Prelude OSS 5.0.0 ================= * 2018-09-07, libprelude-5.0.0 ------------------------------ Author: Antoine Luong - Fix docstring typos - Update GnuLib code - Fix IDMEF_MSG_REFERENCE_NAME value Author: Yoann Vandoorselaere - Change the structure of IDMEF criteria - Make IDMEFPath and IDMEFCriteria pickle compatible Author: Thomas Andrejak - Add python 3.6 support - Fix spelling in Perl bindings - Fix server_confirm type * 2018-09-07, libpreludedb-5.0.0 -------------------------------- Author: Antoine Luong - Update GnuLib code - Add a unique identifier in the _format table - Fix SQL connection leak - Fully support sorting in preludedb_get_message_idents() Author: Yoann Vandoorselaere - Properly set top_class when there is no JOIN - Prevent failure on additional data type mismatch - Support attaching data to preludedb_t and preludedb_sql_t object Author: Thomas Andrejak - Add python 3.6 support * 2018-09-07, prelude-correlator-5.0.1 -------------------------------------- Author: Antoine Luong - Allow local meta-correlation - Provide the rule ID in correlation alerts - Stop using ez_setup.py - Fix context constructor signature Author: Yoann Vandoorselaere - Environment should be globally available - Implement a plugin state saving method Author: Thomas Andrejak - Fix python 3 compatibility * 2018-09-07, prelude-lml-5.0.0 ------------------------------- Author: Antoine Luong - Update GnuLib code * 2018-09-07, prelude-lml-rules-5.0.0 ------------------------------------- No new changes. * 2018-09-07, prelude-manager-5.0.0 ----------------------------------- Author: Antoine Luong - Update GnuLib code Author: Yoann Vandoorselaere - Memory corruption fixes Author: Song Tran - Add SELinux policies * 2018-09-07, prewikka-5.0.2 ---------------------------- Author: Yoann Vandoorselaere - Better Lucene coverage - Remove useless calls to use_transaction() - Implement Lucene and Criteria Lark parsers - IDMEF Criterion parser fixes - Use gevent in Crontab - Implement origin check and CSRF tokens - Python 3 compatibility work - Improve invalid cronjob exception - Evolutions - Implement a DataSearch framework and new alert/heartbeat views, with: - a zoomable timeline - a search bar - a configurable grid - Slower, but failsafe synchronisation of user configuration - Prewikka menu rework - AJAX request will now always be processed through the prewikka framework - Implement a system of plugin dependencies - Javascript resources loading/unloading framework - Finer grained reload mechanism - Parameters handling overhaul - Proper jQuery parameters handling - Provide a way to update/save parameters with AJAX - MainMenu improvements - Replace timeline_absolute parameter by timeline_mode - Use POST in place of GET - Provide microsecond precision - Rework criteria - Rework PrewikkaResponse code - Class can now provide their own JSON deserialization function - Rework user configuration storage - Bugfixes - Notifications fixes and reload handling - Prevent duplicate error dialog - Redirection fixes - Fix exception with history query containing unicode - Properly add wildcard on not substring operator Author: Antoine Luong - Fix filtering issues in DataSearch - Add horizontal-bar diagram type - Automatically convert booleans for SQL queries - Make jquery_unparam iterative - Fix cronjob scheduling - Allow more complex branch migrations - Fix possible error in correlation alert detail - Handle only-path criteria in parser - Do not use the compile callback with boolean criteria - Avoid issues with ID conflicts - Fix dropdown appearance for dark theme - Allow plugins to be disabled by default - More DataSearch fixes - Use a workaround for gevent compatibility with Python 2.7.5 - Allow absolute URL for view help - Move filter-specific code to the dedicated plugin - Keep the search query when using DataSearch aggregation - Add missing escaping in Lucene mode - Reduce flickering when loading DataSearch pages - Evolutions - Replace Chosen by Select2 - Save and restore the grid limit - Remove globally accessible env.idmef_db - Verify the schema of the YAML menu - Make filter creation accessible from the control menu - Port the contextual links to a dedicated plugin - Raise normalization errors when parameters are incorrect - Save and reload grid preferences - Better support for multiple control menus - Add get_int, get_float and get_bool methods to ConfigParserSection - Bugfixes - Various DataSearch fixes - Unregister plugin data in case of initialization error - Avoid SQL connection leaks - Destroy active tooltips when reloading grid content - Correctly merge menu sections - Do not open a modal when reloading #main - Interpret cronjobs configuration as local time, not UTC - Fix issue when there are no heartbeats in database - Make the dropdown-header-custom CSS declaration global - Add a tooltip for the IDMEF detail in DataSearch - Raise the correct error when the cronjob callback is missing - Keep the order of timeline series - Add a Lucene parser - Improve dark theme - Drop the ConfigParserOption class - Add the plugin_after attribute to load plugins in order - Handle the AJAX tooltips globally - Greatly improve the performance of the Agents view - Fix various Prewikka initialization errors - IE11 and Chrome compatibility work - Automatically add indexes when needed in IDMEF paths - Fix creation of filters with undefined fields - Do not duplicate filter when renaming it - Correctly build criteria for aggregating alerts - Fix SQL migration sequence - Fix Criterion JSON construction - Fix DataSearch highlighting - Simplify styling of renderer errors - Make tooltip AJAX requests asynchronous - Raise a proper exception when view is not found in url_for - Stop using ez_setup.py Author: Thomas Andrejak - Update menu organization - Import IDMEF Navigator - Fix custom_theme with invalid python module - Add HOOK_SESSION_DELETE - Keep the url fragment in browser history - Fix correlated alerts classification display on alert board - Move alerts and heartbeats cronjob to dataprovider - Python3 compatibility Author: Augustin Laville - Addition of unit tests Author: Francois Poirotte - Handle DataSearch selections in the browser Author: Camille Gardet - Allow complex criteria in DataSearch cells - Give the data type to the formatter instance - Fix the display of byte-string data in an IDMEF message - Fix actions in the datasearch subgrids - Fix redirection to the helper pages - Add "httponly" options to cookies - Evolutions - New one-click action menu - Add a Threats view based on the DataSearch framework - Create statistics helpers - Add an "update" method to the renderer - Translate scripts - Bugfixes - Save parameters when updating the datasearch table - Fix IDMEF dataprovider value adjustment - Request for deleting a query should be "POST" - Delete tasks linked to a removed user - Fix the SQL mapping of the queries history Author: Sélim Menouar - New renderer type: ChartJS