostSec. [Mathieu4141] + +* [threat-actors] Add IndigoZebra. [Mathieu4141] + +* [threat-actors] Add NB65. [Mathieu4141] + +* [threat-actors] Add Witchetty. [Mathieu4141] + +* [threat-actors] Add RedStinger. [Mathieu4141] + +* Merge pull request #887 from Mathieu4141/threat-actors/04da55b3-acda-4e77-b687-e7f9329d0fd1. [Christophe Vandeplas] + + [threat-actors] Adding 10 actors + +* [threat-actors] remove duplicate. [Mathieu Beligon] + +* [threat-actors] Add UNC3890. [Mathieu Beligon] + +* [threat-actors] Add Carderbee. [Mathieu Beligon] + +* [threat-actors] Add RansomVC. [Mathieu Beligon] + +* [threat-actors] Add SiegedSec. [Mathieu Beligon] + +* [threat-actors] Add Metador. [Mathieu Beligon] + +* [threat-actors] Add YoroTrooper. [Mathieu Beligon] + +* [threat-actors] Add Kasablanka. [Mathieu Beligon] + +* [threat-actors] Add SparklingGoblin. [Mathieu Beligon] + +* [threat-actors] Add Storm-0062. [Mathieu Beligon] + +* [threat-actors] Add LofyGang. [Mathieu Beligon] + +* Merge pull request #886 from Mathieu4141/threat-actors/8c381db4-079a-4f37-9265-dfd12fe50e10. [Alexandre Dulaunoy] + + [threat actors] Add 10 threat actors + +* [threat-actors] jq. [Mathieu Beligon] + +* [threat-actors] Add Lancefly. [Mathieu Beligon] + +* [threat-actors] Add GoldenJackal. [Mathieu Beligon] + +* [threat-actors] Add Earth Estries. [Mathieu Beligon] + +* [threat-actors] Add TetrisPhantom. [Mathieu Beligon] + +* [threat-actors] Add Redfly. [Mathieu Beligon] + +* [threat-actors] Add Earth Longzhi. [Mathieu Beligon] + +* [threat-actors] Add UNC3886. [Mathieu Beligon] + +* [threat-actors] Add Winter Vivern. [Mathieu Beligon] + +* [threat-actors] Add Xiaoqiying. [Mathieu Beligon] + +* [threat-actors] Add Keksec. [Mathieu Beligon] + +* Merge pull request #885 from Mathieu4141/threat-actor/keksec-ba96cbce-c2bc-4b6b-9404-43ded4c97a19. [Alexandre Dulaunoy] + + [threat-actors] Add Keksec + +* [threat-actors] Add Keksec. [Mathieu4141] + +* Merge pull request #884 from Mathieu4141/threat-actor/scarred-manticore-6a6965e2-0843-47b1-990d-d43016dd4dd1. [Alexandre Dulaunoy] + + [threat-actors] Add Scarred Manticore + +* [threat-actors] jq. [Mathieu Beligon] + +* Merge branch 'main' into threat-actor/scarred-manticore-6a6965e2-0843-47b1-990d-d43016dd4dd1. [Mathieu Béligon] + +* Merge branch 'main' of github.com:MISP/misp-galaxy into main. [Alexandre Dulaunoy] + +* Merge pull request #883 from Delta-Sierra/main. [Alexandre Dulaunoy] + + add naics generation script + +* Add naics generation script. [Delta-Sierra] + +* Merge branch 'HiS3-main' into main. [Alexandre Dulaunoy] + +* Merge branch 'main' of https://github.com/HiS3/misp-galaxy into HiS3-main. [Alexandre Dulaunoy] + +* Update malpedia galaxy. [Sebastian Himmler] + +* Merge pull request #882 from Delta-Sierra/main. [Alexandre Dulaunoy] + + Add NAICS galaxy + +* Jq. [Delta-Sierra] + +* Add authors. [Delta-Sierra] + +* Add categ. [Delta-Sierra] + +* Trim. [Delta-Sierra] + +* Merge https://github.com/MISP/misp-galaxy. [Delta-Sierra] + +* Add NAICS galaxy. [Delta-Sierra] + +* [threat-actors] Add Scarred Manticore. [Mathieu4141] + + +## v2.4.178 (2023-10-30) + +### Changes + +* [threat-actor] increased version number. [Christophe Vandeplas] + +* [sigma] updated. [Alexandre Dulaunoy] + +* [doc] Index updated. [Alexandre Dulaunoy] + +* [description_value] reprocess clusters to avoid duplicate on value. [Alexandre Dulaunoy] + +* [adoc_galaxy] exclude firearms and ammunitions. [Alexandre Dulaunoy] + +* [firearms] remove duplicate firearms having similar SKU. [Alexandre Dulaunoy] + +* [ammunitions] duplicate values replaced with the complete description. [Alexandre Dulaunoy] + +* [threat-actor] clean-up. [Alexandre Dulaunoy] + +* [sigma] updated to the latest version. [Alexandre Dulaunoy] + +* [galaxy] duplicate UUIDs removed. [Alexandre Dulaunoy] + +* [malpedia] duplicate refs removed. [Alexandre Dulaunoy] + +* [malpedia] jq all the things. [Alexandre Dulaunoy] + +* [sigma] updated. [Alexandre Dulaunoy] + +### Fix + +* [threat-actor] JQ all the things + version updated. [Alexandre Dulaunoy] + +* [ammunition] too many ammunitions. [Alexandre Dulaunoy] + +* [threat-actor] version updated + jq all the things. [Alexandre Dulaunoy] + +### Other + +* Merge pull request #881 from feedly/threat-actors/add-camaro-dragon. [Alexandre Dulaunoy] + + [threat-actors] Add Camaro Dragon + +* [threat-actors] Add Camaro Dragon. [Mathieu Beligon] + +* Merge branch 'jstnk9-main' into main. [Alexandre Dulaunoy] + +* Threat actors update. [jstnk9] + +* Merge pull request #878 from jstnk9/main. [Alexandre Dulaunoy] + + threat actor updated + +* Threat actor updated. [jstnk9] + +* Merge pull request #876 from Mathieu4141/threat-actors/cobalt-mirage. [Christophe Vandeplas] + + [threat-actors] More aliases of Iranian apts + +* [threat-actors] More aliases of iranian apts. [Mathieu Beligon] + +* Merge pull request #875 from Mathieu4141/threat-actors/add-void-rabisu. [Alexandre Dulaunoy] + + [threat-actors] Add Void Rabisu + +* [threat-actors] Add Void Rabisu. [Mathieu Beligon] + +* Merge branch 'o1mate-FirearmsAndAmmo' into main. [Alexandre Dulaunoy] + +* Merge branch 'FirearmsAndAmmo' of https://github.com/o1mate/misp-galaxy into o1mate-FirearmsAndAmmo. [Alexandre Dulaunoy] + +* Merging the handguns and shotguns clusters into a single firearm cluster. [o1mate] + +* Added two new galaxies : An ammunition galaxy containing a list of known sold ammunitions ordered by brands, and a firearm galaxy containing two clusters (handguns, shotguns) scrapped from a famous vendor and ordered by model name (Format : Model name - SKU). [o1mate] + +* Merge branch 'jstnk9-main' into main. [Alexandre Dulaunoy] + +* Added information related to Wizard Spider. [jstnk9] + +* Added suspected victims to Gelsemium. [jstnk9] + +* Merge pull request #872 from Delta-Sierra/main. [Alexandre Dulaunoy] + + add AtlasCross + +* Add AtlasCross. [Delta-Sierra] + +* Merge https://github.com/MISP/misp-galaxy. [Delta-Sierra] + +* Adding targeted sectors. [Delta-Sierra] + +* Merge pull request #871 from danielplohmann/patch-35. [Alexandre Dulaunoy] + + adding aliases to ProphetSpider + +* Adding aliases to ProphetSpider. [Daniel Plohmann] + +* Merge branch 'main' of github.com:MISP/misp-galaxy into main. [Alexandre Dulaunoy] + +* Merge pull request #870 from cipherlock/chg-nigeria-country-code. [Alexandre Dulaunoy] + + chg [misp-galaxy] update Nigeria from name to 2-digit code + +* Chg [misp-galaxy] update Nigeria from name to 2-digit code. [Paul Stark] + +* Merge branch 'jstnk9-main' into main. [Alexandre Dulaunoy] + +* Updated TA505 countries and industries affected. [jstnk9] + + updated TA505 countries and industries affected + +* Merge pull request #868 from Mathieu4141/threat-actors/add-scattered-ta. [Alexandre Dulaunoy] + + [threat-actors] Add Scattered Canary and Scattered Spider + +* Fixes. [Mathieu Beligon] + +* Fixes. [Mathieu Beligon] + +* Fixes. [Mathieu Beligon] + +* [threat-actors] bump version. [Mathieu Beligon] + +* [threa-actors] Add Scattered Spider. [Mathieu Beligon] + +* [threa-actors] Add Scattered Canary. [Mathieu Beligon] + +* Merge branch 'fl0x2208-master' into main. [Alexandre Dulaunoy] + +* Malpedia 2023 September update. [fl0x2208] + + malpedia 2023 September update + +* Merge pull request #866 from Mathieu4141/actors/add-storm-0324. [Alexandre Dulaunoy] + + [threat-actors] Add Storm-0324 + +* [threat-actors] Add Storm-0324. [Mathieu Beligon] + +* Merge pull request #865 from Delta-Sierra/main. [Alexandre Dulaunoy] + + adding targeted sectors + +* Fix caps. [Delta-Sierra] + +* Adding targeted sectors. [Delta-Sierra] + +* Finish fixing Botswana infos into Brazil cluster. [Delta-Sierra] + +* Merge https://github.com/MISP/misp-galaxy. [Delta-Sierra] + +* Adding targeted sectors. [Delta-Sierra] + +* Fix caps. [Delta-Sierra] + + ## v2.4.176 (2023-09-14) ### Other diff --git a/static/Changelog-misp-modules.txt b/static/Changelog-misp-modules.txt index 85cb8ab..a79b0d8 100644 --- a/static/Changelog-misp-modules.txt +++ b/static/Changelog-misp-modules.txt @@ -1,6 +1,35 @@ # Changelog +## v2.4.179 (2023-11-23) + +### Other + +* Merge pull request #642 from Mv35/cluster25. [Alexandre Dulaunoy] + +* Documentation and logos. [Milo Volpicelli] + +* Cluster25_expand: handles related items and more. [Milo Volpicelli] + +* Enriches with c25 MISP objects. [Milo Volpicelli] + +* Remove addition of cluster25 import module. [Milo Volpicelli] + +* Actual expand implementation. [Milo Volpicelli] + +* Adds cluster25 import module. [Milo Volpicelli] + +* Renamed cluster25.py to cluster25_expand.py, module implementation. [Milo Volpicelli] + +* Adds cluster25.py expansion module and entry in expansion/__init__.py. [Milo Volpicelli] + +* Merge pull request #640 from Cosive/feature/virustotal_enrichment. [Alexandre Dulaunoy] + + Fix regression in Virustotal modules + +* Rename `files_iterator` and related variables to avoid overwriting `file_object` in virustotal enrichments. [Sid Odgers] + + ## v2.4.176 (2023-09-14) ### Other diff --git a/static/Changelog-misp-objects.txt b/static/Changelog-misp-objects.txt index 208cde7..fda23b2 100644 --- a/static/Changelog-misp-objects.txt +++ b/static/Changelog-misp-objects.txt @@ -1,6 +1,82 @@ # Changelog +## v2.4.179 (2023-11-23) + +### New + +* [shadowserver-malware-url-report] first version. [Alexandre Dulaunoy] + + Transposition of the `malware_url` from Shadowserver + +### Changes + +* [doc] MISP objects list updated. [Alexandre Dulaunoy] + +### Fix + +* [crowdstrike-report] jq all the things. [Alexandre Dulaunoy] + +### Other + +* Merge pull request #409 from matthijsvp/main. [Alexandre Dulaunoy] + + Updated attack-step + +* Merge branch 'MISP:main' into main. [Matthijs van P] + +* Merge branch 'akshayjain-1-main' into main. [Alexandre Dulaunoy] + +* Update definition.json. [akshayjain-1] + + Changed the file hash attribute type to sha256 from text + +* Create definition.json for Crowdstrike report. [akshayjain-1] + +* [attack-step] Fixed typo, added multiples. [Matthijs van Polen] + +* Merge branch 'chrisr3d_patch' of github.com:MISP/misp-objects. [Christian Studer] + +* Add: [intrusion-set] Added `first_seen` & `last_seen` attributes. [Christian Studer] + +* Merge branch 'main' of github.com:MISP/misp-objects into chrisr3d_patch. [Christian Studer] + +* Merge branch 'main' of github.com:MISP/misp-objects. [Christian Studer] + +* Merge pull request #405 from bynt/main. [Alexandre Dulaunoy] + + new misp-object: c2-list + +* Reorder elements. [Martin Waleczek] + +* Add c2-ip to definition.json. [Martin Waleczek] + +* Add definition.json for c2-list. [Martin Waleczek] + +* Merge pull request #406 from MISP/chrisr3d_patch. [Christian Studer] + + Add an `email` attribute to the `user-account` template + +* Add: [user-account] Added email attribute. [Christian Studer] + +* Merge branch 'main' of github.com:MISP/misp-objects into chrisr3d_patch. [Christian Studer] + + +## v2.4.178 (2023-10-30) + +### New + +* [cryptocurrency-transaction] generic transaction object for any cryptocurrency. [Alexandre Dulaunoy] + +### Changes + +* [cs-beacon-config] some updates. [Alexandre Dulaunoy] + +* [cryptocurrency-transaction] fix the UUID. [Alexandre Dulaunoy] + +* [coin-address] add a generic crypto address if the address format is not known or supported. [Alexandre Dulaunoy] + + ## v2.4.176 (2023-09-14) ### Changes diff --git a/static/Changelog-misp-taxonomies.txt b/static/Changelog-misp-taxonomies.txt index 642537a..aa94bcf 100644 --- a/static/Changelog-misp-taxonomies.txt +++ b/static/Changelog-misp-taxonomies.txt @@ -1,6 +1,68 @@ # Changelog +## v2.4.179 (2023-11-23) + +### New + +* [srbcert] New taxonomy for the SRB-CERT. [Alexandre Dulaunoy] + +### Changes + +* [MANIFEST] updated. [Alexandre Dulaunoy] + +### Fix + +* Fix: [tlp] updated TLP:AMBER+strict description based on #261 by @vba-anssi. [Alexandre Dulaunoy] + +* Fix: [PAP] following pull-request from @vba-anssi #261. [Alexandre Dulaunoy] + + PAP aligned with TLP version 2 + +* [srbcert] various fixes. [Alexandre Dulaunoy] + + - Duplicates removed + - Numerical value added + + +## v2.4.178 (2023-10-30) + +### Changes + +* [adoc] exclude `doping-substances` from adoc generation. [Alexandre Dulaunoy] + +* Updated manifest with the new taxonomy description. [Christian Studer] + +* [doping-substances] Handmade review of the taxonomy. [Christian Studer] + +* Reorder predicates for tests. [Raphaël Vinot] + +* [circl] significant predicate added. [Alexandre Dulaunoy] + +### Other + +* Merge pull request #269 from chrisr3d/main. [Alexandre Dulaunoy] + + Doping substances taxonomy + +* Add: [doping-substances] New taxonomy for doping substances. [Christian Studer] + + - Merging from original work by @Chaamoxs & @WooZyhh + - Added also an additional predicate that was skiped first + +* Merge pull request #268 from dhondta/main. [Alexandre Dulaunoy] + + Improved runtime-packers + +* Jq'ed machinetag.json. [dhondta] + +* Updated runtime-packer version. [dhondta] + +* Improved runtime-packers (2) [dhondta] + +* Improved runtime-packers. [dhondta] + + ## v2.4.175 (2023-08-23) ### Changes diff --git a/static/Changelog-misp-warninglists.txt b/static/Changelog-misp-warninglists.txt index 1baf095..bc11c37 100644 --- a/static/Changelog-misp-warninglists.txt +++ b/static/Changelog-misp-warninglists.txt @@ -1,6 +1,45 @@ # Changelog +## v2.4.179 (2023-11-23) + +### Changes + +* [misp-warning-lists] updated to the latest version. [Alexandre Dulaunoy] + +* [findip-host] sorted. [Alexandre Dulaunoy] + +* [findip-host] more via Passive DNS. [Alexandre Dulaunoy] + +* [warning-lists] updated. [Alexandre Dulaunoy] + +* [findip-host] updated (sourced from Passive DNS) [Alexandre Dulaunoy] + + +## v2.4.178 (2023-10-30) + +### New + +* [findip-host] New warning-list for known hostname used to lookup source IP of the resolver. [Alexandre Dulaunoy] + +### Changes + +* [warning-list] updated. [Alexandre Dulaunoy] + +* ['find_ip'] added the obscure 'o-o.myaddr.l.google.com' used to get ip via TXT dns lookup. [Alexandre Dulaunoy] + +* [findip-host] updated. [Alexandre Dulaunoy] + +* [warning-lists] updated. [Alexandre Dulaunoy] + + +## v2.4.177 (2023-09-22) + +### Changes + +* [lists] updated. [Alexandre Dulaunoy] + + ## v2.4.176 (2023-09-14) ### New diff --git a/static/Changelog.txt b/static/Changelog.txt index 3769f7d..2a23f48 100755 --- a/static/Changelog.txt +++ b/static/Changelog.txt @@ -2,6 +2,588 @@ Changelog ========= +v2.4.179 (2023-11-25) +--------------------- + +New +~~~ +- [WiP] edit refactor. [iglocska] +- [event edit] skip validation hooks on demand. [iglocska] + + - WiP for bulk ingestion of minor changes +- [tools/misp-delegation] Added misp-delegation tool. [Sami Mokaddem] + + MISP-Delegation is a customisable tool to help sending events on a remote MISP instance and create a delegation request. +- [sightings:view] Added endpoint sightings/view to get sightings by ID + or UUID. [Sami Mokaddem] +- [event report] fetch from url now detects other formats. [iglocska] + + - pdf, xlsx, pptx, ods, odt, docx extension documents are now imported via the given module +- [eventreport:sendToLLM] Added draft of feature. [Sami Mokaddem] +- [llm] settings. [iglocska] +- [workflow-modules:count_if] New module `IF :: Count` that counts the + amount of entry in the provided path and compare it with a value. + [Sami Mokaddem] +- [workflow:editor] Added jinja icon for param supporting jinja + templating. [Sami Mokaddem] + +Changes +~~~~~~~ +- [bulk update] simplified. [iglocska] +- [bulksave] tuning. [iglocska] +- [VERSION] bump. [iglocska] +- [PyMISP] Bump version. [Raphaël Vinot] +- [warning-lists] updated to the latest version. [Alexandre Dulaunoy] +- [misp-objects] updated to the latest version. [Alexandre Dulaunoy] +- [misp-galaxy] updated to the latest version. [Alexandre Dulaunoy] +- [misp-taxonomies] updated to the latest version. [Alexandre Dulaunoy] +- [disable_seen_ips] enable by default, switch to opt-out. [iglocska] +- [fast_update] Only run recorrelation on attributes that need to be + recorrelated. [iglocska] +- [cleanup] of temporary paths. [iglocska] +- [fast_update] recalculate attribute count + regenerate correlations. + [iglocska] +- [misp-galaxy] updated to the latest version. [Alexandre Dulaunoy] +- [widget:worldmap] Added more colour scale in the code and changed the + default. [Sami Mokaddem] +- [authkey:add] Clarified authkey `read_only` field. [Sami Mokaddem] +- [statistics shell] added new statistics on PRs. [iglocska] +- [misp-galaxy] updated to the latest version. [Alexandre Dulaunoy] +- [tools] gen_website_communities now downloads logos. [Christophe + Vandeplas] +- [misp-objects] updated to the latest version. [Alexandre Dulaunoy] +- [misp-galaxy] updated to the latest version. [Alexandre Dulaunoy] +- [misp-warning-lists] updated to the latest version. [Alexandre + Dulaunoy] +- [misp-galaxy] updated to the latest version. [Alexandre Dulaunoy] +- [eventReport:sendToLLM] Added loading text. [Sami Mokaddem] +- [eventReport:sendToLLM] Stop debugging. [Sami Mokaddem] +- [llm tests] apikey header name change. [iglocska] +- [EventReport:sendToLLM] Added support of settings. [Sami Mokaddem] +- [requirements] PyMISP version updated. [Alexandre Dulaunoy] +- [workflow:normalizeData] More broad error catching. [Sami Mokaddem] +- [workflow:normalizeData] Gracefully cath exception and provide more + feedback when supplying wrong input data. [Sami Mokaddem] + + Fix #9344 +- [worflow-trigger:sighting_after_save] Change name to after-save and + make it misp_core_format compatible. [Sami Mokaddem] +- [workflow-modules:add_to_warninglist] Added some improvements and + small refactoring. [Sami Mokaddem] +- [workflow-modules:webhook] Added support of jinja templating in URL + and Headers. [Sami Mokaddem] +- [workflow] Jinja template rendering is done automatically based on + param options. [Sami Mokaddem] +- [workflow-module:organisation_if] Allow providing more than one org at + a time. [Sami Mokaddem] +- [workflow-module:attach_warninglist] Allow providing more than one + list at a time. [Sami Mokaddem] + +Fix +~~~ +- [bulksave] valiadate only only works with saveAll() [iglocska] +- [bulksave] doesn't save with a single invalid attribute. [iglocska] +- [workflow-modules:attribute_edit_operation] Removed leftover code. + [Sami Mokaddem] +- [fast_update] recorrelation typo. [iglocska] +- [pull] duplicate detection fixed. [iglocska] + + - allow duplicates for deleted attributes, not for live ones +- [bulk update] objects fixed. [iglocska] +- [bulk edit] fixes. [iglocska] +- [cleanup] missed a correction. [iglocska] +- [login] action replaced with hard coded route to baseurl . + /users/login. [iglocska] +- [sync] fixed pull deduplication causing potential attribute loss. + [iglocska] + + - The validation for duplicates on pull was too tight for attributes, leading for soft-deleted attributes with an equal value-type-category tuple from blocking incoming non-deleted attributes with the same tuple. +- [overorrelation] truncation should only happen on full recorrelations. + [iglocska] +- [console] minor syntax fix. [Christophe Vandeplas] +- [authkeys] AuthKey IP logging enabled by default #9339. [Christophe + Vandeplas] +- [sighting:anonymisation] Anonymize sightings if and only if + anonymization is set in the settings. [Sami Mokaddem] +- Taxonomy view filter is not kept when switching pages, fixes #8875. + [Luciano Righetti] +- [internal] ACL. [Jakub Onderka] +- [internal] Schema version. [Jakub Onderka] +- [build] Build test fix. [Jakub Onderka] +- Api order not working because of dropped param/incorrect handling, + related to #9359. [Luciano Righetti] +- [stix1 import] Fixed SocketAddress properties parsing to avoid issue + when there is no port field. [Christian Studer] +- [error handling] added to LLM push. [iglocska] +- [dashboard] Fixed full group by issue with eventEvolution and + orgEvolution. [Sami Mokaddem] +- [sightings:view] Added missing entry in ACL Component. [Sami Mokaddem] +- [openapi] Fix minimums of restsearch page and limit params. fix #9334. + [Jeroen Pinoy] +- Event timestamp sort bug, fixes #9359. [Luciano Righetti] +- [UsernameHelper] resolved confusion. [Andras Iklody] + + Based on etymological discoveries, this long standing issue has been resolved. +- [upload analysis file] removed JS to make it work. [iglocska] +- [internal] mactime template uuid fix and saveObject improvement. + [iglocska] +- [user search] in index, removed old style authkey as a valid search + field. [iglocska] +- [llm test] should work nao. [iglocska] +- [eventReport:sendToLLM] Fixed condition and encode data to be sent. + [Sami Mokaddem] +- [eventReport:sendToLLM] Adapted the setting. Again. [Sami Mokaddem] +- [llm tests] tests changed for settings. [iglocska] +- [llm tests] I need sleep. [iglocska] +- [eventreport:sendToLLM] Adapted settings after a change. [Sami + Mokaddem] +- [llm settings] again. [iglocska] +- [llm tests] setting naming. [iglocska] +- [llm test] setting name fix. [iglocska] +- [llm setting] name. [iglocska] +- [ui:global_menu] Make sure right_menu is defined. [Sami Mokaddem] +- [ui:global_menu] Make sure right_menu is defined. [Sami Mokaddem] +- [events:view] Remove any tooltip upon closing the popover form. [Sami + Mokaddem] + + This will make @iglocska happy. +- [workflow:editor] Refresh picker with value selected by default on + load. [Sami Mokaddem] + + - Make sure chosen knows about the selected value when the first one in the list is picked on page load +- [warninglist:crud] Nicer error message when trying to save no values. + [Sami Mokaddem] + + Fix #9179 thanks to @vincenzocaputo for the initial work! +- Update requirements.txt to match app/Controller/AppController.php, add + test. [Raphaël Vinot] +- [workflow:editor] Prevent crashing if module param changed to multi- + select. [Sami Mokaddem] + +Other +~~~~~ +- Merge branch 'develop' into 2.4. [iglocska] +- Merge branch 'develop' into 2.4. [iglocska] +- Merge branch 'richtag' into develop. [iglocska] +- Accessibility: added a "role" attribute so the global/local nature of + tags are read correctly by all screen readers. [Olivier BERT] +- Merge branch 'tmpfiletool' into develop. [iglocska] +- Rreally proper place to import TmpFileTool. [Marek Zpevacek] +- Fix import of TmpFileTool in RestResponseComponent. [Marek Zpevacek] +- Merge branch 'nohooks' into develop. [iglocska] +- Security: [event:event-timeline] Fixed XSS in the event timeline + widget. [Sami Mokaddem] + + As reported by fukusuket(Fukusuke Takahashi) +- Merge branch 'develop' of github.com:MISP/MISP into develop. [Sami + Mokaddem] +- Branch 'develop' of github.com:MISP/MISP into develop. [Sami Mokaddem] +- Merge branch '2.4' into develop. [iglocska] +- Merge branch 'develop' of github.com:MISP/MISP into develop. + [iglocska] +- Merge pull request #9370 from JakubOnderka/build-test-fix-vol2. [Jakub + Onderka] + + fix: [build] Build test fix +- Merge branch '2.4' into develop. [Alexandre Dulaunoy] +- Merge branch '2.4' of github.com:MISP/MISP into 2.4. [Christian + Studer] +- Merge branch 'develop' of github.com:MISP/MISP into develop. [Sami + Mokaddem] +- Merge pull request #9337 from Wachizungu/fix-openapi-page-and-limit- + minimums. [Andras Iklody] + + fix: [openapi] Fix minimums of restsearch page and limit params. fix … +- Merge branch '2.4' into develop. [iglocska] +- Merge branch 'disable_ip_retention' into develop. [iglocska] +- Remove spread operator for php 7.2 compatability. [James Garratt] +- Add localization string placeholders. [Sid Odgers] +- Add support for disabling the retention of IP addresses used to access + API via an AuthKey. [Sid Odgers] +- Merge branch 'llm_tests' into develop. [iglocska] +- Merge branch 'llm_tests' of github.com:MISP/MISP into llm_tests. + [iglocska] +- Merge branch 'llm_tests' of github.com:MISP/MISP into llm_tests. + [iglocska] +- Merge branch 'llm_tests' of github.com:MISP/MISP into llm_tests. + [iglocska] +- Merge branch 'llm_tests' of github.com:MISP/MISP into llm_tests. [Sami + Mokaddem] +- Merge branch 'llm_tests' of github.com:MISP/MISP into llm_tests. + [iglocska] +- Merge branch 'develop' of github.com:MISP/MISP into develop. + [Alexandre Dulaunoy] +- Merge branch '2.4' into develop. [Alexandre Dulaunoy] +- Merge branch 'vincenzocaputo_add-sighting-publish-trigger' into + develop. [Sami Mokaddem] +- Merge branch 'develop' of github.com:MISP/MISP into + vincenzocaputo_add-sighting-publish-trigger. [Sami Mokaddem] +- Merge branch 'vincenzocaputo_add-to-warninglist-workflow-module' into + develop. [Sami Mokaddem] +- Merge branch 'develop' of github.com:MISP/MISP into + vincenzocaputo_add-to-warninglist-workflow-module. [Sami Mokaddem] +- Fix include filename for parent class. [vincenzocaputo] +- Add workflow module for adding attributes to a non-default + warninglist. [vincenzocaputo] +- Merge branch 'develop' of github.com:MISP/MISP into develop. [Sami + Mokaddem] +- Merge branch 'develop' of github.com:MISP/MISP into develop. [Sami + Mokaddem] +- Merge branch '2.4' into develop. [iglocska] +- Merge branch '2.4' of github.com:VincenzoCaputo/MISP into add- + sighting-publish-trigger. [Vincenzo Caputo] +- Change trigger overhead to high. [Vincenzo Caputo] +- Add sighting publish workflow trigger. [vincenzocaputo] + + +v2.4.178 (2023-10-24) +--------------------- + +New +~~~ +- [workflow-modules:add-eventblocklist-entry] Added new action module. + [Sami Mokaddem] +- [workflow-trigger:event-before-save] Added trigger. [Sami Mokaddem] +- [workflow-module:publish-event] Added draft of module. [Sami Mokaddem] +- [workflow:editor] Added option to provide a custom JSON in the + hashpath picker helper. [Sami Mokaddem] +- [RestClient] Add user totp_delete to query builder. [Jeroen Pinoy] +- [OpenApi] add doc for user totp_delete endpoint. [Jeroen Pinoy] +- [User] Add setting to limit site admin roles to instance's host org. + [Jeroen Pinoy] + +Changes +~~~~~~~ +- [version] bump. [iglocska] +- [submodule] update. [iglocska] +- [PyMISP] Bump version. [Raphaël Vinot] +- [event:restSearch] Added support of orgc_id as valid filter. [Sami + Mokaddem] +- [misp-stix] Bumped latest version. [Christian Studer] +- [dashboard-widget:worldmap] Added support of custom scale in widget + config. [Sami Mokaddem] +- [eventtimeline:doubleclick] Change the location to the object being + double-clicked. [Sami Mokaddem] +- [misp-galaxy] various updates. [Alexandre Dulaunoy] +- [installer] Update to latest installer. [Steve Clement] +- [installer] Support Debian 12. [Steve Clement] +- [layout] Improved UI in special case. [Sami Mokaddem] +- [workflow:executeNode] Correctly interpret execution result for logic + module when logging. [Sami Mokaddem] +- [workflow-module:generic_filter] Improved support of quick hashpath + filter. [Sami Mokaddem] +- [workflow:editor] Improved quick hashpath picker. [Sami Mokaddem] +- [workfowModules:webhook] Added support of self-signed certificates. + [Sami Mokaddem] +- [workflow] Improved logging and debugging of workflow execution. [Sami + Mokaddem] +- [workflow-module:webhook] Added support of request_method, headers and + payload. [Sami Mokaddem] + + Partially fix #9321 +- [tools:misp-workflows/webhook_listener] Print headers on stdout. [Sami + Mokaddem] +- [workflows:infoModal] Added link to jinja2 official documentation. + [Sami Mokaddem] +- [RestClient] use http_method value from template if available. [Jeroen + Pinoy] +- [user] Update store api access time setting description (#9313) + [Jeroen Pinoy] + + Api access time is stored once per hour by default (since commit a5f5a4e113872a77d4e6c2b1a125f03ee89773c2), making the old description of this setting incorrect. +- [event restsearch] exposed includeGranularCorrelations. [iglocska] + + - and also made it visible in the JSON output +- [misp-objects] updated. [Alexandre Dulaunoy] +- [upload_stix] Properly getting the changes on the Galaxies handling + option from the form. [Christian Studer] +- [upload_stix] Visual improvement with descriptions added. [Christian + Studer] + + - More information on the different options to + handle galaxies and clusters while importing + STIX 2 content + - More information on the debugging options +- [Command:TrainingShell] Only override org_id if org_uuid is provided. + [Sami Mokaddem] +- [console:TrainingShell] Added wipeAllAuthkeys function. [Sami + Mokaddem] +- [Command:TrainingShell] Only override org_id if org_uuid is provided. + [Sami Mokaddem] + +Fix +~~~ +- [PyMISP] Another fix in tests. [Raphaël Vinot] +- [PyMISP] missing changes in testsuite. [Raphaël Vinot] +- [objects:edit] Restored behavior of upgrading object to newer + template. [Sami Mokaddem] +- [workflow-module:publish-event] Extend correct class and use event id. + [Sami Mokaddem] +- [sighting:attachOrgToSightings] Stopped double unpacking. [Sami + Mokaddem] +- [attribute] Log entry with the correct action. [Sami Mokaddem] +- [user search] in index, removed old style authkey as a valid search + field. [iglocska] +- [warninglists] default to matching types ALL if nothing is set. + [iglocska] +- [Taxonomies] fix enabling of individual taxonomy tags for tags with + special chars. fixes ##9300. [Jeroen Pinoy] +- [misp-zmq] Include ZMQ support for connecting to Redis over TLS. + [peritz] +- [installer] Kali Linux hack. [Steve Clement] +- [eventreport:extractEntities] Enforced minimum amount of char for + valid replacement. [Sami Mokaddem] +- [security] XSS in selectGalaxy. [Sami Mokaddem] + + - As reported by Zigrin Security +- [workflowModules:webhook] Gracefully handle case with empty headers. + [Sami Mokaddem] +- Wrong param order fixes #9319. [Luciano Righetti] +- [workflow:baseModule] Only build fast lookup array if trigger is using + the MISP core format. [Sami Mokaddem] +- [restsearch] granular correlation parameter fixes. [iglocska] +- [Attribute REST] Add sharinggroup as an allowed parameter for + attribute filtering. [Tom King] +- [eventreport:extractEntities] Enforced minimum amount of char for + valid replacement. [Sami Mokaddem] +- [search] pagination fix. [iglocska] +- [Console:EventShell] Correctly interpret returned data. [Sami + Mokaddem] +- [console:EventShell] Fixed parameter parsing and typo. [Sami Mokaddem] +- [security] XSS in selectGalaxy. [Sami Mokaddem] + + - As reported by Zigrin Security +- [Console:EventShell] Correctly interpret returned data. [Sami + Mokaddem] +- [console:EventShell] Fixed parameter parsing and typo. [Sami Mokaddem] +- [misp-vagrant] submodule removed. [Alexandre Dulaunoy] +- [console:TrainingShell] Typo in authkey condition. [Sami Mokaddem] +- [AuthKeys] Allow users to edit own authkeys, fix #9292 (#9293) [Jeroen + Pinoy] +- [console:TrainingShell] Typo in datasource model. [Sami Mokaddem] + + -- Seriously.. +- [console:TrainingShell] Typo in authkey condition. [Sami Mokaddem] + +Other +~~~~~ +- Merge branch 'develop' into 2.4. [iglocska] +- Merge branch 'develop' of github.com:MISP/MISP into develop. + [iglocska] +- Merge branch 'feature/workflow-trigger-before-save' into develop. + [Sami Mokaddem] +- Merge branch 'feature/workflow-module/publish-event' into develop. + [Sami Mokaddem] +- Merge branch 'develop' of github.com:MISP/MISP into develop. [Sami + Mokaddem] +- Merge branch '2.4' into develop. [Alexandre Dulaunoy] +- Merge pull request #9347 from vincenzocaputo/fix-telegram-workflow- + module. [Alexandre Dulaunoy] + + Fix API url in Telegram workflow module +- Fix API url in Telegram workflow module. [Vincenzo Caputo] +- Merge branch 'develop' of github.com:MISP/MISP into develop. + [Christian Studer] +- Merge pull request #9308 from Wachizungu/fix-enabling-of-individual- + taxonomy-tags. [Andras Iklody] + + fix: [Taxonomies] fix enabling of individual taxonomy tags for tags w… +- Merge branch '2.4' into develop. [Alexandre Dulaunoy] +- Merge pull request #9304 from ostefano/reqfix. [Alexandre Dulaunoy] + + Split requirements file and pin minimum version of Python deps +- Split requirements file and pin minimum version of Python deps. + [Stefano Ortolani] +- Merge branch '2.4' into develop. [Alexandre Dulaunoy] +- Merge pull request #9329 from peritz/fix-zmq-tls-redis. [Alexandre + Dulaunoy] + + fix: [misp-zmq] Include ZMQ support for connecting to Redis over TLS +- Merge pull request #9327 from SteveClement/guides. [Steve Clement] + + chg: [installer] Support Debian 12 +- Merge branch 'develop' of github.com:MISP/MISP into develop. [Sami + Mokaddem] +- Merge branch 'develop' of github.com:MISP/MISP into develop. [Sami + Mokaddem] +- Merge branch 'develop' of github.com:MISP/MISP into develop. + [iglocska] +- Merge pull request #9305 from Kagee/cleanups. [Alexandre Dulaunoy] + + doc: Update README.md with new badges, toc, install tips +- Doc: Update README.md with new badges, toc, install tips. [Anders + Einar Hilden] +- Merge pull request #9314 from Wachizungu/restclient-use-template-http- + method-value. [Alexandre Dulaunoy] + + chg: [RestClient] use http_method value from template if available +- Merge pull request #9315 from Wachizungu/add-user-totp-delete-to- + restclient. [Alexandre Dulaunoy] + + new: [RestClient] Add user totp_delete to query builder +- Merge pull request #9316 from Wachizungu/add-totp-delete-openapi-doc. + [Alexandre Dulaunoy] + + new: [OpenApi] add doc for user totp_delete endpoint +- Merge pull request #9310 from + tomking2/bug/attribute_sharinggroup_filter. [Andras Iklody] + + Regression - Rest search with 'attributes' controller no longer filters by sharing group ID +- Merge pull request #9312 from Wachizungu/add-option-to-limit-site- + admins-to-host-org. [Andras Iklody] + + new: [User] Add setting to limit site admin roles to instance's host … +- Merge branch 'develop' of github.com:MISP/MISP into develop. [Sami + Mokaddem] +- Merge branch '2.4' into develop. [iglocska] +- Merge branch 'develop' of github.com:MISP/MISP into develop. + [Christian Studer] +- Merge branch 'develop' of github.com:MISP/MISP into develop. [Sami + Mokaddem] +- [users] fix user view totp delete checks (#9301) [Jeroen Pinoy] +- Merge branch '2.4' of github.com:MISP/MISP into develop. [Sami + Mokaddem] +- Merge branch '2.4' of github.com:MISP/MISP into develop. [Sami + Mokaddem] +- Merge branch 'develop' of github.com:MISP/MISP into develop. [Sami + Mokaddem] +- [users:totp] set correct rest response action for totp_delete (#9303) + [Jeroen Pinoy] +- Merge branch 'develop' of github.com:MISP/MISP into develop. [Sami + Mokaddem] +- Merge branch '2.4' of github.com:MISP/MISP into develop. [Christian + Studer] + + +v2.4.177 (2023-09-25) +--------------------- + +New +~~~ +- [dev] added a shell script to generate the restsearch parameters. + [iglocska] + + - it's dumb but it should get the job done +- [CLI] add command to expire active AuthKeys that do not have an IP + allowlist set. [Jeroen Pinoy] +- [cli] Add command to trigger password change on next login for users + with old pw. [Jeroen Pinoy] +- [Users] add last password change timestamp for users. [Jeroen Pinoy] +- [workflowModules:event_distribution_operation] Added action module. + [Sami Mokaddem] + +Changes +~~~~~~~ +- [tests] testing disabling the timestamp greater as old timestamp for + password changes. [iglocska] +- [tests] make em happy with re-including a filter parameter that worked + before, albeit unintentionally. [iglocska] +- [CI] Enable debug and timing, take 4. [Raphaël Vinot] +- [CI] Enable debug and timing, take 3. [Raphaël Vinot] +- [CI] Enable debug and timing, take 2. [Raphaël Vinot] +- [CI] Enable debug and timing. [Raphaël Vinot] +- [PyMISP] disable some tests. [Raphaël Vinot] +- [misp-stix] BUmped latest version. [Christian Studer] +- [warning-lists] updated. [Alexandre Dulaunoy] +- [PyMISP] Keep messing with tests. [Raphaël Vinot] +- [PyMISP] Bump. [Raphaël Vinot] +- [warning-lists] updated. [Alexandre Dulaunoy] +- Check test files are there. [Raphaël Vinot] +- Yet another attempt to clone a repo. [Raphaël Vinot] +- [version] bump. [iglocska] +- [escaping] added to event ID. [iglocska] +- Attempt to fix git clone from the test suite. [Raphaël Vinot] +- [feeds] change name to Community version. [Ayush Tomar] +- [config:customAuth_header] Default to upper case. [Sami Mokaddem] + + - See $_SERVER make passed headers upper case +- [console:TrainingShell] Allow overriding existing user data. [Sami + Mokaddem] +- [Console:trainingShell] Provide correct filters for wiping data. [Sami + Mokaddem] +- [console:trainingShell] Added wipeUsers and wipeOrgs functions. [Sami + Mokaddem] +- [posts:crud] Prevent readonly users to create posts. [Sami Mokaddem] +- [config:config.default] Disabled warning_for_all by default for new + install. [Sami Mokaddem] + +Fix +~~~ +- [misp-stix] Bumped latest version with a fix on the file patterns + parsing. [Christian Studer] +- [tests] added some sleeps to avoid timestamps of follow up tests being + within 1 second of the previous test. [iglocska] +- [API] filter parameters added. [iglocska] +- [PyMISP/CI] Disavle search logs for now. [Raphaël Vinot] +- [ibternal] invalid ; instead of , [iglocska] + + - Me not think good. +- [restsearch] parameters fixed. [iglocska] +- [taxonomy] enable/disable creating junk taxonomies on invalid ID, + fixes #9273. [iglocska] +- [console:trainingShell] More typo in model name.. [Sami Mokaddem] +- [console:trainingShell] Typos in model names. [Sami Mokaddem] +- [RestSearch] allow filtering on eventinfo for events and attributes. + [Jeroen Pinoy] + +Other +~~~~~ +- Merge branch 'develop' into 2.4. [iglocska] +- Merge branch '2.4' into develop. [iglocska] +- Merge branch '2.4' of github.com:MISP/MISP into 2.4. [iglocska] +- Merge branch 'develop' of github.com:MISP/MISP into 2.4. [Christian + Studer] +- Merge branch '2.4' of github.com:MISP/MISP into 2.4. [Christian + Studer] +- Merge branch 'develop' into 2.4. [iglocska] +- Merge branch 'develop' of github.com:MISP/MISP into develop. + [iglocska] +- Merge branch '2.4' of github.com:MISP/MISP into develop. [Christian + Studer] +- Merge branch 'develop' of github.com:MISP/MISP into develop. + [Christian Studer] +- Merge branch '2.4' of github.com:MISP/MISP into develop. [Christian + Studer] +- Merge branch 'develop' into 2.4. [iglocska] +- Merge branch 'develop' into 2.4. [iglocska] +- Merge branch 'tag_scope' into develop. [iglocska] +- Show object's attributes if they are tagged. [vincenzocaputo] +- Fix event graph tag scope view. [vincenzocaputo] +- Merge branch 'discussion_view' into develop. [iglocska] +- Fix event hyperlink in discussion view page. [vincenzocaputo] +- Merge branch 'develop' of github.com:MISP/MISP into develop. + [iglocska] +- Merge branch 'cli_reset' into develop. [iglocska] +- Merge branch '2.4' into develop. [iglocska] +- Merge pull request #9282 from elliotechayush/feature/EllioFeed. + [Andras Iklody] + + chg: [feeds] change name to Community version +- Merge branch 'develop' of github.com:MISP/MISP into develop. [Sami + Mokaddem] +- Merge pull request #9255 from Wachizungu/add-cli-cmd-trigger-pw- + change-for-old-pws. [Andras Iklody] + + Add cli cmd to trigger pw change for old pws +- Merge branch 'develop' of github.com:MISP/MISP into develop. + [iglocska] +- Merge remote-tracking branch 'origin/2.4' into develop. [Sami + Mokaddem] +- Merge pull request #9291 from ostefano/pymispfix. [Andras Iklody] + + Update pymisp to 2.4.176 +- Update pymisp to 2.4.176. [Stefano Ortolani] +- Merge branch 'develop' of github.com:MISP/MISP into develop. [Sami + Mokaddem] +- Merge pull request #9296 from Wachizungu/fix-restsearchcomponent- + filter-on-eventinfo. [Andras Iklody] + + fix: [RestSearch] allow filtering on eventinfo for events and attributes again +- Merge branch 'develop' of github.com:MISP/MISP into develop. [Sami + Mokaddem] +- Merge branch '2.4' into develop. [iglocska] + + v2.4.176 (2023-09-15) --------------------- @@ -49,10 +631,6 @@ Fix [Luciano Righetti] - Unable to enrich individual shadow attribute. [Luciano Righetti] - Unable to enrich individual attribute, fixes #9267. [Luciano Righetti] -- [stix2 import] Fixed debugging message for errors and warnings when - the `debug` option is set. [Christian Studer] -- Unable to enrich individual shadow attribute. [Luciano Righetti] -- Unable to enrich individual attribute, fixes #9267. [Luciano Righetti] Other ~~~~~ @@ -88,13 +666,9 @@ Other new: [feeds] add Ellio threat list - Update feature-request-form.yml. [Luciano Righetti] -- Merge branch '2.4' of github.com:MISP/MISP into 2.4. [Christian - Studer] -- Merge branch '2.4' of github.com:MISP/MISP into 2.4. [Christian - Studer] -v2.4.175 (2023-08-24) +v2.4.175 (2023-08-25) --------------------- New @@ -143,6 +717,10 @@ Changes Fix ~~~ +- [stix2 import] Fixed debugging message for errors and warnings when + the `debug` option is set. [Christian Studer] +- Unable to enrich individual shadow attribute. [Luciano Righetti] +- Unable to enrich individual attribute, fixes #9267. [Luciano Righetti] - [misp-stix] Bumped latest version including a quick fix. [Christian Studer] - [CRUD-IndexFilter] correct index page filtering for REST requests. fix @@ -192,6 +770,8 @@ Fix Other ~~~~~ +- Merge branch '2.4' of github.com:MISP/MISP into 2.4. [Christian + Studer] - Merge branch 'develop' into 2.4. [iglocska] - Merge branch '2.4' of github.com:MISP/MISP into develop. [Christian Studer] @@ -274,6 +854,8 @@ Other Iklody] Kagee remove dead symlink +- Merge branch '2.4' of github.com:MISP/MISP into 2.4. [Christian + Studer] v2.4.174 (2023-07-31)