opensearch-project security-analytics issues

opensearch-project / security-analytics

Security Analytics enables users for detecting security threats on their security event log data. It will also allow them to modify/tailor the pre-packaged solution.

Apache License 2.0

64 stars 69 forks source link

issues

Newest

Newest Most commented Recently updated Oldest Least commented Least recently updated

Adjusted IOC type enums.

#1116 AWSHurneyt closed 1 hour ago
0
Add an action request validator for source config

#1115 jowg-amazon closed 2 days ago
0
Refactored calls to S3. Added support for consuming security analytics commons directly from project rootDir.

#1114 AWSHurneyt closed 2 days ago
0
generates too much findings(findings count = rules count) for one trigerred rule when exists multiple alerts(each for specific rule) in detector config

#1113 humster88 opened 3 days ago
0
2.13 threat intel

#1112 eirsep closed 3 days ago
0
fix update threat intel monitor to avoid monitor exists check before operation

#1111 eirsep closed 3 days ago
0
Create the iocs and check the validation before indexing source config

#1110 jowg-amazon closed 3 days ago
0
list iocs api. fix

#1109 eirsep closed 3 days ago
0
Fix validation for source types

#1108 jowg-amazon closed 3 days ago
0
Fix API action names

#1107 jowg-amazon closed 3 days ago
0
add guard rail for only one threat intel monitor to exist

#1106 eirsep closed 3 days ago
0
fix search monitor to return dto and not model

#1105 eirsep closed 3 days ago
0
adds threat intel alert status update API

#1104 eirsep closed 3 days ago
0
[BUG] Impossible to create/update detector when one data source index is closed

#1103 lsoumille opened 4 days ago
0
[BUG] Security Analytics Detector creation overwrites Data-Stream template Index-Patterns in OpenSearch

#1102 rafaelma opened 4 days ago
0
[BUG] Security Analytics Findings page breaks after deletion of active Custom Detection Rule in OpenSearch

#1101 rafaelma opened 4 days ago
0
List Ioc Api params change

#1100 eirsep closed 4 days ago
0
added correlationAlert integ tests

#1099 riysaxen-amzn opened 4 days ago
1
Threat Intel Analytics

#1098 eirsep opened 4 days ago
3
Upload iocs through source config

#1097 jowg-amazon closed 3 days ago
2
[AUTO] Incremented version to 2.15.1.

#1096 opensearch-trigger-bot[bot] opened 5 days ago
0
Fix user mapping in source config

#1095 jowg-amazon closed 6 days ago
0
Logic to delete old iocs and add ioc index rollover

#1094 jowg-amazon closed 5 days ago
0
add search ioc findings api

#1093 sbcd90 closed 5 days ago
0
Threat intel monitor implementation

#1092 eirsep closed 4 days ago
0
Implemented API to test s3 connection.

#1091 AWSHurneyt closed 1 week ago
0
Fix mapping and add job parser todo

#1090 jowg-amazon closed 1 week ago
1
Change search source config request

#1089 jowg-amazon closed 1 week ago
1
Added "feedName" to IOC model.

#1088 AWSHurneyt closed 1 week ago
0
Fix ioc store config mappings

#1087 jowg-amazon closed 1 week ago
0
Fix compile error

#1086 jowg-amazon closed 1 week ago
0
ListIOCs API support lists of feedIds, and types.

#1085 AWSHurneyt closed 1 week ago
0
[Backport 2.15] pass integ tests

#1084 opensearch-trigger-bot[bot] closed 1 week ago
1
[Backport 2.x] pass integ tests

#1083 opensearch-trigger-bot[bot] closed 1 week ago
1
pass integ tests

#1082 sbcd90 closed 1 week ago
0
[2.15] pass integ tests

#1081 sbcd90 closed 1 week ago
1
FetchIOCService update IocStoreConfig with feedConfigId and IOC index names

#1080 AWSHurneyt closed 1 week ago
0
[BUG] Date shown for events in alerts and findings is not in the user's local format

#1079 tomuk5 opened 2 weeks ago
0
Refresh API and adds Update TIF Source Config logic

#1078 jowg-amazon closed 1 week ago
2
Assets for IOC fetch and index service.

#1077 AWSHurneyt closed 1 week ago
0
[RELEASE] Release version 2.16.0

#1076 opensearch-trigger-bot[bot] opened 2 weeks ago
1
Search Feeds API and Store/Source Model

#1075 jowg-amazon closed 2 weeks ago
0
[2.15] Changes to add start_time and end_time filters to GetAlertsRequest

#1074 sbcd90 closed 2 weeks ago
0
Implement Threat Intel Monitor Input and Triggers

#1073 eirsep closed 2 weeks ago
0
[Backport 2.15] Updated the 2.15 release notes

#1072 opensearch-trigger-bot[bot] closed 2 weeks ago
0
[Backport 2.x] Updated the 2.15 release notes

#1071 opensearch-trigger-bot[bot] closed 2 weeks ago
0
Updated the 2.15 release notes

#1070 riysaxen-amzn closed 2 weeks ago
0
[Backport 2.x] Alerts in Correlations Part 2

#1069 opensearch-trigger-bot[bot] closed 2 weeks ago
0
Alerts in correlations [Experminental] (#1040)

#1068 riysaxen-amzn closed 2 weeks ago
1
[Backport 2.x] Alerts in correlations [Experminental]

#1067 opensearch-trigger-bot[bot] opened 2 weeks ago
0