github CybercentreCanada/assemblyline v4.6.0.stable9
4.6.0.9
on GitHub

latest releases: v4.6.1.dev233, v4.6.0.stable20, v4.6.1.dev232...
3 months ago

What's Changed?

  • Better API exception handling from users that doesn't exist in the system when it comes to quota management 🛠️
  • Better support for looking up long URLs in VirusTotal from Assemblyline 🔍
    • This allows you to perform more direct lookups using the /gui/{feed}/{id} instead of /gui/search/{ioc} depending on your configuration
  • Fixed an issue in the "Search All" interface where navigating to the "Results" tab and clicking on any result would incorrectly open both the File Detail and the Signature Detail pages, causing a fetching error on the latter. 🐛🔍
  • logging.log_to_file configuration now works as expected when enabled 🐛🗃️
  • We can now identify PGP symmetric encrypted files 🕵️
  • DNS queries that resolve to domains are now captured by the ontology 🛠️
  • Fixes to the CLI's reindex operations to eliminate the possibility of data loss due to mapping conflicts 🐛🛠️🔍
    • Added support for Wildcard for fields with MetadataValue type in the ODM (ie. metadata.* fields in the Submission index)

Added

  • Add resolved_domains to NetworkDNS ontology model (@cccs-mog )
  • Add identification of PGP symmetric encrypted files (@gdesmar )
  • Add support for different encoding formats when using ExternalLinks (supports url for URL-encoding and sha256 for hashing) AL-3817 (@cccs-rs, @cccs-nr )
    • Example: Suggested changes for the VirusTotal external source

Bugfixes

  • Updated get_remaining_quotas() to return a 404 Not Found error when the requested user does not exist in the system, ensuring a more accurate response instead of causing an internal server error. AL-3773 (@cccs-nr)
  • Added the allowHash prop to the ResultsTable to allow the propagation of the location.hash when clicking on a row. Discord (@cccs-nr)
  • Resolve type error when log_to_file is enabled Discord (@Hanochar)
  • Fixes to index mappings (@cccs-douglass , @cccs-shellyw )
  • Fix API documentation (@jpl1337)
  • Fixes to "Selected Services" when displayed that include an excluded service (@cccs-nr, @gdesmar )
Check out latest releases or
releases around CybercentreCanada/assemblyline v4.6.0.stable9

Don't miss a new assemblyline release

NewReleases is sending notifications on new releases.

Get notifications