mozilla
/
MozDef
зеркало из https://github.com/mozilla/MozDef.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
5 345 коммитов 4 Ветки 53 Теги 68 MiB
Граф коммитов

231 Коммитов

Автор SHA1 Сообщение Дата
Brandon Myers 1bbf4ef129
Remove facebook threatexchange support 2018-10-04 12:43:10 -04:00
Brandon Myers 1fd1f982f1
Remove banhammer rest plugin 2018-10-04 12:19:58 -04:00
Brandon Myers 879f6f6e6e
Remove unrelated comments to rest plugins 2018-10-04 12:18:15 -04:00
Brandon Myers 8ca3ac5578
Merge pull request #719 from mozilla/dns_blocklist 
Add FQDN/DNS block page
 2018-07-23 13:42:22 -05:00
Jeff Bryner 19b24f3e64 correct comment 2018-07-17 14:40:13 -07:00
Jeff Bryner 14e9456a3a remove unused import 2018-07-17 14:39:51 -07:00
Jeff Bryner 48b71c908c
fix the cursor 
update to match current pymongo cursor handling
 2018-07-10 10:37:00 -07:00
Jeff Bryner c0a1267f02 return meaningful errors to the UI 2018-07-09 16:36:44 -07:00
Jeff Bryner a10f512f0a fix up the fqdn checker 2018-07-09 14:46:32 -07:00
Jeff Bryner 10214a1acd s/ip/fqdn 2018-07-09 13:05:29 -07:00
Jeff Bryner 89f5aa08d9 add endpoint 2018-07-09 13:04:53 -07:00
Jonathan Claudius 99c5c5ecc1 Add FQDN blocklist plugins 2018-07-05 16:26:45 -04:00
Brandon Myers 1067ad01b2
Self describe api type in status route 2018-06-14 16:25:31 -05:00
Jeff Bryner 726a1d09fd fixup silly mistakes 2018-05-29 16:43:14 -07:00
Jeff Bryner 132fa70ad0 rough in the status page requests call 2018-05-29 15:58:51 -07:00
Jeff Bryner 9971235a8f add the statuspage options 2018-05-29 15:39:15 -07:00
Jeff Bryner 0fa9979e7f import requests 2018-05-29 15:22:23 -07:00
Jeff Bryner 7538144b40 ipdecorate ipblocklist 2018-05-25 14:38:20 -07:00
Jeff Bryner a3089014b7 update to fix review items. 2018-05-22 11:55:36 -07:00
Jeff Bryner c09eb4a00d changes to allow IP lookup functions in all pages containing an IPv4 2018-05-20 20:51:54 -07:00
Jeff Bryner 760ef6f94f sync rest with new duration options 2018-05-17 16:15:22 -07:00
Jeff Bryner f65ccfd032 correct case of field as sent by the form. 2018-05-15 08:51:32 -07:00
Jeff Bryner 22b5dc0069 rest listen on all interfaces 2018-05-15 08:37:25 -07:00
Jeff Bryner a403ff5780 update logic in checking ip data 2018-05-15 08:36:27 -07:00
Jeff Bryner 4e30925327 sample ipblocklist.conf file 2018-05-15 08:35:48 -07:00
Jeff Bryner 621e4dbcff initial ipblocklist plugin 2018-05-13 20:38:42 -07:00
Brandon Myers d4514e943b
Update ini files to use new virtualenv path 2018-04-20 13:23:36 -05:00
Brandon Myers c60c7b8c36
Remove extra line after copywrite date 2018-01-04 17:15:35 -06:00
Yash Mehrotra 90d7e3b6d3
Remove free-form 'Contributor:' text from code. Fixes #407 2017-12-23 02:14:53 +05:30
Phrozyn de775ce574
Kibana Dashboard URL fix 2017-11-12 17:52:22 -06:00
Brandon Myers 74fa6d832a
Update config key for listen host in rest 2017-10-25 18:53:18 -05:00
Brandon Myers baf24c77a5
Add custom user agent to rest api requests 2017-10-13 14:52:05 -05:00
A Smith c252f9f8ff Merge pull request #488 from mozilla/add_config_option_host 
Add config option for rest and loginput for listening host address
 2017-10-12 16:49:15 -05:00
Brandon Myers e4377aa409
Rename loginput and rest host config to listen_host 2017-10-12 11:27:22 -05:00
Phrozyn 1fd7335355
Naming Convention and Logging Changes. 2017-10-04 15:59:49 -05:00
Brandon Myers cf9a2712e6
Add config option for rest and loginput for listening host address 2017-09-28 15:07:22 -05:00
Brandon Myers b6bd34fbc0
Revert "Remove cymon rest plugin" 
This reverts commit cae96f73b1.
 2017-09-21 16:02:33 -05:00
Brandon Myers 28535ddf95
Switch deprecated ipwhois method in rest api 2017-09-11 14:38:27 -05:00
Brandon Myers 72bd8f47e2
Change default kibanaurl in rest conf 2017-08-17 16:08:35 -05:00
Brandon Myers b3334c6c39
Change logging from print to logger in rest 2017-08-07 17:14:18 -05:00
Brandon Myers 029ce3cfb9
Fixup rest api aggregation tests 2017-08-07 16:35:36 -05:00
Brandon Myers 58081ac415 Merge branch 'master' into add_docker_compose 2017-08-04 15:09:26 -05:00
Brandon Myers 2721bdc2cb
Add ability for docker-compose to start containers 2017-08-04 14:30:11 -05:00
Brandon Myers cdb6be3f2c
Remove fxa rest plugin 2017-07-17 15:39:11 -05:00
Brandon Myers f7ad9e9007
Remove unnecessary fields in loginput and rest api ini 2017-07-12 19:04:41 -05:00
Brandon Myers bf465b0480
Remove trailing slash in kibana url 2017-07-05 17:10:18 -05:00
Brandon Myers a695692382
Correct kibana dashboard url 2017-07-05 17:08:21 -05:00
Brandon Myers 11ac4dd835
Update files that were diff between two repos 2017-06-15 15:14:57 -05:00
Brandon Myers cae96f73b1
Remove cymon rest plugin 2017-06-15 15:07:44 -05:00
Brandon Myers 4d9813424c
Remove test rest plugins 2017-06-15 15:07:44 -05:00
Phrozyn ab3714d22a
Adding log drain back into uwsgi ini files. 2017-06-15 15:07:28 -05:00
Phrozyn af2bf96b23
Moving uwsgi to syslog, moving supervisord logs to /var/log/mozdef with rotation at 50MB. 2017-06-15 15:07:22 -05:00
Phrozyn 5d6a8652e4
point restapi to syslog 2017-06-15 15:07:22 -05:00
Brandon Myers cdb49ba648
Bump pytx version and update compromisedCreds cron 2017-06-15 15:06:32 -05:00
Phrozyn fc4c8c0331
Update url in index.py for rest interface to kibana dashboards. 2017-06-15 15:06:18 -05:00
Brandon Myers ffc564a54f
Remove CIF from source since no longer used 
Signed-off-by: Brandon Myers <bmyers@mozilla.com>
 2017-06-15 15:05:57 -05:00
Brandon Myers 50dd67fa53
Move ip parsing around in banhammer so each message rechecks 
Signed-off-by: Brandon Myers <bmyers@mozilla.com>
 2017-06-15 15:05:57 -05:00
Brandon Myers 268a1c4339
Fixup output for banhammer 
Signed-off-by: Brandon Myers <bmyers@mozilla.com>
 2017-06-15 15:05:57 -05:00
Brandon Myers 639a8d18df
Update banhammer config variable 
Signed-off-by: Brandon Myers <bmyers@mozilla.com>
 2017-06-15 15:05:57 -05:00
Brandon Myers 511add00e8
Modify createIPBlockList and rest banhammer plugin to use dynamic ip list 
Signed-off-by: Brandon Myers <bmyers@mozilla.com>
 2017-06-15 15:05:56 -05:00
Brandon Myers f87c94a088
Unencrypt config files 
Signed-off-by: Brandon Myers <bmyers@mozilla.com>
 2017-06-15 15:05:55 -05:00
Brandon Myers e47f0d1b0c
Generalize configs for rest plugins directory 
Signed-off-by: Brandon Myers <bmyers@mozilla.com>
 2017-06-15 15:05:41 -05:00
Brandon Myers f8661e1b7d
Generalize configs for rest directory 
Signed-off-by: Brandon Myers <bmyers@mozilla.com>
 2017-06-15 15:05:41 -05:00
Phrozyn 0506205532
Updating kibana dashboard url to be https and port 9443 2017-06-15 15:05:00 -05:00
Phrozyn b86413db27
Updated pid path for all uwsgi instances to run from /var/run/ 2017-06-15 15:04:53 -05:00
Phrozyn 3e02f27d14
modified esservers to new cluster. 2017-06-15 15:04:45 -05:00
Brandon Myers ef6e483c7e
First import of existing files from prod 
Signed-off-by: Brandon Myers <bmyers@mozilla.com>
 2017-06-15 15:03:44 -05:00
Brandon Myers 50a7cb772a
Modify .ini scripts to use /opt dir 
Signed-off-by: Brandon Myers <bmyers@mozilla.com>
 2017-06-15 15:03:40 -05:00
Brandon Myers 81a07bc2d5
Rename mozdefqa1 to localhost in configs 
Signed-off-by: Brandon Myers <bmyers@mozilla.com>
 2017-06-15 15:03:40 -05:00
Brandon Myers e43fe3c323
Replace kibana-int with .kibana as index 
Signed-off-by: Brandon Myers <bmyers@mozilla.com>
 2017-06-15 15:03:40 -05:00
Brandon Myers 6caaad320d
Remove duplicate definitions of toUTC 
Signed-off-by: Brandon Myers <bmyers@mozilla.com>
 2017-06-15 15:02:46 -05:00
Brandon Myers ff4260f879
Configure rest api to handle no kibana index 
Signed-off-by: Brandon Myers <bmyers@mozilla.com>
 2017-06-15 15:02:10 -05:00
Brandon Myers 7c9cad5352
Remove pyes exception handling from rest 
Signed-off-by: Brandon Myers <bmyers@mozilla.com>
 2017-06-15 15:01:24 -05:00
Brandon Myers 7b14fcef69
Update rest api with tests 
Signed-off-by: Brandon Myers <bmyers@mozilla.com>
 2017-06-15 15:01:24 -05:00
Brandon Myers 5631e494de
Add unit tests for some rest routes 
Signed-off-by: Brandon Myers <bmyers@mozilla.com>
 2017-06-15 15:01:23 -05:00
Phrozyn edcc26f84e
Modifying thread/Process values to be in alignment with mozdefqa1's resources. Disabled unused workers. 2017-06-15 15:00:49 -05:00
Brandon Myers b463c3551c
Change rest directory to US/Pacific 
Signed-off-by: Brandon Myers <bmyers@mozilla.com>
 2017-06-15 15:00:46 -05:00
Phrozyn 5c990d90ef
Unencrypting ini files. 2017-06-15 15:00:45 -05:00
Brandon Myers 1d8c59b93f
Setup codebase for merge of two repos 2017-06-15 14:56:47 -05:00
Jeff Bryner 3519a84873 update ldap search criteria to match case 2015-12-30 09:37:57 -08:00
Jeff Bryner af4499faa4 Merge branch 'master' of github.com:jeffbryner/MozDef 
pull master
 2015-12-29 11:53:20 -08:00
Jeff Bryner d302e9ac7a update cymon.io plugin, closes #322 2015-12-29 11:53:04 -08:00
Michal Purzynski 31ecc42aae New MozDef plugin - VPC blackholing, using route tables and the ENI that's not attached anywhere. 2015-12-29 17:25:45 +01:00
Yash Mehrotra 655e81d7f7 Handling mongodb errors 2015-10-22 14:34:30 +05:30
Yash Mehrotra 6e6a03bd83 Added name to contributors 2015-10-22 05:36:55 +05:30
Yash Mehrotra 700660b7fe Cleanup code and added help for incident creation 2015-10-22 03:18:06 +05:30
Yash Mehrotra 6467658710 Integrated incident creation with mongo. Fixes #268 2015-10-22 02:47:23 +05:30
Yash Mehrotra 657296c4b9 Added Email validation for incident creation 2015-10-22 02:37:29 +05:30
Yash Mehrotra 01e30a1a9d Added datefields and their validations 2015-10-22 02:34:31 +05:30
Yash Mehrotra 74b74b37db Added basic interface to read JSON data 2015-10-22 02:31:38 +05:30
Jeff Bryner 700c1bec22 update cymon api to new version, closes #284 2015-07-27 11:27:08 -07:00
Jeff Bryner aac971c14c drop CIDR mask since threat exchange cannot accept it 2015-06-09 12:24:00 -07:00
Jeff Bryner 647a4dfc23 add facebook threatexchange support, closes #260 2015-06-09 08:12:29 -07:00
Jeff Bryner 64327d14dc update uwsgi config to not allocate threads, closes #273 2015-05-14 15:49:31 -07:00
Jeff Bryner 963a85fda0 add plugin for the cymon.io api, closes #270 2015-05-05 12:50:51 -07:00
Jeff Bryner 2db9b3a3db myo support closes #258, support for ipintel endpoint starting with cymon.io closes #270 2015-05-05 12:48:19 -07:00
Jeff Bryner 64eb817d4b add fqdn resolution, closes #248 2015-03-03 12:05:07 -08:00
Jeff Bryner 77ab7165aa correct the nested, nested escaped json format 2015-02-12 14:39:52 -08:00
Jeff Bryner 6757535a7b add plugin to send message to AWS SQS queue, closes #196 2015-02-10 14:28:50 -08:00
Jeff Bryner 5148779ca2 remove test2 2015-02-10 13:19:58 -08:00
Jeff Bryner 50406d156f move sample plugin to test.py 2015-02-10 13:19:40 -08:00
Jeff Bryner a1bf4e9cd8 add banhammer plugin for blocking IPs using https://github.com/mozilla/banhammer 2015-02-10 12:59:40 -08:00
Jeff Bryner 4db651006b add another example/test rest plugin 2015-02-10 12:58:21 -08:00
Jeff Bryner c73d820a65 add plugin system to the rest api, alter blockIP to use plugins 2015-02-10 12:56:47 -08:00
Jeff Bryner f4336451a1 add plugin list to meteor session variable on startup for use in dialogs 2015-02-02 17:04:56 -08:00
Jeff Bryner 76a895ee72 add sample plugin and hooks for all endpoints 2015-01-28 14:57:17 -08:00
Jeff Bryner a5c259940f add description, name for use in UI 2015-01-28 14:00:07 -08:00
Jeff Bryner dfdb7a03a2 add initial plug-in support to the rest api, allowing registration and querying of plugins 2015-01-28 13:37:56 -08:00
Jeff Bryner e2d7cb049d add veris visualization for incident stats, closes #64 2014-10-14 17:10:40 -07:00
Jeff Bryner c58c725788 fix datetimezone default 2014-08-06 08:46:11 -07:00
Jeff Bryner 850303b249 UTC timezone by default, revised stopwords for ldap login example 2014-08-05 21:57:21 -07:00
Jeff Bryner 9ceb1a65d1 fix login counts speed using rest, closes #152 2014-08-04 11:37:07 -07:00
Jeff Bryner 548f7c81b0 add CIF interface, better error handling for rest calls 2014-07-21 14:13:54 -07:00
Jeff Bryner cadcc5b153 add dshield IP lookup, zindex the ip menus 2014-07-18 13:55:17 -07:00
Jeff Bryner def4b598ea rename banhammer to blockIP, closes 155 2014-07-16 16:22:51 -07:00
Jeff Bryner 11677e05bb re-init mysql connection 2014-07-15 09:07:35 -07:00
Jeff Bryner 3eef06f1f4 add whois endpoint to the rest api 2014-07-09 17:26:41 -07:00
Anthony Verez cdbe29d030 averez-banhammer-fixes: fix banhammer bugs 2014-07-01 15:40:58 -07:00
Jeff Bryner 10d8de6e5c boolean option for banhammer 2014-07-01 14:22:11 -07:00
Anthony Verez 598dd80969 averez-banhammer: allow to enable/disable banhammer in rest api 2014-06-27 09:33:57 -07:00
Anthony Verez 51b58a13d4 averez-banhammer: rest api for banhammer 2014-06-26 23:54:27 -07:00
Anthony Verez 37f502e914 averez-27-dashboards-listing: use config file for settings for kibana urls 2014-04-17 11:53:09 -07:00
Anthony Verez d13e12e184 averez-27-dashboards-listing: Kibana dashboards in REST api 2014-04-17 11:23:31 -07:00
Anthony Verez dcde5cdfda averez-22-license: Fix license stuff (Closes #22) 2014-04-16 11:40:15 -07:00
Jeff Bryner 57d40fc9d4 typo, limit to current index 2014-04-13 16:17:37 -07:00
Jeff Bryner dc5ae816d5 more sane options 2014-03-24 15:07:12 -07:00
Jeff Bryner ca507537c0 add -c conf file option 2014-03-21 14:26:09 -07:00
Jeff Bryner a617876da6 add option for multiple ES servers 2014-03-20 12:37:19 -07:00
averez aab8575864 fix syntax error bug on option parser in rest/index.py 2014-03-05 09:36:05 -08:00
Guillaume Destuynder d2be992a76 Updated license file to conform with MPL 2014-02-25 09:55:02 -08:00
Jeff Bryner b37f1f2c6e rest interface for meteor UI 2014-02-17 23:55:10 -08:00