Commit graph

999 commits

Author SHA1 Message Date
AlteredCoder
00ee2d0fdc fix typo in README 2020-07-27 13:48:25 +02:00
Thibault "bui" Koechlin
056c7801c6
add unitest in cwhub package (#144) 2020-07-27 13:47:32 +02:00
Thibault "bui" Koechlin
151af2d0d8
No sql transaction + proper time-machine wait (#148) 2020-07-27 13:42:30 +02:00
AlteredCoder
851ad300cb
Add unitest in pkg/acquisition and pkg/cwapi (#145)
* ci for acquisition and cwapi

* update README


Co-authored-by: AlteredCoder <AlteredCoder>
2020-07-27 12:18:55 +02:00
Thibault "bui" Koechlin
6b4674104c
Update documentation for crowdsec v0.3.0 (#141) 2020-07-22 10:25:23 +02:00
Thibault "bui" Koechlin
a104e6d053
fix ban deduplication (#143) 2020-07-21 10:48:06 +02:00
AlteredCoder
40b7bfaf69
fix (#142)
Co-authored-by: AlteredCoder <AlteredCoder>
2020-07-20 17:44:45 +02:00
Thibault "bui" Koechlin
66161bc8ae
fix auto-delete (#140) 2020-07-20 11:52:00 +02:00
AlteredCoder
0864f13cb8
fix post merge (#138)
* fix post merge (#138)
2020-07-17 15:26:46 +02:00
Thibault "bui" Koechlin
177480cff7
updated mysql plugin support (#135)
* add support for plugin, support mysql & so on

* fix queries

Co-authored-by: erenJag <erenJag>
Co-authored-by: AlteredCoder <AlteredCoder>
2020-07-16 16:05:03 +02:00
Thibault "bui" Koechlin
7fe6741df3
Simulation support (#136)
* support simulation mode
2020-07-16 15:59:09 +02:00
AlteredCoder
87a90583fe
Fix#80 (#133)
* fix #80 

Co-authored-by: AlteredCoder <AlteredCoder>
Co-authored-by: Thibault bui Koechlin <thibault@crowdsec.net>
2020-07-16 15:48:46 +02:00
Thibault "bui" Koechlin
bc2566f3e5
support multiple args for all cscli upgrade/install/remove commands (#132) 2020-07-10 10:43:22 +02:00
AlteredCoder
4ef080e7bd
Add possibility to filter the size of cscli ban list returned array (#129)
* Be able to filter/limit the `ban list` output
2020-07-10 10:33:39 +02:00
erenJag
18f5a1dfdd
update crowdsec architecture image (#131)
Co-authored-by: erenJag <erenJag>
2020-07-09 14:28:27 +02:00
erenJag
44304a30e7
fix #124 (#127)
* fix #124
2020-07-09 12:41:18 +02:00
Thibault "bui" Koechlin
a099a164e1
Doc landing page : introduce early the concept of parsers scenarios and collections (#130) 2020-07-09 10:12:17 +02:00
Thibault "bui" Koechlin
a0c1ca49d0
Doc : fix whitelists documentation + document data for parsers/scenarios + document expr helpers + link taxonomy (#126) 2020-07-08 10:58:20 +02:00
Thibault "bui" Koechlin
c1c1a33dd3
4 lines installer (#118)
* 4 lines installer
2020-07-08 10:46:55 +02:00
FaricaUnknown
680c5c14ac
give a warning in documentation if syslog-logs parser is missing (#120) 2020-07-08 10:43:16 +02:00
AlteredCoder
98297f741f don't profile in test env 2020-07-07 16:48:06 +02:00
AlteredCoder
d0ac43b00f
Allow comments with # in expr wordlists
Co-authored-by: AlteredCoder <AlteredCoder>
2020-07-07 16:26:00 +02:00
Thibault "bui" Koechlin
a62bac0ca0
verbosity (#121) 2020-07-03 18:26:23 +02:00
Thibault "bui" Koechlin
3dd42bc9fd
add ability to filter 'ban list' output (--ip --range --as --country --reason) (#115)
* add ability to filter 'ban list' output
2020-07-03 11:40:12 +02:00
Thibault "bui" Koechlin
7691e5b663
re-enable postoverflows (#117)
* re-enable postoverflows

* debug

* yoloooo

* remove debug

* remove error print

* fix test

* fix leakybucket test

* fix

Co-authored-by: AlteredCoder <AlteredCoder>
2020-07-02 17:56:39 +02:00
AlteredCoder
672785ba17
update parser and scenari doc (#116)
Co-authored-by: AlteredCoder <AlteredCoder>
2020-07-02 11:46:16 +02:00
AlteredCoder
eef1847873
add whitelisted flag in signal occurence (#114) 2020-07-02 11:44:27 +02:00
erenJag
f6826c7e47
add expr helper to check if IP is in ipRange (#113)
* add expr helper to check if IP is in ipRange

* update helper name

Co-authored-by: erenJag <erenJag>
2020-07-02 11:09:40 +02:00
Thibault "bui" Koechlin
454e2850b5
don't trash the database when upgrading (#112) 2020-07-01 17:14:05 +02:00
Thibault "bui" Koechlin
b9ae94b874
Sqlite : Support automatic db flushing (#91)
* add support for sqlite retention : max_records, max_records_age

* reduce verbosity of cwhub
2020-07-01 17:04:29 +02:00
AlteredCoder
81ef26f406
add output raw for ban list (#108)
Co-authored-by: AlteredCoder <AlteredCoder>
2020-07-01 10:27:50 +02:00
Thibault "bui" Koechlin
cb9eda429e
Doc improvments : remove deprecated prog_name (#105)
* remove deprecated prog_name

* in config as well
2020-06-30 10:35:19 +02:00
Thibault "bui" Koechlin
e4993996a5
exclude fields so that they are not serialized when we're rewritting api.yaml file (#103) 2020-06-29 17:47:57 +02:00
Thibault "bui" Koechlin
02b2193d64
fix collection dependencies : install subparts of collection, even if the collec file itself exists (#101) 2020-06-29 17:31:37 +02:00
Thibault "bui" Koechlin
44076dd3d5
fix multi runners : only run several parsers for now (#98) 2020-06-29 15:44:33 +02:00
Thibault "bui" Koechlin
652b54ee81
SignalOccurence can't lead to BanApplication if there is no source in the Event (#96) 2020-06-29 13:22:56 +02:00
AlteredCoder
a4923a362f
Fix empty machineid (#95)
* fix

* fix

Co-authored-by: AlteredCoder <AlteredCoder>
2020-06-29 13:03:55 +02:00
AlteredCoder
29df9704a2
Fix empty machineid (#95)
* fix

* fix

Co-authored-by: AlteredCoder <AlteredCoder>
2020-06-29 12:46:10 +02:00
AlteredCoder
2e30793188
Allow CrowdSec to start if geoip data are not downloaded (#92)
* Allow CrowdSec to start if `geoip` data are not downloaded
2020-06-25 12:36:01 +02:00
AlteredCoder
68c749bc9c Update issue templates 2020-06-24 17:02:52 +02:00
erenJag
bdda08223e
Fix hub CI (#86) 2020-06-24 15:00:30 +02:00
AlteredCoder
02351e925b fix doc 2020-06-24 10:45:48 +02:00
AlteredCoder
c63d1153a3 Update issue templates 2020-06-23 12:46:05 +02:00
AlteredCoder
9545ba87e6 Update issue templates 2020-06-23 12:42:04 +02:00
AlteredCoder
e93a8b0c39 Update issue templates 2020-06-23 12:36:53 +02:00
AlteredCoder
be0e1cd79f Update issue templates 2020-06-23 12:32:57 +02:00
Thibault "bui" Koechlin
5446857377
Add crowdsec reload + cscli metrics minor improvements (#79) 2020-06-19 13:57:44 +02:00
Thibault "bui" Koechlin
bb60d29ac8
register api as well in --bininstall (#77) 2020-06-16 17:59:09 +02:00
Thibault "bui" Koechlin
d6987ae8f1
avoid error when prometheus gives scientific notation (#76) 2020-06-16 17:53:10 +02:00
Thibault "bui" Koechlin
8651a1aefc
skip ~ files #69 (#71)
* skip ~ files

* only keep .yaml et .yml files
2020-06-12 17:55:35 +02:00