github OpenCTI-Platform/opencti 5.8.0
Version 5.8.0
on GitHub

latest releases: 6.3.11, 6.3.10, 6.3.9...
17 months ago

Dear community, we are so proud to announce that OpenCTI 5.8.0 is out 🥳! This release is full of major enhancements in the product and fixes all known bugs in the core platform. Here is the list of the features implemented 💡:

  • Global activity log enhancement in the platform to monitor user behaviours such as read, export, etc 🔭.
  • Implementation of tasks in cases as well as case templating in the settings ✔️.
  • Implement of malware analysis STIX entity in the platform 🔬.
  • New layer of ACL for all workspaces (investigations & dashboards) to choose private, shared with a group or with all users 🔒.
  • Default values by type of entities for all attributes (for instance, defining a default marking definition if not set) 🪄.
  • Search enhancement to make the search more accurate and straightforward 🔍.
  • Text highlighting and mapping system in all containers (reports, groupings, etc.) in knowledge => content mapping view 🖺.
  • Allow to export any chart from dashboards in PNG, SVG or CSV files :frame_with_picture:.
  • Quick creation of containers (reports, cases, etc.) from any list in the platform using checkboxes 🌟.
  • Management of triggers and digests of a user in the administration 📧.
  • Lasso selection in all graphs and investigation systems 🎈.
  • Correlation speed enhancement in the Entity => Analysis => Graph view 🔥.
  • Be able to associate file (upload) in all creation forms 🗄️.
  • Support of RabbitMQ self-signed TLS certificate 🔑.

Also, 26 bugs have been fixed and multiple new connectors have been created, including ThreatFox, Recorded Future enrichment and QRadar integration 💪. The OpenCTI Ecosystem market place have been updated and enhanced 🚀.

Enhancements:

  • #3534 Support direct associated file with external reference option
  • #3503 Added support for Consent Message on Login Page
  • #3486 Resolve Note's name in the Timeline view of a Report & Cases
  • #3478 Modifying observables overview tab to display Malware Analyses
  • #3451 Migration from jest to vitest in test runner
  • #3401 Mapping system for content tagging
  • #3382 Improve usage of Tasks
  • #3359 In user overview, display roles and groups in alphabetical order
  • #3355 Enhance display of security generic settings
  • #3261 Refacto: Remove Duplicates Mutations from RFI & RFT
  • #3259 Filters adjustment in data / reports / indicators
  • #3211 Add default values for mandatory fields to SDO, relationships and sightings
  • #3210 Extends mandatory attributes to relationships and sightings
  • #3186 Allow to export any dashboard widget / APEX chart in PNG / SVG / CSV
  • #3164 Add an icon in mass operation toolbar to quickly add to container (and create container on the fly)
  • #3160 In Settings -> overview of user , display the user triggers & digests
  • #3151 Add a new capability to restrict the access to users list (assignees)
  • #3109 Implement lasso selection in graph in addition to rectangle selection
  • #3020 List of available streams should be limited for the current user
  • #2948 Extends enforce reference to relationships and sightings
  • #2846 Implement tasks and tasks template in cases
  • #2561 Be able to associate files at creation in all entities
  • #2509 Track user interactions and improve audit logs capabilities
  • #2418 Workspaces seggregation by user and/or group
  • #2416 In all graph view, be able to quickly remove all filters and display everything
  • #2308 [api] Support self-signed certificates for RabbitMQ
  • #2299 Allow default TLP to be set
  • #1565 Implement the STIX malware-analysis object

Bug Fixes:

  • #3546 Missing relationships between Organization and Administrative Area (located-at)
  • #3542 OpenCTI 5.8.0 crash when adding entity to container
  • #3529 Export Malware Analyses as a txt
  • #3521 Incident Response workbench fails to build relationship.
  • #3519 Error occured when click on correlation view for all entities
  • #3518 Multiple Notifications for a single triggered event
  • #3515 False duplicates found for cases + some design for cases
  • #3512 Subscriptions Manager will rapid fire Digest Email
  • #3510 Improper tool tip on "Enforce two-factor authentication" - Shows Retention Policy message
  • #3507 User with only the 'Access knowledge' capability can't log in
  • #3495 [Dashboards] Dynamic Filters on SRO Graph Queries Seem to Have No Effect
  • #3480 Cannot return null for non-nullable field System.name
  • #3476 Some list are broken on dashboard
  • #3455 Grammar
  • #3440 In an Intrusion Set => Knowledge => Malware, keyword is disappearing between Entities / Relations views
  • #3439 In create/update a trigger, the filters on multiple lines are not correctly displayed
  • #3437 can't create artifact, file, url and possible any other observable from the frontend
  • #3432 Using "start time" in a widget then filtering your dashboard with start and end time will crash the widget
  • #3425 Ref relationships cant be created when user is not part of platform organization
  • #3424 Connectors with work in progress do not complete the work job if platform is upgraded during the job
  • #3422 NOT operator in filter of Incident Response/Knowledge/Timeline View doesn't work
  • #3412 Error when trying to add observables to a new RFT case via the massive operation update in a analysis
  • #3409 In Knowledge graph > entity overview, some entities have always an empty description
  • #3408 Validating an analyst workbench in an entity makes it disappear
  • #3403 User is redirected to the URL in the description when adding organization to a report
  • #3386 Error when trying to add an external references with same source_name or url AND a file
  • #3385 Relationships involving a relationship: Overview is not displayed
  • #3376 TAXII v2.1 compatibility: sort order of result objects
  • #3369 Author's default value as undefined when creating a relationship
  • #3363 Broken Delete button in Analyst Workbench interface

Pull Requests:

New Contributors:

Full Changelog: 5.7.6...5.8.0

Check out latest releases or
releases around OpenCTI-Platform/opencti 5.8.0

Don't miss a new opencti release

NewReleases is sending notifications on new releases.

Get notifications