Added UNC path to tagging
v4.4.0.stable9
Bugfixes
- hotfix to support changes in elasticsearch client.
v4.4.0.stable8
Improvement
- Use `extract_passwords` method for potential passwords in OCR texta
v4.4.0.stable7
Feature
- Perform OCR on images for potential password extraction, add potentials to `temp_submission_data`
v4.4.0.stable6
Bugfix
- If one update source raises `SkipSource`, then skip for sources with the same endpoint
v4.4.0.stable5
Optimizations
- Service updater's will perform an inventory check to automatically fetch material that is missing
- Service's with a `wait_for_update` flag set, will only scale when corresponding updater's are ready
- Re-use cached downloaded material if multiple update sources target the same endpoint
v4.4.0.stable4
Enhancements
- Performance enhancements in service updaters.
- Improve error message given when services reach the retry limit.
- Launch updater containers with higher priority than service pods.
- Signature view now supports Suricata, ConfigExtractor, Sigma, API Vector, TagCheck and Yara signature highlighting.
Bugfixes
- Handle ignore filtering parameter interacting with service result cache keys.
- Increase default ram requests and limits.
v4.4.0.stable3
Service Base
- Moving Sysmon conversion from Sandbox services to service base
v4.4.0.stable2
Added support for TLP 2.0 on default classification engine
v4.4.0.stable13
Feature
- Include extractor's name (`config_extractor`) in MalwareConfig ontology sections
v4.4.0.stable12
Hotfix
- pin flask version pending updates
v4.4.0.stable11
Bugfix
- Ensure datastore addresses indices correctly for online resharding
- Handle redis disconnects correctly in pubsub module
- Have scaler check if nodes are ready before counting them for cpu quota
- Have services rate limit their checks for signature updates
v4.4.0.stable10
Improvement
- Correct misidentification of some XML files as `metadata/sysmon/evtx`
- Add identification for `metadata/sysmon/xml`
v4.4.0.stable1
Bugfix
- Add `REVIEW` stage to list of service stages by default
v4.4.0.stable0
New Features
- Timeline Result Sections
- Ancestry tagging/detection (facilitated by [Ancestry](https://github.com/CybercentreCanada/assemblyline-service-ancestry) service)
Bugfixes
- Clear caching from Redis from deployments that are removed from system (updaters specifically)
- Fix work allocation in dispatcher to ignore terminating instances.
- Fix scaler's replica targets by ignoring dependency deployments.