Patrick Maroney

Update: - The queries are still timing out. There are some scenarios that run beyond 2 minutes, but ultimately turned out to be related to a small set of data...

Thanks - Great TIP!

I've also found that setting a "limit" value, even if very high (i.e., 1,000,000) can significantly improve pymisp response times (at least in JupyterLab): ``` r = misp.search( controller='attributes', type_attribute=['ip-src',...

'Pinging' this issue in hopes there's a 'clean' solution?

Operations against Threat_Actor Attribute are failing because TruSTAR Report Object has reverted to the original version ( as of at least 2.4.135) [JSON File] (https://github.com/MISP/misp-objects/blob/main/objects/trustar_report/definition.json)

### Same issue: err: /Stage[main]/Dev-packages/Exec[install less using npm]/returns: change from notrun to 0 failed: npm install less -g returned 1 instead of one of [0] at /tmp/vagrant-puppet/manifests/default.pp:25 Manually executing executing...

[+1] on both requests: (1) Add documents to existing indices, (2) Add new document types to existing indices* _* Don't know if adding a new document type into existing indices...

Transforming utf-8 to ascii may solve the "crash" issue, but leads to a loss of fidelity. It may also not solve the core problem if there is an "illegal" utf-8...

Note: Seems to be constrained to selecting STIX V1.x at this point: 

Presuming you have access to DHS HSIN Reports: **IB-24-10032 PikaBot Malware Campaign Observed in the Financial Services Sector** Note that the Entity Extraction is pulling out and asserting the same...