Commit Graph

278 Commits

Author SHA1 Message Date
Félix Aime
93e164d7c2 Typo in comment 2021-06-09 11:17:30 +02:00
Félix Aime
50baeaa9e5 Updating misp class and associated watcher code 2021-06-09 11:11:55 +02:00
Félix Aime
691a413bfb Modifying ip4addr & ip6addr types 2021-06-09 09:27:30 +02:00
Félix Aime
73ee7a280b Some modifications, still need tests and debug 2021-06-08 20:11:51 +02:00
Félix Aime
e0c79fa5d6 Working on the MISP integration, still WIP (untested) 2021-06-08 18:22:52 +02:00
Félix Aimé
c1b8f4a447
Merge pull request #70 from JulAkx/misp
New Feature : Import IoCs from an added MISP instance.
2021-06-06 11:08:35 +02:00
Félix Aimé
fd66d2274e
Update install.sh 2021-06-03 15:20:25 +02:00
Félix Aimé
fa8393cba5
Merge pull request #72 from KasperskyLab/dev
Adding detection improvements and capture removing.
2021-06-03 14:54:38 +02:00
Félix Aime
8ea52b1a4f Resolving import and var error 2021-06-03 14:25:51 +02:00
Félix Aime
2968d6fcb6 Adding unsaved captures deletion 2021-06-03 14:08:34 +02:00
Félix Aimé
cb7aeb2721
Update iocs.json
Adding IOCs from the ESET report. Thanks guys.
Report: https://www.welivesecurity.com/wp-content/uploads/2021/05/eset_android_stalkerware.pdf
2021-05-31 20:21:53 +02:00
Julien DEPAILLAT
24be446598 New Feature : It is now possible to import IoCs from an added MISP instance. 2021-05-10 16:08:58 +02:00
Félix Aime
e04ef547c2 Update snort rule issue + http header detection 2021-05-04 14:48:09 +02:00
Félix Aimé
033d751e31
Update iocs.json 2021-05-04 10:21:29 +02:00
Félix Aimé
d41ad28c25
Update iocs.json 2021-04-30 16:51:24 +02:00
Félix Aimé
bf8edb0283
Update iocs.json 2021-04-29 20:24:09 +02:00
Félix Aimé
f00a6d67b9
Merge pull request #69 from KasperskyLab/dev
Correcting issue with certificates detection
2021-04-25 11:09:58 +02:00
Félix Aimé
056f8b0b64
Update update.sh 2021-04-25 11:09:35 +02:00
Félix Aime
bf848cd224 Adding new detections 2021-04-25 11:06:35 +02:00
Félix Aimé
79b597de8e
Update zeekengine.py 2021-04-24 22:56:00 +02:00
Félix Aimé
c3f132fc26
Update update.sh 2021-04-24 22:47:42 +02:00
Félix Aimé
0a00cc1b08
Update update.sh 2021-04-24 22:46:23 +02:00
Félix Aimé
6bca89630e
Update iocs.json 2021-04-24 22:40:43 +02:00
Félix Aimé
27942c224b
Correcting issue with certificates detection 2021-04-24 22:39:02 +02:00
Félix Aimé
c69f2a3d6e
Update iocs.json 2021-04-24 11:28:05 +02:00
Félix Aimé
d5ff62590a
Update iocs.json 2021-04-23 15:06:19 +02:00
Félix Aimé
1923348538
Update iocs.json 2021-04-23 14:00:40 +02:00
Félix Aimé
022f23be1c
Update iocs.json 2021-04-23 11:53:57 +02:00
Félix Aimé
8f006e4ecc
Update iocs.json 2021-04-23 10:05:46 +02:00
Félix Aimé
24e35d9ef5
Update iocs.json 2021-04-21 15:35:20 +02:00
Félix Aimé
53271bbb33
Update iocs.json 2021-04-20 19:04:29 +02:00
Félix Aimé
d9fed1a558
Update install.sh 2021-04-14 16:50:16 +02:00
Félix Aimé
e2f5801a99
Update iocs.json 2021-04-14 15:11:41 +02:00
Félix Aimé
8ac1beba9d
Update whitelist.json 2021-04-09 18:21:39 +02:00
Félix Aimé
16a4a3675a
Update iocs.json 2021-04-09 18:19:57 +02:00
Félix Aimé
7d98f47cba
Merge pull request #66 from KasperskyLab/dev
Update install.sh with new checks
2021-03-25 16:14:43 +01:00
Félix Aime
5e29f8c850 Update install.sh with new checks 2021-03-25 15:42:51 +01:00
Félix Aimé
1f0a9e8c68
Merge pull request #65 from KasperskyLab/dev
Adding Wi-Fi network priority
2021-03-25 15:05:12 +01:00
Félix Aime
ceb36f81ae Adding Wi-Fi network priority #55 2021-03-25 15:01:58 +01:00
Félix Aimé
32e04398fe
Update iocs.json 2021-03-25 13:48:54 +01:00
Félix Aimé
866f24bad8
Merge pull request #64 from KasperskyLab/main
Update of the dev branch with main (new) code
2021-03-25 10:30:16 +01:00
Félix Aimé
1c2d7033f0
Update install.sh
Adding Desktop directory check.
2021-03-25 10:10:36 +01:00
Félix Aimé
6d1a0d88e0
Merge pull request #63 from KasperskyLab/dev
Adding more translations and few fixes
2021-03-25 09:46:48 +01:00
Félix Aimé
f1250a00ba
Merge pull request #62 from bl4ckh0l3z/main
Fix for JWT token generation and validation
2021-03-25 09:46:28 +01:00
Félix Aime
208d408d37 Adding npm timeout for slow bandwidth 2021-03-24 19:03:48 +01:00
Félix Aime
fadcee35db Adding more translations and few fixes 2021-03-24 14:37:20 +01:00
bl4ckh0l3z
36833e1c6b
Update main.py
ERROR in app: Exception on /api/get-token [GET]
Traceback (most recent call last):
  File "/usr/local/lib/python3.7/dist-packages/flask/app.py", line 2447, in wsgi_app
    response = self.full_dispatch_request()
  File "/usr/local/lib/python3.7/dist-packages/flask/app.py", line 1952, in full_dispatch_request
    rv = self.handle_user_exception(e)
  File "/usr/local/lib/python3.7/dist-packages/flask/app.py", line 1821, in handle_user_exception
    reraise(exc_type, exc_value, tb)
  File "/usr/local/lib/python3.7/dist-packages/flask/_compat.py", line 39, in reraise
    raise value
  File "/usr/local/lib/python3.7/dist-packages/flask/app.py", line 1950, in full_dispatch_request
    rv = self.dispatch_request()
  File "/usr/local/lib/python3.7/dist-packages/flask/app.py", line 1936, in dispatch_request
    return self.view_functions[rule.endpoint](**req.view_args)
  File "/usr/local/lib/python3.7/dist-packages/flask_httpauth.py", line 164, in decorated
    return f(*args, **kwargs)
  File "/usr/share/sauron/server/backend/main.py", line 37, in get_token
    return jsonify({"token": token.decode("utf8")})
AttributeError: 'str' object has no attribute 'decode'
2021-03-23 21:02:41 +01:00
bl4ckh0l3z
2f232bbc15
Specify algorithm for jwt.decode
>>> jwt.decode(token, app.config["SECRET_KEY"])
Traceback (most recent call last):
  File "<stdin>", line 1, in <module>
  File "/usr/local/lib/python3.7/dist-packages/jwt/api_jwt.py", line 113, in decode
    decoded = self.decode_complete(jwt, key, algorithms, options, **kwargs)
  File "/usr/local/lib/python3.7/dist-packages/jwt/api_jwt.py", line 80, in decode_complete
    'It is required that you pass in a value for the "algorithms" argument when calling decode().'
jwt.exceptions.DecodeError: It is required that you pass in a value for the "algorithms" argument when calling decode().
2021-03-23 20:57:23 +01:00
Félix Aimé
a98679a923
Update whitelist.json 2021-03-11 20:40:05 +01:00
Félix Aimé
3ff29226b7
Merge pull request #60 from KasperskyLab/dev
Minor changes (loader link + iptables rule)
2021-03-11 10:26:21 +01:00