intelmq icon indicating copy to clipboard operation
intelmq copied to clipboard

verified publisher icon certtools

Metadata

IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.

Results 294 intelmq issues
Sort by recently updated
recently updated
newest added

sieve expert bugfix: for string matching, convert value to string first

For `:contains`, `=~` and `!~`, convert the value to string before matching avoiding an exception. If the value is a dict, convert the value to JSON

sebix avatar sebix

component: bots

Filter expert: Docs fix, treat false as false for filter_regex and add logging

- Docs: fix syntax in filter expert bot documentation - filter expert: treat filter_regex false as False if the parameter ```yaml filter_regex: false ``` was set, the bot treated this...

sebix avatar sebix

component: bots

Unhardcode paths, add more Unix support (FreeBSD)

3 comment

Greetings, We deployed IntelMQ on FreeBSD and noticed that there are many issue, mostly due to 1. hardcoded paths (`/usr/lib/python3/dist-packages/…`) 2. Debian-oriented commands (`a2en`, `useradd` with Linux-specific arguments, etc) 3....

antranigv avatar antranigv

(doc) Documentation wrong for debian package installation

https://docs.intelmq.org/latest/admin/installation/linux-packages/#supported-os States: ``` echo "deb http://download.opensuse.org/repositories/home:/sebix:/intelmq/Debian_$(lsb_release -rs)/ /" | sudo tee /etc/apt/sources.list.d/intelmq curl -fsSL "https://download.opensuse.org/repositories/home:sebix:intelmq/Debian_$(lsb_release -rs)/Release.key" | gpg --dearmor | sudo tee /etc/apt/trusted.gpg.d/intelmq.gpg > /dev/null sudo apt update sudo apt...

aaronkaplan avatar aaronkaplan

documentation

ENH: Add possibility to delay generating MISP Feed

Generating MISP feed on every incoming message slows down processing. The new config option let us decide to save them in batches. Cached events are stored in a cache list...

kamil-certat avatar kamil-certat

sieve expert: add a check for undeclared variables

https://github.com/certtools/intelmq/pull/2514#pullrequestreview-2209784734: > I'd ask you to verify / add a test that check() would reject a sieve file with variable used without being declared beforehand @monoidic

sebix avatar sebix

feature
help wanted
component: bots
good first issue

ENH: Caching, advanced mapping and separating events for MISP Feed output bot

8 comment

MISP Feed output bot got new features: * caching incoming messages to not re-generate on every run; * an ability to select which fields should be mapped and set additional...

kamil-certat avatar kamil-certat

component: bots

default log levels: DEBUG for dev, INFO for stable

set the default log level (internal fallback value) to - DEBUG if the version number indicates this is a preliminary release (alpha, beta, dev) - INFO if the version number...

sebix avatar sebix

remove deprecated parameter for YAML loader & dumper

1 comment

typ='unsafe' is deprecated fixes https://github.com/certtools/intelmq/issues/2489 Please don't merge before 3.3.1 release is done.

sebix avatar sebix

bug
component: core

REL: 3.3.1 Bugfix release

blocked by #2522 and #2523 The release dates need to be entered in NEWS and CHANGELOG before merging

sebix avatar sebix

Metadata

941
Stars
294
Forks
Watchers

Owner

verified publisher icon certtools

Metadata

IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.

Back