Janosch
Janosch
This PR contains a new analyzer `hashr_lookup` that allows to collect sha256 values in timelines and query them against the upcoming hashR project database. hashR TL;DR: hashR is a tool...
When working on a new sketch the initial explore page has a lot of white space and no information on how to get started. The analyst has just their list...
The analyzer results are currently requested per timeline when a sketch is loaded. This results in some scaling issues when working with a sketch that has many timelines. This PR...
With the default set-up the Timesketch API returns an empty page with status code 200 for API endpoints that do not exist. Reproduce: * http://127.0.0.1:5000/api/v1/sketches/123456789 => Existing API endpoint but...
(Follow-up issue from issue #2693 ) Add the latest UX guidelines for the uniform usage of tooltips in Timesketch to the developer documentation over at [timesketch.org](https://timesketch.org/developers/frontend-development/)
When ingesting a large timeline (>10M events) the processing can take quite some time. When we recently ingested a 52M event timeline the processing took around 10 hrs with 1600...
**Is your feature request related to a problem? Please describe.** With a larger Timesketch setup, over time there can be many searchindex instances opened on the opensearch cluster. It is...
**Is your feature request related to a problem? Please describe.** Many front-end features are developed in multiple iterations until they are in their final step. But even during this development...
The [analyzer interface](https://github.com/google/timesketch/blob/master/timesketch/lib/analyzers/interface.py#L196) supports all types of interaction with the sketch like `add_tags`, `add_comment` or `add_view` etc. With the integration of the Threat Intelligence elements and the Yeti plattform, it...
**Is your feature request related to a problem? Please describe.** At the moment there is no way to edit or delete saved searches in the frontend. **Describe the solution you'd...