activecm rita-legacy issues

activecm / rita-legacy

Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

GNU General Public License v3.0

2.51k stars 362 forks source link

issues

Newest

Newest Most commented Recently updated Oldest Least commented Least recently updated

systemctl status in install.sh appears to be missing mongodb parameter

#831 william-stearns opened 3 months ago
1
Update Readme documentation

#830 dspruell opened 5 months ago
1
Supported commands outdated in README

#829 dspruell opened 5 months ago
1
Error while running the Docker container

#828 a-ml closed 5 months ago
5
Update Mongo Version

#827 BeanBagKing opened 6 months ago
0
Current default column names for show-beacons

#826 roboticsea opened 6 months ago
0
Open connections not working

#825 cbrenton-acm opened 7 months ago
0
Updated docker documentation and db container name to avoid confusion with db volume

#823 sko9370 opened 8 months ago
1
Install RITA on SecOnion 2.4

#822 MPI-CSL-DH opened 9 months ago
2
Rita Install Script Fail

#821 vegasjoe closed 11 months ago
2
Disable extract-certs-pem.zeek

#820 william-stearns closed 11 months ago
0
Can someone explain how to find what is the EXACT version of Rita ?

#819 patzak88 closed 1 year ago
1
chore: import packages only once

#818 testwill closed 10 months ago
0
Question about mongo db upgrade for usage of RITA on ubuntu 22.04 LTS

#817 security-companion opened 1 year ago
2
335 add ipv6 support for single ips

#816 kirkhauck closed 1 year ago
2
730 update docker resources

#815 kirkhauck closed 1 year ago
0
Adjust show-dns-fqdn-ips to prompt user to supply database and FQDN i…

#814 kirkhauck closed 1 year ago
0
Combine argument error handling in show-dns-fqdn-ips to handle less than 2 args

#813 kirkhauck closed 1 year ago
1
811 show ip dns fqdns

#812 kirkhauck closed 1 year ago
0
Add command to show which domain names a given IP address was resolved from in the dataset

#811 Zalgo2462 closed 1 year ago
0
UserAgents html-report different from show-useragents with JA3 active

#810 0nnyx opened 1 year ago
2
808 show dns fqdn ips

#809 kirkhauck closed 1 year ago
2
Add command to show which IP addresses a given domain name resolved to in the dataset

#808 Zalgo2462 closed 1 year ago
0
Bug using docker-compose service linking

#807 Korving-F opened 1 year ago
1
Add step to manual install instrucions to run chmod 777

#806 kirkhauck closed 1 year ago
0
Manual installation permissions bug

#805 kirkhauck closed 1 year ago
0
[!] Your operating system is unsupported.

#804 nightmare-wolf opened 1 year ago
1
rita returns "error: -13" when the next program in a pipeline closes and it can't write a line of output.

#803 william-stearns opened 1 year ago
0
Making a zeek log file to input to RITA

#802 fearanp opened 1 year ago
0
Only maintain one cid's worth of max scores in the host collection

#801 Zalgo2462 closed 1 year ago
0
`host` collection max rollup scores may be old and incorrect

#800 Zalgo2462 closed 1 year ago
0
Bump version

#799 caffeinatedpixel closed 1 year ago
0
Disable SNI connection analysis if SNI beacon analysis is disabled

#798 Zalgo2462 closed 1 year ago
0
Don't filter internal -> internal DNS traffic

#797 Zalgo2462 closed 1 year ago
0
'Failed to connect to database: no reachable servers' using official docker image

#796 HeroS3c-new opened 1 year ago
3
Question About RITA Config Logs

#795 flaeckli opened 1 year ago
5
Update to bimodal portion of the histogram score

#794 lisaSW closed 1 year ago
0
Duration Scoring Update

#793 lisaSW closed 1 year ago
0
Removal of connection count portion of beacon scoring and adjustment of skew

#792 lisaSW closed 1 year ago
1
Parsed log field validation

#791 lisaSW closed 1 year ago
0
Change show-long-connections to sort by Total Duration

#790 Zalgo2462 closed 1 year ago
1
Question about FQDN going away

#789 kyleEeeEEeeee closed 1 year ago
5
Fix SSL and DNS log filtering

#788 Zalgo2462 closed 1 year ago
0
Rita crashes on import when it encounters a partial IPv4 address

#787 william-stearns closed 1 year ago
2
Provide the amount of time to complete each step in importing if LogLevel turned up to 3

#786 william-stearns opened 1 year ago
0
Improve useragent aggregation runtime for datasets with many useragents

#785 Zalgo2462 closed 1 year ago
2
Bump golang.org/x/sys from 0.0.0-20190422165155-953cdadca894 to 0.1.0

#784 dependabot[bot] opened 1 year ago
0
Bump golang.org/x/crypto from 0.0.0-20191011191535-87dc89f01550 to 0.1.0

#783 dependabot[bot] opened 1 year ago
0
Bump golang.org/x/net from 0.0.0-20200226121028-0de0cce0169b to 0.7.0

#782 dependabot[bot] opened 1 year ago
0
Bump golang.org/x/text from 0.3.0 to 0.3.8

#781 dependabot[bot] opened 1 year ago
0