unfetter-analytic
unfetter-analytic copied to clipboard
unfetter-discover
Main Build directory
Good day. I have an Ubuntu 18.04 server. My server connects to the internet via squid proxy (I suppose it may be the case). Unfortunately, I have no ability to...
I successfully deployed the docker images but I'm getting an error with the analyzer: ``` analytic-system | SyntaxError: invalid syntax analytic-system | beginning analysis analytic-system | File "/usr/share/unfetter/src/run_unfetter_analytic.py", line 246...
Hi, While executing docker-compose up, its failing at step 5/31 with error ERROR: Service 'analytic-system' failed to build: The command '/bin/sh -c apt-get -y install build-essential checkinstall' returned a non-zero...
In the file [run_unfetter_analytic.py](https://github.com/unfetter-analytic/unfetter/blob/master/analytic-system/src/run_unfetter_analytic.py) lines 244-246 are: ``` # This is removed since it is difficult to install # post_stix_store( "identity--4ac44385-691d-411a-bda8-027c61d68e99", analytic) ``` The first line should be uncommented or...
Need to be able to analyze logs that are new since last analysis, rather than just timeframe. If the system goes down, there is no way to determine which ones...
in addition to the CAR analytics, we want to poll the Unfetter Discover for the analytic scripts, and then run those analytics against Unfetter Analytic - [ ] The data...
https://www.linkedin.com/pulse/apache-spark-rdd-vs-dataframe-dataset-chandan-prakash/
Create five analytics, with corresponding attacker scripts to generate the data. - [x] Event Log Wipe - [x] regsvr32.exe usage - https://attack.mitre.org/wiki/Technique/T1117 - [ ] InstallUtil usage - https://github.com/redcanaryco/atomic-red-team/blob/master/Windows/Execution/InstallUtil.md
Need new dashboards that support Kibana 6. - [ ] Better dashboard importing - [ ] Remove the alias's to simplify. Need to rethink how indexes, types and aliases are...
The analytic system is still trying to push sightings to the Unfetter Discover system. Comment out the code until a new API is developed to support the latest Unfetter