github OpenCTI-Platform/opencti 5.9.0
Version 5.9.0
on GitHub

latest releases: 6.3.11, 6.3.10, 6.3.9...
16 months ago

Dear community, OpenCTI 5.9.0 has been released πŸ₯³! This new major version is full of new features and enhancements πŸŽ‰. First of all, it is now possible to customize the experience of groups, defining default dashboards and default notifications triggers for each of them 🎨. Also, users with the proper permissions are able to create custom widgets and custom statistics based on the audit log and activity monitoring as well as create notifications triggers based on this activity in the settings of the platform πŸ“Š.

A new icon has been added in the overview of entities to be able to quickly subscribe to any new activity regarding this entity (new reports, relationships, etc.) πŸ“‘. Furthermore, the opinion custom vocabulary is now supported in all opinion radars and threat actors have been divided into two sub entities: groups and individuals πŸ”₯. Investigations can now be downloaded as a STIX report and re-imported anywhere. In the future, it will be possible to turn an investigation into a report (and vice-versa) πŸ“₯.

Last but not least, it is now possible to create platform announcements, add custom headers / footers but also create analyst workbenches directly in the entity data tab πŸ’¬. Moreover, if you start a new OpenCTI platform from 5.9.0, the ElasticSearch / OpenSearch rollover policies to optimize indices size is now automatically created and enabled πŸͺ„.

Enhancements:

  • #3622 Create rollover / ILM ElasticSearch policies by default at init
  • #3605 Added Customizable Header/Footer banner and Idle Time Screen Masking
  • #3595 Add a search field in the members' list of an Organization/Group Overview in Settings
  • #3587 Users should not be able to express multiple opinions on the same Entity, only update it
  • #3520 In Settings, be able to display and manage triggers & digests for groups / organizations
  • #3504 Added Customizable Header/Footer banner and Idle Time Screen Masking then Logout
  • #3188 Be able to create an analyst workbench from an entity
  • #3180 Add participants in addition to assignees everywhere
  • #3166 Split threat actors into 2 sub types
  • #3163 Be able to define default dashboards in groups / organizations
  • #3162 For administrators, be able to create triggers and digests on user activity
  • #3159 Collect reader feedbacks
  • #3003 Make the platform supports opinion custom vocab / scale
  • #2853 Add "quick subscription" icon on top right of somes entities
  • #2564 Clickable column "number of reports"
  • #2551 Events/Incidents/Knowledge/Observables. Add a label filter.
  • #2514 Advanced statistics and grouping on user analytics
  • #2508 Be able to create platform announcement (with dissmiss feature)
  • #1374 Export investigation in JSON or CSV format

Bug Fixes:

  • #3635 Error at creation of a threat actor in a knowledge section
  • #3628 Error at attack pattern creation
  • #3620 Vocab management does not work as expect
  • #3613 Sorting by type in the Analysis tab of Threat Actor display an error
  • #3611 In settings, when clicking the first time on the "hidden entities", re-render and force to reclick
  • #3610 External reference no longer accept file upload
  • #3609 Entering a case template triggers a full render
  • #3607 Webpage reloaded when clicking on the update icon of an Observable of type File
  • #3606 References appear Unknown in Malware->Knowledge->Timeline
  • #3604 New cards layout is slow to display and can lead to Elastic errors
  • #3596 When listing reports, only 200 objects appear in the results

Pull Requests:

New Contributors:

Full Changelog: 5.8.7...5.9.0

Check out latest releases or
releases around OpenCTI-Platform/opencti 5.9.0

Don't miss a new opencti release

NewReleases is sending notifications on new releases.

Get notifications