Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Bug] Alert artifact tags not imported to case #1585

Closed
r0sier opened this issue Oct 20, 2020 · 1 comment
Closed

[Bug] Alert artifact tags not imported to case #1585

r0sier opened this issue Oct 20, 2020 · 1 comment
Labels
bug duplicate TheHive4 TheHive4 related issues

Comments

@r0sier
Copy link

r0sier commented Oct 20, 2020
edited
Loading

Request Type

Bug

Work Environment

Question Answer
OS version (server) Ubuntu 18.04.5
OS version (client) 10
TheHive version / git hash 4.0.0-1
Package Type From source
Browser type & version Firefox

Problem Description

When exporting an alert into a case, the tags included within the observables are not imported into the case. For example, an alert could be generated with the observable 8[.]8[.]8[.]8 and tag 'IP'. When the alert is imported into a Hive case, the tags from the observables are removed. See images below.

Steps to Reproduce

  1. Create an alert with an alert artifact that uses tags
  2. View the alert and import into a Hive case

Complementary information

Screenshot one shows the artifacts with tags inside of an alert:
image
Screenshot two shows that once imported, the artifact tags are removed:
image
@r0sier r0sier added TheHive4 TheHive4 related issues bug labels Oct 20, 2020
@nadouani
Copy link
Contributor

Hello @r0sier this has been fixed in #1510. Closing as duplicate

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug duplicate TheHive4 TheHive4 related issues
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@nadouani @r0sier