Thomas Chopitea

Remove references to observable when it is deleted

1

### Description Investigations contain empty DBRefs when an observable is deleted from the database, provoking all kinds of problems. ### Environment | Question | Answer |------------------|-------------------- | Git commit |...

x509 certificates

1

Be able to import x509 certificates and run analytics on them (censys.io...)

2FA in Yeti

1

2FA in Yeti would be nice. Google authenticator seems not-so-hard to add?

Find a way to commit Investigation information to the database

2

Links drawn during investigations are very valuable, let's find a way to incorporate this into Yeti's main DB. Example use cases: - Several reports (investigations) tied to one actor. It...

Sigma Indicator type

1

### Description Create a Sigma indicator type (reference: https://github.com/Neo23x0/sigma)

See discussion in #152

Integration with Malware Repository Framework

4

The Malware Repository Framework (https://github.com/Tigzy/malware-repo) offers a way to store malware. How can we integrate Yeti with it? * Create a feed to fetch malware sample information from Malware Repo...

Create New investigation / Add to existing from browse view

2

It would be nice to be able to create a new investigation from observables in the "browse" view (i.e. after a filter is set or a few lines are selected)

Attachments in emails

1

Add the possibility to attach an arbitrary file in the email modal.

Parse MAC addresses and add them as artefacts