issues
search
0xrawsec
/
whids
Open Source EDR for Windows
https://rawsec.lu
GNU Affero General Public License v3.0
1.14k
stars
138
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Add API endpoint to manage IOCs spread on endpoints for detection
#85
qjerome
closed
2 years ago
0
Ability to config default actions on different criticality thresholds
#84
qjerome
closed
2 years ago
0
Command to generate short report
#83
qjerome
closed
2 years ago
0
Action to produce short reports
#82
qjerome
closed
2 years ago
0
Change "Api-key" Authentication header
#81
qjerome
closed
2 years ago
0
Fix on the detections route
#80
digisqu4d
closed
3 years ago
0
Updates on openapi yaml file
#79
digisqu4d
closed
3 years ago
0
request feature - list closed report on a defined time period
#78
digisqu4d
closed
2 years ago
0
Missing query criticality parameter on get /endpoint call
#77
digisqu4d
closed
2 years ago
0
Add - API description on openAPI format 3.0.2
#76
digisqu4d
closed
3 years ago
0
List endpoints by group / status in /endpoints
#75
qjerome
closed
2 years ago
1
Implement API endpoint to update endpoints fields
#74
qjerome
closed
2 years ago
0
List of ever loaded modules in report
#73
qjerome
closed
2 years ago
0
Track list of loaded modules
#72
qjerome
closed
2 years ago
0
EdrData section in events
#71
qjerome
closed
2 years ago
0
API endpoint /endpoint/artifacts
#70
qjerome
closed
2 years ago
1
Implement API endpoint used to stream events
#69
qjerome
closed
2 years ago
0
showkey parameter in /endpoints
#68
qjerome
closed
2 years ago
0
API endpoint to modify the group field of an endpoint
#67
qjerome
closed
2 years ago
0
Implement /endpoint/{UUID}/report/archive
#66
qjerome
closed
2 years ago
0
Archive reports
#65
qjerome
closed
2 years ago
0
Change /alert to /detection
#64
qjerome
closed
2 years ago
1
Make manager's data persistent
#63
qjerome
closed
2 years ago
1
status field in /endpoints
#62
qjerome
closed
2 years ago
1
Integrate with ETW
#61
qjerome
closed
2 years ago
1
Add score in /endpoints
#60
qjerome
closed
2 years ago
1
Add bool recently seen in /endpoints
#59
qjerome
closed
2 years ago
1
Date last alert in /endpoints
#58
qjerome
closed
2 years ago
1
Add group member to manager API endpoint structure
#57
qjerome
closed
2 years ago
0
Skip parameter in /logs /alerts
#56
qjerome
closed
2 years ago
0
Limit parameter in /logs /alerts
#55
qjerome
closed
2 years ago
0
Filter parameter in /rules API endpoint
#54
qjerome
closed
2 years ago
1
Implement drivers command
#53
qjerome
closed
2 years ago
0
Implement processes command
#52
qjerome
closed
2 years ago
0
Implement report command
#51
qjerome
closed
2 years ago
0
Implement find command
#50
qjerome
closed
2 years ago
0
Implement walk command
#49
qjerome
closed
2 years ago
0
Implement stat command
#48
qjerome
closed
2 years ago
0
Implement terminate command
#47
qjerome
closed
2 years ago
0
Implement osquery command
#46
qjerome
closed
2 years ago
0
Implement hash command
#45
qjerome
closed
2 years ago
0
Directory listing command
#44
qjerome
closed
2 years ago
0
Make host containment persistent
#43
qjerome
opened
3 years ago
0
Add Admin API to list and download the artifacts dumped
#42
qjerome
closed
2 years ago
0
Add Admin API endpoint to generate an IR report
#41
qjerome
closed
2 years ago
1
Enrich event with Gene process scoring
#40
qjerome
closed
2 years ago
0
HowTo connect an endpoint to manager
#39
qjerome
opened
3 years ago
0
Dump process tree
#38
qjerome
closed
2 years ago
0
Reload rules on change
#37
qjerome
opened
3 years ago
0
Generate IR ready reports on detections
#36
qjerome
closed
2 years ago
0
Previous
Next