issues
search
NVISOsecurity
/
ee-outliers
Open-source framework to detect outliers in Elasticsearch events
https://blog.nviso.eu
GNU General Public License v3.0
204
stars
34
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Unable to analyse use cases due to parsing error
#555
mike0240
closed
4 years ago
3
Update Dockerfile
#554
maximilienroberti
closed
4 years ago
0
Prevent create highlight_settings when model_settings=None
#553
maximilienroberti
closed
4 years ago
0
Issue model_settings=None in _get_highlight_settings() when remove_all_whitelisted_outliers() executed.
#552
maximilienroberti
closed
4 years ago
1
Set "@timestamp" as default timestamp field
#551
maximilienroberti
closed
4 years ago
1
Warning error when bulk is unable to write on the index
#550
maximilienroberti
closed
4 years ago
1
put whitelisting in examples use cases in the right format
#549
maximilienroberti
closed
4 years ago
0
Dev sudden appearance analyzer
#548
maximilienroberti
closed
4 years ago
0
Sudden Appearance Analyzer
#547
maximilienroberti
closed
4 years ago
3
Release 0.2.14
#546
maximilienroberti
closed
4 years ago
0
Prepare for release 0.2.14
#545
maximilienroberti
closed
4 years ago
0
dev tests
#544
daanraman
closed
4 years ago
0
Resolve word2vec issue concerning multiple targets capabilities
#543
maximilienroberti
closed
4 years ago
0
Reword "process again housekeeping" log message
#542
maximilienroberti
closed
4 years ago
0
Fallback for timestamp_field set to @timestamp
#541
maximilienroberti
closed
4 years ago
3
Make whitelist_regexp and whitelist_literals sections non-required
#540
maximilienroberti
closed
4 years ago
0
Do not require whitelist_regexp and whitelist_literals sections in config
#539
daanraman
closed
4 years ago
1
Merge development into dev-max
#538
maximilienroberti
closed
4 years ago
0
Fix issue due to wrong text index in word2vec analyzer
#537
maximilienroberti
closed
4 years ago
0
Merge development into dev-ml
#536
maximilienroberti
closed
4 years ago
0
Merge development into dev-max
#535
maximilienroberti
closed
4 years ago
0
Resolve issue due to highlight_match parameter
#534
maximilienroberti
closed
4 years ago
1
Remove derived fields in "_source" before saving outlier events.
#533
maximilienroberti
closed
4 years ago
5
Notifier TheHive
#532
V1D1AN
opened
4 years ago
1
Update doc about "Support for multiple use-cases in one conf file"
#531
maximilienroberti
closed
4 years ago
0
New implementation of Word2Vec
#530
maximilienroberti
closed
4 years ago
0
Dev ml
#529
maximilienroberti
closed
4 years ago
1
Review Dockerfile for security best practices
#528
michielmeersmans
closed
4 years ago
0
Development
#527
maximilienroberti
closed
4 years ago
0
Replace .raw by .keyword in documentation
#526
rdepril
closed
4 years ago
0
Development
#525
maximilienroberti
closed
4 years ago
0
Support for multiple use-cases in one config
#524
SpeedyFireCyclone
closed
4 years ago
5
Reword "process again housekeeping" in source code (bad English)
#523
daanraman
closed
4 years ago
2
Fallback for timestamp_field shoud be @timestamp
#522
smadessis
closed
4 years ago
0
Documentation updates
#521
maximilienroberti
closed
4 years ago
0
When use_derived_fields is activated, it creates fields outside of the outliers dictionary.
#520
maximilienroberti
closed
4 years ago
1
Use-case specific whitelist items are copied to ES event
#519
daanraman
closed
4 years ago
0
re-introduce support for multiple detection use cases in single configuration file
#518
daanraman
closed
4 years ago
0
Fix issues 412
#517
maximilienroberti
closed
4 years ago
2
Fix issues 459
#516
maximilienroberti
closed
4 years ago
2
Unfortunately frozen indices halt outlier detection
#515
rdepril
closed
4 years ago
3
Add parameter to use cases to not re-analyze previously tagged events per use case
#514
daanraman
opened
4 years ago
0
Refactor and minor fixes
#513
daanraman
closed
4 years ago
0
add use_derived_fields to the examples using the timestamp grok filter field
#512
daanraman
opened
4 years ago
0
Simple test
#511
maximilienroberti
closed
4 years ago
0
Create a new word2vec analyser for development
#510
maximilienroberti
closed
4 years ago
0
Refactor and minor fixes
#509
daanraman
closed
4 years ago
0
Bump badge to 0.2.13
#508
daanraman
closed
4 years ago
0
Version 0.2.13
#507
daanraman
closed
4 years ago
0
Refactor and minor fixes
#506
daanraman
closed
4 years ago
0
Previous
Next