Commit graph

874 commits

Author SHA1 Message Date
Sebastien Blot
1eab34eb3f
send event for in-band match 2023-12-01 11:16:01 +01:00
Sebastien Blot
0cd2a2da20
fix http code and remediation 2023-11-30 16:45:26 +01:00
Sebastien Blot
008480420c
typo 2023-11-30 16:28:52 +01:00
Sebastien Blot
4b7b138be7
Merge branch 'master' into coraza_poc_acquis 2023-11-29 22:02:51 +01:00
Sebastien Blot
eed9ff0c46
up 2023-11-29 22:02:38 +01:00
Sebastien Blot
5f254769ae
up 2023-11-29 17:45:06 +01:00
Sebastien Blot
fe005f87e5
up 2023-11-29 16:52:24 +01:00
Sebastien Blot
b31d48a797
rename headers 2023-11-29 16:23:49 +01:00
Sebastien Blot
8999154f76
up 2023-11-29 12:58:45 +01:00
Cristian Nitescu
7c5cbef51a
manage force_pull message for one blocklist (#2615)
* manage force_pull message for one blocklist

* fix info message on force pull blocklist
2023-11-29 11:37:46 +01:00
mmetc
6b0bdc5eeb
Refact pkg/cwhub: fix some known issues and reorganize files (#2616)
* bump gopkg.in/yaml.v3
* test: cannot remove local items with cscli
* test dangling links
* test: cannot install local item with cscli
* pkg/cwhub: reorg (move) functions in files
* allow hub upgrade with local items
* data download: honor Last-Modified header
* fatal -> warning when attempting to remove a local item (allows remove --all)
* cscli...inspect -o yaml|human: rename remote_path -> path
* Correct count of removed items
Still no separate counter for the --purge option, but should be clear enough
2023-11-28 23:51:51 +01:00
blotus
380cbf70a9
force rfc 3339 date format in metrics push (#2402) 2023-11-28 16:30:20 +01:00
alteredCoder
5ca2ee2f2e update 2023-11-28 15:10:32 +01:00
Laurence Jones
6a61b919e7
[cscli] notifications test command and slight re write (#2391)
* Merge main and apply stash

* Rework some of cscli notif stuff and add a generic test which works with non active profiles

* Update wording

* Fix merge

* Final version

* Cleanup
2023-11-28 13:17:54 +00:00
alteredCoder
3eb272c4e0 Add metrics 2023-11-28 10:15:12 +01:00
Sebastien Blot
d851490790
up 2023-11-27 13:41:00 +01:00
Sebastien Blot
dc39866250
merge from master 2023-11-27 13:34:22 +01:00
Sebastien Blot
e7505f5b2e
up 2023-11-27 13:14:40 +01:00
Sebastien Blot
b1653aea63
up 2023-11-27 10:43:32 +01:00
mmetc
15542b78fb
refact BulkDeleteDecisions (#2308)
Code cleanup and de-duplication.
2023-11-26 22:30:03 +01:00
Sebastien Blot
946fbbb8a2
up 2023-11-24 15:57:49 +01:00
mmetc
ffcab0b2bc
Refactor hub management and cscli commands (#2545) 2023-11-24 15:57:32 +01:00
mmetc
ec199162dc
iso8601: use yyyy-mm-dd in log timestamps instead of dd-mm-yyyy (#2564)
Co-authored-by: Thibault "bui" Koechlin <thibault@crowdsec.net>
2023-11-24 14:59:28 +01:00
Thibault "bui" Koechlin
1dcf9d1ae1
Improved expr debugger (#2495)
* new expr debugger

---------

Co-authored-by: mmetc <92726601+mmetc@users.noreply.github.com>
2023-11-24 11:10:54 +01:00
Sebastien Blot
f77d9e043a
up 2023-11-23 14:51:05 +01:00
blotus
ec53c672dc
Kafka acquisition: warn if no consumer group id and allow to read from a specific partition (#2612) 2023-11-23 10:02:53 +01:00
Sebastien Blot
118da5b423
up 2023-11-23 09:56:58 +01:00
alteredCoder
710d8a438a oups 2023-11-22 16:27:22 +01:00
alteredCoder
b6899e0c10 add more debug when unauthorized 2023-11-22 16:25:20 +01:00
alteredCoder
dd6e539717 fix hubtest coverage and some opti 2023-11-22 15:41:26 +01:00
lperdereau
92f923cfa8
Loki integration #2 (#2306)
* Add support for loki datasource

---------

Co-authored-by: Mathieu Lecarme <mathieu@garambrogne.net>
Co-authored-by: Sebastien Blot <sebastien@crowdsec.net>
Co-authored-by: Thibault "bui" Koechlin <thibault@crowdsec.net>
2023-11-22 13:31:39 +01:00
he2ss
947b247a40
kafkaAcquisition: add more debug (#2609)
* kafkaAcquisition: add more debug
2023-11-22 09:35:58 +01:00
blotus
d7ef51e6ba
properly update the cs_syslogsource_parsed_total metric (#2608) 2023-11-22 09:04:23 +01:00
Sebastien Blot
5abc8e0e14
merge hub-1.5.6 2023-11-21 17:46:54 +01:00
mmetc
2c652ef92f
pkg/cwhub documentation (#2607)
* pkg/cwhub: package documentation

* Don't repeat local state in "cscli... inspect"

* lint

* use proper name of the hub item instead of the filename for local items

* hub update: avoid reporting local items as tainted
2023-11-21 17:43:10 +01:00
Sebastien Blot
9580f8e14d
merge hub-1.5.6 2023-11-21 17:28:10 +01:00
bui
e4b92af78c support dedicated waap rules testing in cscli hubtest 2023-11-21 15:24:51 +01:00
mmetc
1509c2d97c
pkg/cwhub refact (#2606)
* Separate Item and ItemState; fill BelongsToCollections with all ancestors and for uninstalled items too
* fix "installed parents" check when removing an item
* keep BelongsToCollections in order (case insensitive)
2023-11-21 11:06:59 +01:00
mmetc
7b1074f0cb
Refact cwhub (#2603)
* Split RemoteHub.downloadIndex() = Hub.updateIndex() + RemoteHub.fetchIndex()
* Functions safePath(), Item.installPath(), item.downloadPath()
2023-11-20 15:58:42 +01:00
bui
2d01e4680f do not error if no waap rules are present 2023-11-20 14:25:33 +01:00
Sebastien Blot
4a265ca4af
up 2023-11-20 13:27:46 +01:00
mmetc
6b317f0723
Refact cwhub: simplify tree scan and dependency checks (#2600)
* method rename: GetInstalledItemsAsString() -> GetInstalledItemNames()
* use path package
* Comments and method names
* Extract method Item.setVersionState() from Hub.itemVisit()
* refact localSync(), itemVisit() etc.
* fix check for cyclic dependencies, with test
2023-11-20 11:41:31 +01:00
alteredCoder
8173e1ba42 add timeout to auth request 2023-11-20 10:48:21 +01:00
Sebastien Blot
94a378d230
up 2023-11-17 18:07:03 +01:00
bui
017331ca7f nuclei runner 2023-11-17 15:37:32 +01:00
bui
6718d82765 allow testing of waap rules 2023-11-17 15:37:12 +01:00
bui
9af30e2a3d simplify a bit 2023-11-17 15:15:29 +01:00
Sebastien Blot
0e717cb558
up 2023-11-17 13:47:05 +01:00
Sebastien Blot
d40e9fb760
do not use filepath.Match 2023-11-17 13:45:43 +01:00
alteredCoder
9864d2c459 Add authentication between bouncers and waf 2023-11-16 18:19:45 +01:00