-
### MISP-STIX usage
Standalone
### Expected behavior
Parsing of an event with a sighting. Almost all events with sightings are properly parsed, except one event.
### Actual behavior
When parsing …
-
### Expected behavior
When using a read-only auth key and reaching an endpoint that does NOT have write privileges such as `/sightings/restSearch/` or any contextual URL on this, the expected behavio…
-
### Expected behavior
When `CustomAuth` is enabled some WebUI features trigger CSRF disallowing that transaction. This was resolved in #8991 specifically for the `/events/saveFreeText` use case. is…
-
The setting log_duplicates_as_sightings=false is not working correctly.
I configured this setting with false but a get sightings added to MISP.
-
## Description
MISP connector (version 4.2.4) sometimes fails to recover events. From the docker logs I see the following error: "Unknown error: the response is not in JSON". On we
## Environment…
-
python3 misp_import.py -f -nb -d -i
```
[2023-04-05 19:21:01,715] INFO misp_tools MISP Import for CrowdStrike Threat Intelligence v0.6.8
[2023-04-05 19:21:01,715] INFO config CHECK …
-
### Breaking Issues
I should highlight that these are breaking issues:
```
Adversary OCTANE PANDA missing field first_activity_date.
The value of the attribute you're trying to add is an empty…
-
```
python3 misp_import.py -f -nb -d --fullmonty
[2023-03-31 19:23:50,002] INFO misp_tools MISP Import for CrowdStrike Threat Intelligence v0.6.8
[2023-03-31 19:23:50,002] INFO config C…
-
Crowdstrike Artifacts (i.e., Reports, Actors) are not deleted after performing Obliterate and Clean functions functions.
- Use of -f has no impact on outcomes
- Have tried bulk --obliterate and …
-
### TypeError: 'NoneType' object is not subscriptable
line 334, in add_actor_detail
`$ python3 misp_import.py --all -d`
```
[2023-02-12 19:53:28,194] INFO misp_tools
[2023-02-12 19:…